oski | 946d4d332a06b9af10da38beb3e8195054840b59a870a2f9027e6471f4869dc6 | Triage

Sharing

General

Target

946d4d332a06b9af10da38beb3e8195054840b59a870a2f9027e6471f4869dc6
Size

319KB
Sample

220201-lq8zbscdan
MD5

9f6b9cb5e53ea972080f4165113676e2
SHA1

4bfd547775ba5892e66d2ff6a0c1de4365ab11b3
SHA256

946d4d332a06b9af10da38beb3e8195054840b59a870a2f9027e6471f4869dc6
SHA512

4b76078e5da2b94420cb8be4f2d057892451789745f65fda05c6addf8be886cf9b098045b6110366478484035b5ff831937e0b9519ecded6b38ff2a0033167d3

Score

10^/10

oski infostealer spyware stealer

Malware Config

Extracted

Family

oski

C2

sl9XA73g7u3EO07WT42n7f4vIn5fZH.biz

Targets

- Target
  
  946d4d332a06b9af10da38beb3e8195054840b59a870a2f9027e6471f4869dc6
- Size
  
  319KB
- MD5
  
  9f6b9cb5e53ea972080f4165113676e2
- SHA1
  
  4bfd547775ba5892e66d2ff6a0c1de4365ab11b3
- SHA256
  
  946d4d332a06b9af10da38beb3e8195054840b59a870a2f9027e6471f4869dc6
- SHA512
  
  4b76078e5da2b94420cb8be4f2d057892451789745f65fda05c6addf8be886cf9b098045b6110366478484035b5ff831937e0b9519ecded6b38ff2a0033167d3
Score

10^/10

oski infostealer spyware stealer
- Oski
  Oski is an infostealer targeting browser data, crypto wallets.
  infostealer oski
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

oskiinfostealerspywarestealer

behavioral2