General

  • Target

    473d41b8499f701356991091f3e39e35.bin

  • Size

    706KB

  • Sample

    240108-cvv4lahgcj

  • MD5

    473d41b8499f701356991091f3e39e35

  • SHA1

    f1284f26f6b97f81b6936789bbd9d931adf5d562

  • SHA256

    cae35f47589e7001d9ca57473ed487efbfee6b08536e6639945e563526e6e616

  • SHA512

    3964ba9ed1be7a96dd63743c25290a487b7e8ecf6e6a4793a739132d998387a2e9931dd05a0f4494300e7e61a2642aa99ef0621ae91c58b7eaf4235cd5ca91f6

  • SSDEEP

    6144:raJpHs+ApelD0TpSXKFlECflUZdAMr9LXoFNihdhUNK/16dBzMeiuoC6GSOym02:BOARH02

Score
10/10

Malware Config

Extracted

Family

oski

C2

103.99.1.60/we/ahsa/

Targets

    • Target

      473d41b8499f701356991091f3e39e35.bin

    • Size

      706KB

    • MD5

      473d41b8499f701356991091f3e39e35

    • SHA1

      f1284f26f6b97f81b6936789bbd9d931adf5d562

    • SHA256

      cae35f47589e7001d9ca57473ed487efbfee6b08536e6639945e563526e6e616

    • SHA512

      3964ba9ed1be7a96dd63743c25290a487b7e8ecf6e6a4793a739132d998387a2e9931dd05a0f4494300e7e61a2642aa99ef0621ae91c58b7eaf4235cd5ca91f6

    • SSDEEP

      6144:raJpHs+ApelD0TpSXKFlECflUZdAMr9LXoFNihdhUNK/16dBzMeiuoC6GSOym02:BOARH02

    Score
    10/10
    • Oski

      Oski is an infostealer targeting browser data, crypto wallets.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks