oski | 9bb9ebda548a1b5411f95a24e4f2b27705473e91033ae6cb158c19eb2cca5908 | Triage

Submit
Reports

Overview

overview

Static

static

1

4c8015bbc7...57.ps1

windows7-x64

4c8015bbc7...57.ps1

windows10-2004-x64

Sharing

General

Target

4c8015bbc773e46fdbd2ed3785d7bb57.bin
Size

493KB
Sample

240110-b5ezpacff2
MD5

4c8015bbc773e46fdbd2ed3785d7bb57
SHA1

64df0b0921bd0c9eb7189c17fe1a7111c34de176
SHA256

9bb9ebda548a1b5411f95a24e4f2b27705473e91033ae6cb158c19eb2cca5908
SHA512

824b2ee4d088340be9a0f589b50bf2ba08540000c99db380bfe9d1a849eb5f01e16f0e650bbadb45d4d89fce6fb2408a597cc6eeae1147ebda353b0305706a7c
SSDEEP

12288:FMBZjw0RJ9u5ILYDxD3fxYehza/tw64Pj:FMn3u

Score

10^/10

oski infostealer

Static task

static1

Behavioral task

behavioral1

Sample

4c8015bbc773e46fdbd2ed3785d7bb57.ps1

Resource

win7-20231215-en

oski infostealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

4c8015bbc773e46fdbd2ed3785d7bb57.ps1

Resource

win10v2004-20231215-en

oski infostealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

oski

C2

103.99.1.60/b11k/

Targets

- Target
  
  4c8015bbc773e46fdbd2ed3785d7bb57.bin
- Size
  
  493KB
- MD5
  
  4c8015bbc773e46fdbd2ed3785d7bb57
- SHA1
  
  64df0b0921bd0c9eb7189c17fe1a7111c34de176
- SHA256
  
  9bb9ebda548a1b5411f95a24e4f2b27705473e91033ae6cb158c19eb2cca5908
- SHA512
  
  824b2ee4d088340be9a0f589b50bf2ba08540000c99db380bfe9d1a849eb5f01e16f0e650bbadb45d4d89fce6fb2408a597cc6eeae1147ebda353b0305706a7c
- SSDEEP
  
  12288:FMBZjw0RJ9u5ILYDxD3fxYehza/tw64Pj:FMn3u
Score

10^/10

oski infostealer
- Oski
  Oski is an infostealer targeting browser data, crypto wallets.
  infostealer oski
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

oskiinfostealer

behavioral2

oskiinfostealer

© 2018-2025

Terms | Privacy