Overview

overview

10

Static

static

3

2344d5013a...02.xll

windows7-x64

7

2344d5013a...02.xll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2344d5013ae84f4d70bf359575fba402

  • Size

    879KB

  • Sample

    231231-b62vvagedj

  • MD5

    2344d5013ae84f4d70bf359575fba402

  • SHA1

    ed763a02ea15c388ec462cb9a4dfba22d0248631

  • SHA256

    338ffcde4891ef19f8b2974f2a9188e14a90f592322c8fb07acb662b57b35771

  • SHA512

    0d532edf4d2a6d2daab537dcb8e8e1b50cb0b27c3b0e4745b9748a06ecc287f025c77e1ee68172454b63a916e66bb611a930e2a0d22c1ff5922d2e98121e0a3d

  • SSDEEP

    24576:pzbGHAzHAjX1lcLgUarYin3qy8sCwFCvlFC:pziHIvEzn3qy8QFW

Score
10/10
oskiinfostealer

Malware Config

Extracted

Language
xlm4.0
Source

Targets

    • Target

      2344d5013ae84f4d70bf359575fba402

    • Size

      879KB

    • MD5

      2344d5013ae84f4d70bf359575fba402

    • SHA1

      ed763a02ea15c388ec462cb9a4dfba22d0248631

    • SHA256

      338ffcde4891ef19f8b2974f2a9188e14a90f592322c8fb07acb662b57b35771

    • SHA512

      0d532edf4d2a6d2daab537dcb8e8e1b50cb0b27c3b0e4745b9748a06ecc287f025c77e1ee68172454b63a916e66bb611a930e2a0d22c1ff5922d2e98121e0a3d

    • SSDEEP

      24576:pzbGHAzHAjX1lcLgUarYin3qy8sCwFCvlFC:pziHIvEzn3qy8QFW

    Score
    10/10
    oskiinfostealer

    • Oski

      Oski is an infostealer targeting browser data, crypto wallets.

      infostealeroski

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks