General

  • Target

    9840fbbae1cbd55f9fef722508b0b03f

  • Size

    421KB

  • Sample

    231222-qce7bagad3

  • MD5

    9840fbbae1cbd55f9fef722508b0b03f

  • SHA1

    809aa68469b6f82b72ca3253f60970cf0fb3d7d5

  • SHA256

    d72cb7c7eb9735dda33f3153337821bde478023352ba140613d0cd35923ba872

  • SHA512

    f99f22464ca846eef593db2976d36662092639c99da317e8fab4e443836945c8f35d92ae0d93b0e2f63e94d0ecd5c0374627dabffddef3e55e868822724147ca

  • SSDEEP

    12288:+Zjw0RJ9u5ILYDxD3fxYehza/tw64ML68:q3H

Score
10/10

Malware Config

Extracted

Family

oski

C2

/103.114.107.28/l3030/

Targets

    • Target

      9840fbbae1cbd55f9fef722508b0b03f

    • Size

      421KB

    • MD5

      9840fbbae1cbd55f9fef722508b0b03f

    • SHA1

      809aa68469b6f82b72ca3253f60970cf0fb3d7d5

    • SHA256

      d72cb7c7eb9735dda33f3153337821bde478023352ba140613d0cd35923ba872

    • SHA512

      f99f22464ca846eef593db2976d36662092639c99da317e8fab4e443836945c8f35d92ae0d93b0e2f63e94d0ecd5c0374627dabffddef3e55e868822724147ca

    • SSDEEP

      12288:+Zjw0RJ9u5ILYDxD3fxYehza/tw64ML68:q3H

    Score
    10/10
    • Oski

      Oski is an infostealer targeting browser data, crypto wallets.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks