osiris | b73df585c4404f7d9336de13f727cb3b2245ed2eec4016b9925641f444bc4eab | Triage

Submit
Reports

Overview

overview

Static

static

3

925ade29ba...49.exe

windows7-x64

925ade29ba...49.exe

windows10-2004-x64

Sharing

General

Target

925ade29ba8a19d8ee9c975f7a2e7b49
Size

3.1MB
Sample

240205-syavtsdahp
MD5

925ade29ba8a19d8ee9c975f7a2e7b49
SHA1

e77bd3fbb537215e4c932f1c1305cef2e275996f
SHA256

b73df585c4404f7d9336de13f727cb3b2245ed2eec4016b9925641f444bc4eab
SHA512

b1129b8e3b6b770fd8dace8cf67cfc8a6e968068f46772dd768efaccb7b42145ce5809936c945d2428c63b3a9471d054a8c3eee1aa4ad4ea45c20bc77d39ec7b
SSDEEP

49152:NitOd4k7ydepSSPIZDscC+QZKDVdfu31e:NiK4IIZYfZKDVQFe

Score

10^/10

osiris banker botnet

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

925ade29ba8a19d8ee9c975f7a2e7b49.exe

Resource

win7-20231215-en

osiris banker botnet

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

925ade29ba8a19d8ee9c975f7a2e7b49.exe

Resource

win10v2004-20231222-en

osiris banker botnet

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  925ade29ba8a19d8ee9c975f7a2e7b49
- Size
  
  3.1MB
- MD5
  
  925ade29ba8a19d8ee9c975f7a2e7b49
- SHA1
  
  e77bd3fbb537215e4c932f1c1305cef2e275996f
- SHA256
  
  b73df585c4404f7d9336de13f727cb3b2245ed2eec4016b9925641f444bc4eab
- SHA512
  
  b1129b8e3b6b770fd8dace8cf67cfc8a6e968068f46772dd768efaccb7b42145ce5809936c945d2428c63b3a9471d054a8c3eee1aa4ad4ea45c20bc77d39ec7b
- SSDEEP
  
  49152:NitOd4k7ydepSSPIZDscC+QZKDVdfu31e:NiK4IIZYfZKDVQFe
Score

10^/10

osiris banker botnet
- Osiris
  banker botnet osiris
- Blocklisted process makes network request
- Executes dropped EXE
- Loads dropped DLL
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
- Uses Tor communications
  Malware can proxy its traffic through Tor for more anonymity.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Proxy

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

osirisbankerbotnet

behavioral2

osirisbankerbotnet

© 2018-2024

Terms | Privacy