General

  • Target

    73c6dc9f5bdb81cbe126cab739df1d8d35c6277fc8436d5f4932cf3326de8ec7.zip

  • Size

    682KB

  • Sample

    220323-sbw5jsfhh6

  • MD5

    3161d310b6eeeb1544120b3239a35ed1

  • SHA1

    abdf384f2866ca8dc05825a14c8ef72957198664

  • SHA256

    a06566a62465d5f3c73bb4debd124ec9c06c39c739f51a3ad2e20bcc83a15b14

  • SHA512

    07da1fae82ba5865fcfe98668503b0b3a621b7ada2ce0bc448589a0de652ab94d7aa554a517de3f7907843e73b816ab5f841aa1a8cf9173dd0176a9d6f37ace4

Score
10/10

Malware Config

Extracted

Family

oski

C2

vtgtradings.com

Targets

    • Target

      73c6dc9f5bdb81cbe126cab739df1d8d35c6277fc8436d5f4932cf3326de8ec7

    • Size

      1.1MB

    • MD5

      4eaf53f4ab26529dd166d9352f6c78bd

    • SHA1

      82e4c34b727c7ae8f9c7fe12f56e4c9c859c6faf

    • SHA256

      73c6dc9f5bdb81cbe126cab739df1d8d35c6277fc8436d5f4932cf3326de8ec7

    • SHA512

      8277181d38a4352954fe9f067ae9cfac8160b6d2514b31bad119921d4201ea5655b9c836ee08bbe251d3590cefeac8ea35ead529a45fe019029d200041d223bf

    Score
    10/10
    • Oski

      Oski is an infostealer targeting browser data, crypto wallets.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks