General

  • Target

    aa4729a7d92861c399f953ade9a38ebd2aebf6c89d77b5e90c8de42383aa13bc

  • Size

    827KB

  • Sample

    220312-a1t3dagdcl

  • MD5

    8de74a14830b47c63051c3105dd8e1e2

  • SHA1

    474394c67be455534d3fe6eb867d6530e0e71aff

  • SHA256

    aa4729a7d92861c399f953ade9a38ebd2aebf6c89d77b5e90c8de42383aa13bc

  • SHA512

    b69f8af010dad3b986c8d888be6d46382fdf7e17f7ff4a441c0efd0a03c498ad12d1a6cfac89fe5240cda4746cbbf98fced477394cc3fb6a96d8b98251f9dcb9

Score
10/10

Malware Config

Extracted

Family

oski

C2

136.144.41.170

Targets

    • Target

      aa4729a7d92861c399f953ade9a38ebd2aebf6c89d77b5e90c8de42383aa13bc

    • Size

      827KB

    • MD5

      8de74a14830b47c63051c3105dd8e1e2

    • SHA1

      474394c67be455534d3fe6eb867d6530e0e71aff

    • SHA256

      aa4729a7d92861c399f953ade9a38ebd2aebf6c89d77b5e90c8de42383aa13bc

    • SHA512

      b69f8af010dad3b986c8d888be6d46382fdf7e17f7ff4a441c0efd0a03c498ad12d1a6cfac89fe5240cda4746cbbf98fced477394cc3fb6a96d8b98251f9dcb9

    Score
    10/10
    • Oski

      Oski is an infostealer targeting browser data, crypto wallets.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks