oski | 2d510eb788c8dd9ae2f055811888c11b761c6b278bf0fe77e26b2ae5417ab86a | Triage

Submit
Reports

Overview

overview

Static

static

1

56711d9573...41.ps1

windows7-x64

1

56711d9573...41.ps1

windows10-2004-x64

Sharing

General

Target

56711d95738034380f8e51d2da4fee41
Size

485KB
Sample

240112-pg8hzsgde5
MD5

56711d95738034380f8e51d2da4fee41
SHA1

786536b8be12ae7daf81a2a0252afac34eb047a9
SHA256

2d510eb788c8dd9ae2f055811888c11b761c6b278bf0fe77e26b2ae5417ab86a
SHA512

09a25f5defc0fcd300d7e599a98f80525248c5457eb0555fcafc8c2ce92a04122674be952122dc584071abfcbb919d51d7a617206d14202823ec941e55931fe0
SSDEEP

12288:+Zjw0RJ9u5ILYDxD3fxYehza/tw64Bigu:q32u

Score

10^/10

oski infostealer

Static task

static1

Behavioral task

behavioral1

Sample

56711d95738034380f8e51d2da4fee41.ps1

Resource

win7-20231215-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

56711d95738034380f8e51d2da4fee41.ps1

Resource

win10v2004-20231215-en

oski infostealer

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

oski

C2

/103.114.107.28/l32/

Targets

- Target
  
  56711d95738034380f8e51d2da4fee41
- Size
  
  485KB
- MD5
  
  56711d95738034380f8e51d2da4fee41
- SHA1
  
  786536b8be12ae7daf81a2a0252afac34eb047a9
- SHA256
  
  2d510eb788c8dd9ae2f055811888c11b761c6b278bf0fe77e26b2ae5417ab86a
- SHA512
  
  09a25f5defc0fcd300d7e599a98f80525248c5457eb0555fcafc8c2ce92a04122674be952122dc584071abfcbb919d51d7a617206d14202823ec941e55931fe0
- SSDEEP
  
  12288:+Zjw0RJ9u5ILYDxD3fxYehza/tw64Bigu:q32u
Score

10^/10

oski infostealer
- Oski
  Oski is an infostealer targeting browser data, crypto wallets.
  infostealer oski
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

oskiinfostealer

© 2018-2025

Terms | Privacy