osiris | ed614783ecd08afb919ae4b42625beaa6c9ed4207fa4f9c925c32a16d543ee3a | Triage

Resubmissions

17-04-2024 12:19

240417-pg5r4afh91 10

17-04-2024 12:18

240417-pg46kaee23 10

17-04-2024 12:18

240417-pg4j2afh9x 10

17-04-2024 12:18

240417-pg3yhaee22 10

17-04-2024 12:18

240417-pg1s5sfh9t 10

16-04-2024 14:07

240416-re2nrsde5s 10

Sharing

General

Target

ed614783ecd08afb919ae4b42625beaa6c9ed4207fa4f9c925c32a16d543ee3a
Size

1.3MB
Sample

240416-re2nrsde5s
MD5

40755985ba0182b59a34909770557b77
SHA1

68752dead25052420fd8e5b94c867233accad1f4
SHA256

ed614783ecd08afb919ae4b42625beaa6c9ed4207fa4f9c925c32a16d543ee3a
SHA512

788ec7a6c08ac4fb23e1489489152048c9663a3bcdebe767e3db304b5955f430c6bd06a16550b8c9c6bd5229a7cf2c5d1ca1ce6e40e1cbc0f2104d2630f7c507
SSDEEP

12288:hD0Yxtmgcj3DKjs16MKYIjhy+AC5j6vfNqi:hQYxtmiEEYIjhyQj6vfNqi

Score

10^/10

osiris banker botnet

Malware Config

Targets

- Target
  
  ed614783ecd08afb919ae4b42625beaa6c9ed4207fa4f9c925c32a16d543ee3a
- Size
  
  1.3MB
- MD5
  
  40755985ba0182b59a34909770557b77
- SHA1
  
  68752dead25052420fd8e5b94c867233accad1f4
- SHA256
  
  ed614783ecd08afb919ae4b42625beaa6c9ed4207fa4f9c925c32a16d543ee3a
- SHA512
  
  788ec7a6c08ac4fb23e1489489152048c9663a3bcdebe767e3db304b5955f430c6bd06a16550b8c9c6bd5229a7cf2c5d1ca1ce6e40e1cbc0f2104d2630f7c507
- SSDEEP
  
  12288:hD0Yxtmgcj3DKjs16MKYIjhy+AC5j6vfNqi:hQYxtmiEEYIjhyQj6vfNqi
Score

10^/10

osiris banker botnet
- Osiris
  banker botnet osiris
- Executes dropped EXE
- Loads dropped DLL
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
- Uses Tor communications
  Malware can proxy its traffic through Tor for more anonymity.
behavioral1 behavioral2 behavioral3 behavioral4 behavioral5

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Proxy

Exfiltration

Impact

Tasks

static1

behavioral1

osirisbankerbotnet

behavioral2

osirisbankerbotnet

behavioral3

osirisbankerbotnet

behavioral4

osirisbankerbotnet

behavioral5