General

  • Target

    ef94e89b98b1ddc2f7b02be201d5161f

  • Size

    493KB

  • Sample

    231228-xb2ggsggcp

  • MD5

    ef94e89b98b1ddc2f7b02be201d5161f

  • SHA1

    e2a7d0e9e798681d07d248064fbcbf4b5ef905b5

  • SHA256

    49a76b831f7668c5f30a783db5b2ad43e03fdb5f99295c41adb17afc4512c311

  • SHA512

    2cbc02496f450c2cddf5bfcb4a75dc1cb52ac079eab288f232eea3f0bf8ab49bd9f4e32c794711a3984a78e9f8e26421b35ddc99e7110c2b582b49b1c712b2c6

  • SSDEEP

    12288:FMBZjw0RJ9u5ILYDxD3fxYehza/tw645j:FMn3A

Score
10/10

Malware Config

Extracted

Family

oski

C2

103.99.1.60/b14n/

Targets

    • Target

      ef94e89b98b1ddc2f7b02be201d5161f

    • Size

      493KB

    • MD5

      ef94e89b98b1ddc2f7b02be201d5161f

    • SHA1

      e2a7d0e9e798681d07d248064fbcbf4b5ef905b5

    • SHA256

      49a76b831f7668c5f30a783db5b2ad43e03fdb5f99295c41adb17afc4512c311

    • SHA512

      2cbc02496f450c2cddf5bfcb4a75dc1cb52ac079eab288f232eea3f0bf8ab49bd9f4e32c794711a3984a78e9f8e26421b35ddc99e7110c2b582b49b1c712b2c6

    • SSDEEP

      12288:FMBZjw0RJ9u5ILYDxD3fxYehza/tw645j:FMn3A

    Score
    10/10
    • Oski

      Oski is an infostealer targeting browser data, crypto wallets.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks