yunsip | 7c9e1e8cb9467c3910c39d0c5f85312cef136f30a7bd2512f8b1f400b864dda9 | Triage

Sharing

General

Target

7c9e1e8cb9467c3910c39d0c5f85312cef136f30a7bd2512f8b1f400b864dda9N
Size

1.0MB
Sample

241019-ln2ggazaje
MD5

9aa6f5eae249b0f1cbc1afe3caa52880
SHA1

4a9b1b6dc1813b21bf9b4f636a6df636fd6fa47c
SHA256

7c9e1e8cb9467c3910c39d0c5f85312cef136f30a7bd2512f8b1f400b864dda9
SHA512

34da57d368f29a8cf2fab4c81353b9e2e527e1f735363fac3409011551cc32cf9c25247b91b795cda95ab8a273a6b9ec1a0f8a57a8dbd9d385d2b9c693f192ee
SSDEEP

6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYG:o6RI1Fo/wT3cJYYYYYYYYYYYYG

Score

10^/10

yunsip banker discovery trojan

Malware Config

Targets

- Target
  
  7c9e1e8cb9467c3910c39d0c5f85312cef136f30a7bd2512f8b1f400b864dda9N
- Size
  
  1.0MB
- MD5
  
  9aa6f5eae249b0f1cbc1afe3caa52880
- SHA1
  
  4a9b1b6dc1813b21bf9b4f636a6df636fd6fa47c
- SHA256
  
  7c9e1e8cb9467c3910c39d0c5f85312cef136f30a7bd2512f8b1f400b864dda9
- SHA512
  
  34da57d368f29a8cf2fab4c81353b9e2e527e1f735363fac3409011551cc32cf9c25247b91b795cda95ab8a273a6b9ec1a0f8a57a8dbd9d385d2b9c693f192ee
- SSDEEP
  
  6144:o6C5AXbMn7UI1FoV2gwTBlrIckPJYYYYYYYYYYYYG:o6RI1Fo/wT3cJYYYYYYYYYYYYG
Score

10^/10

yunsip banker discovery trojan
- Yunsip
  Remote backdoor which communicates with a C2 server to receive commands.
  trojan banker yunsip
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

yunsipbankerdiscoverytrojan

behavioral2

yunsipbankerdiscoverytrojan