General

  • Target

    30fb72ee5b3d5b8dcb0d5815f90826c7

  • Size

    706KB

  • Sample

    231231-lhdhfsbgck

  • MD5

    30fb72ee5b3d5b8dcb0d5815f90826c7

  • SHA1

    143f0562bd57621f470df06be5d8a217e90dc7c6

  • SHA256

    5c9b4c2ea6187806eb2e50c385db8d6e1fed2affaf1b751cd9a73c1778d5b8ae

  • SHA512

    681fbde78b6b512647f092ded700daae6426278478554d50f58a30da9a3f80e2c45bb2f9706f8172eb02d20238efc32154ea28affab80928027c93b4afa77605

  • SSDEEP

    6144:raJpHs+ApelD0TpSXKFlECflUZdAMr9LXoFNihdhUNK/16dBzMeiuoC6GSOam02:BOAR/02

Score
10/10

Malware Config

Extracted

Family

oski

C2

103.99.1.60/we/shu/

Targets

    • Target

      30fb72ee5b3d5b8dcb0d5815f90826c7

    • Size

      706KB

    • MD5

      30fb72ee5b3d5b8dcb0d5815f90826c7

    • SHA1

      143f0562bd57621f470df06be5d8a217e90dc7c6

    • SHA256

      5c9b4c2ea6187806eb2e50c385db8d6e1fed2affaf1b751cd9a73c1778d5b8ae

    • SHA512

      681fbde78b6b512647f092ded700daae6426278478554d50f58a30da9a3f80e2c45bb2f9706f8172eb02d20238efc32154ea28affab80928027c93b4afa77605

    • SSDEEP

      6144:raJpHs+ApelD0TpSXKFlECflUZdAMr9LXoFNihdhUNK/16dBzMeiuoC6GSOam02:BOAR/02

    Score
    10/10
    • Oski

      Oski is an infostealer targeting browser data, crypto wallets.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks