oski | f066b22440bc1fbf1d336c95531d7966ed2c6a0e21db7479d3eb7e61364a32e5 | Triage

Submit
Reports

Overview

overview

Static

static

swift 6748.26.exe

windows7-x64

3

swift 6748.26.exe

windows10-2004-x64

Sharing

General

Target

swift 6748.26.exe
Size

652KB
Sample

220716-pjcjbsbgd3
MD5

2a66e1def724a506b4a456a573b76c55
SHA1

ae8ea73f5754b4ca8a4ccf727e8db152c20e800f
SHA256

f066b22440bc1fbf1d336c95531d7966ed2c6a0e21db7479d3eb7e61364a32e5
SHA512

9d004d721247ec4bc1eecbfbb1e552cac3c37e20ce370e0d2aa18536ff619f8d8b66abfeb079efcf14fcbe781ae6b3138b16335b7a04f064474003d6b948c5cb

Score

10^/10

oski discovery infostealer suricata

Static task

static1

Behavioral task

behavioral1

Sample

swift 6748.26.exe

Resource

win7-20220715-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

swift 6748.26.exe

Resource

win10v2004-20220414-en

oski discovery infostealer suricata

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Extracted

Family

oski

C2

foodcircus.ro

Targets

- Target
  
  swift 6748.26.exe
- Size
  
  652KB
- MD5
  
  2a66e1def724a506b4a456a573b76c55
- SHA1
  
  ae8ea73f5754b4ca8a4ccf727e8db152c20e800f
- SHA256
  
  f066b22440bc1fbf1d336c95531d7966ed2c6a0e21db7479d3eb7e61364a32e5
- SHA512
  
  9d004d721247ec4bc1eecbfbb1e552cac3c37e20ce370e0d2aa18536ff619f8d8b66abfeb079efcf14fcbe781ae6b3138b16335b7a04f064474003d6b948c5cb
Score

10^/10

oski discovery infostealer suricata
- Oski
  Oski is an infostealer targeting browser data, crypto wallets.
  infostealer oski
- suricata: ET MALWARE Vidar/Arkei/Megumin/Oski Stealer HTTP POST Pattern
  suricata: ET MALWARE Vidar/Arkei/Megumin/Oski Stealer HTTP POST Pattern
  suricata
- Modifies file permissions
  discovery
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

oskidiscoveryinfostealersuricata

© 2018-2025

Terms | Privacy