Overview

overview

10

Static

static

3

9ede6811a5...06.exe

windows7-x64

10

9ede6811a5...06.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9ede6811a55c8082d02b552392595f06

  • Size

    766KB

  • Sample

    240215-3ljx3scc43

  • MD5

    9ede6811a55c8082d02b552392595f06

  • SHA1

    f6490ccb746fabb8eaa25dd09e415af9d59410d0

  • SHA256

    2ca6487650676dfac02da8af32d2eea7c0a2162ff5c9881c54f698beac6921c4

  • SHA512

    c88ba0feff13a664433ee7da7538d8fcbb94850f1190b9b73c9748f50a4633e666acb0f0965e50b2cc58e923dd5e1ca760a839acd1ac76f7dc8aa617e452679f

  • SSDEEP

    12288:Ic00ApujcYUetQ0SeVtZClvK42sFwRQxyFMJI:IVujcbJ7ktZC+QEF

Score
10/10
oskiinfostealer

Malware Config

Extracted

Family

oski

C2

http://bctpump.us

Targets

    • Target

      9ede6811a55c8082d02b552392595f06

    • Size

      766KB

    • MD5

      9ede6811a55c8082d02b552392595f06

    • SHA1

      f6490ccb746fabb8eaa25dd09e415af9d59410d0

    • SHA256

      2ca6487650676dfac02da8af32d2eea7c0a2162ff5c9881c54f698beac6921c4

    • SHA512

      c88ba0feff13a664433ee7da7538d8fcbb94850f1190b9b73c9748f50a4633e666acb0f0965e50b2cc58e923dd5e1ca760a839acd1ac76f7dc8aa617e452679f

    • SSDEEP

      12288:Ic00ApujcYUetQ0SeVtZClvK42sFwRQxyFMJI:IVujcbJ7ktZC+QEF

    Score
    10/10
    oskiinfostealer

    • Oski

      Oski is an infostealer targeting browser data, crypto wallets.

      infostealeroski

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks