osiris | d8c56946b65ffcf4b6aa2bd510fefb626edcc2a135c07e2f0175686aa0e588e6 | Triage

Submit
Reports

Overview

overview

Static

static

3

02aa4aac6b...fe.exe

windows7-x64

02aa4aac6b...fe.exe

windows10-2004-x64

7

Sharing

General

Target

02aa4aac6bc417b73d6ea452194252fe
Size

786KB
Sample

231229-yyefxahfam
MD5

02aa4aac6bc417b73d6ea452194252fe
SHA1

69d4e8942d6c3891a06b988ada2cb8a75fc738b5
SHA256

d8c56946b65ffcf4b6aa2bd510fefb626edcc2a135c07e2f0175686aa0e588e6
SHA512

c241466c03983fa0809836d61db44c640c2ae16d8349723327b6bf0cc5267c69ecf4c91c74ba7e948655ff3b4bf9dd72046e11d4d9a123f35f1dde40e63c4158
SSDEEP

12288:vyxPJa2s86jofrWEuxjcZxyPq8tf8sQ+PRtj3lDsmMHj3N6eiaFmhL+JigD:vyxPJ/s86szWEuKiflOmMDhPEhL+lD

Score

10^/10

osiris banker botnet

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

02aa4aac6bc417b73d6ea452194252fe.exe

Resource

win7-20231215-en

osiris banker botnet

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

02aa4aac6bc417b73d6ea452194252fe.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  02aa4aac6bc417b73d6ea452194252fe
- Size
  
  786KB
- MD5
  
  02aa4aac6bc417b73d6ea452194252fe
- SHA1
  
  69d4e8942d6c3891a06b988ada2cb8a75fc738b5
- SHA256
  
  d8c56946b65ffcf4b6aa2bd510fefb626edcc2a135c07e2f0175686aa0e588e6
- SHA512
  
  c241466c03983fa0809836d61db44c640c2ae16d8349723327b6bf0cc5267c69ecf4c91c74ba7e948655ff3b4bf9dd72046e11d4d9a123f35f1dde40e63c4158
- SSDEEP
  
  12288:vyxPJa2s86jofrWEuxjcZxyPq8tf8sQ+PRtj3lDsmMHj3N6eiaFmhL+JigD:vyxPJ/s86szWEuKiflOmMDhPEhL+lD
Score

10^/10

osiris banker botnet
- Osiris
  banker botnet osiris
- Drops startup file
- Executes dropped EXE
- Loads dropped DLL
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
- Uses Tor communications
  Malware can proxy its traffic through Tor for more anonymity.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Proxy

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

osirisbankerbotnet

behavioral2

© 2018-2024

Terms | Privacy