General

  • Target

    8686fafede5fe7c30d6fe69dc42fa654

  • Size

    706KB

  • Sample

    240201-ldngvshbb5

  • MD5

    8686fafede5fe7c30d6fe69dc42fa654

  • SHA1

    623f86282c1e1d5b04beb7a91a2ac83e60bb0b34

  • SHA256

    db22f8a0e715eacf4b2c0341023da4d9e3728a84429518af2ab45ae112dd425a

  • SHA512

    730d84b289e8331de4c26bcca646d6040db06bb494a45a9cb2f1174f287f1c1053151b45111cb8195478b51837cb66b8ae7e449f9814fef4a43f27bacb518e72

  • SSDEEP

    6144:raJpHs+ApelD0TpSXKFlECflUZdAMr9LXoFNihdhUNK/16dBzMeiuoC6GSOTm02:BOARq02

Score
10/10

Malware Config

Extracted

Family

oski

C2

103.99.1.60/we/king/

Targets

    • Target

      8686fafede5fe7c30d6fe69dc42fa654

    • Size

      706KB

    • MD5

      8686fafede5fe7c30d6fe69dc42fa654

    • SHA1

      623f86282c1e1d5b04beb7a91a2ac83e60bb0b34

    • SHA256

      db22f8a0e715eacf4b2c0341023da4d9e3728a84429518af2ab45ae112dd425a

    • SHA512

      730d84b289e8331de4c26bcca646d6040db06bb494a45a9cb2f1174f287f1c1053151b45111cb8195478b51837cb66b8ae7e449f9814fef4a43f27bacb518e72

    • SSDEEP

      6144:raJpHs+ApelD0TpSXKFlECflUZdAMr9LXoFNihdhUNK/16dBzMeiuoC6GSOTm02:BOARq02

    Score
    10/10
    • Oski

      Oski is an infostealer targeting browser data, crypto wallets.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks