{
	"id": "3b414126-612f-4619-9f76-c7bade9f83e6",
	"created_at": "2026-04-06T01:30:34.104706Z",
	"updated_at": "2026-04-10T03:20:19.303306Z",
	"deleted_at": null,
	"sha1_hash": "8e04c10a77030daf1acd6edb2141185cce874255",
	"title": "en_mars_stealer_technical_analysis_report.pdf",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 30019,
	"plain_text": "en_mars_stealer_technical_analysis_report.pdf\r\nArchived: 2026-04-06 00:53:14 UTC\r\nSida 3 av 18\r\n1\r\nPreview\r\nMars Stealer is a powerful malware presented on Russian hacker forums. Thanks to\r\nthe analyzes carried out, it has been determined that Mars Stealer is a redesigned\r\nversion of the malware called Oski, which was discontinued in the middle of 2020.\r\nCommonly, spam email, compressed file or download link is the most common\r\ndistribution method. Creating a malicious website that looks like pirated software is\r\nanother common method of spreading this malware.\r\nComputers that are infected with this malware;\r\n• Credit card information,\r\n• Automatic filling of the browser data,\r\n• Browser extension data,\r\n• Crypto wallets,\r\n• Access to crypto extension information.\r\nSource: https://drive.google.com/file/d/14cmYxzowVLyuiS5qDGOKzgI2_vak2Fve/view\r\nhttps://drive.google.com/file/d/14cmYxzowVLyuiS5qDGOKzgI2_vak2Fve/view\r\nPage 1 of 1",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"Malpedia"
	],
	"references": [
		"https://drive.google.com/file/d/14cmYxzowVLyuiS5qDGOKzgI2_vak2Fve/view"
	],
	"report_names": [
		"view"
	],
	"threat_actors": [],
	"ts_created_at": 1775439034,
	"ts_updated_at": 1775791219,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/8e04c10a77030daf1acd6edb2141185cce874255.pdf",
		"text": "https://archive.orkl.eu/8e04c10a77030daf1acd6edb2141185cce874255.txt",
		"img": "https://archive.orkl.eu/8e04c10a77030daf1acd6edb2141185cce874255.jpg"
	}
}