Oski

Oski is a type of malware, specifically a stealer, that emerged as a clone of the Vidar malware, following the latter's leak. It was created to exploit and damage computer systems by infiltrating through suspicious downloads, emails, or websites, often unbeknownst to the user. Once it gains access to a system, Oski can steal personal information, disrupt operations, or even hold data hostage for ransom. Notable clones of Vidar include Oski and Mars Stealers, a proliferation likely due to the original malware being cracked. The rise of Oski and similar malware has seen a shift towards more buying and selling of logs for these popular stealers on dedicated Telegram channels. Secureworks found that RedLine, Anubis, SpiderMan, and Oski Stealer are prominently represented on this platform. This trend suggests that Telegram has benefited from the increased activity and popularity of these types of malware. However, both Oski and Mars stealers are currently considered to be defunct. These malware variants, including Oski, have incorporated verification features similar to their predecessors, Arkei and Vidar, as noted by Elastic. The creation of these strains follows a pattern of copying and modifying existing malware, with Vidar itself being a copycat of Arkei. Despite their eventual obsolescence, the impact of these malware strains highlights the continual evolution and threat of malicious software.