Overview

overview

10

Static

static

3

dridex

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    d3fdfcb831060bfcd06a1f4f5e96f295ed23253eb9ebc681fc0f1ad3d29bc327

  • Size

    1.8MB

  • Sample

    231004-vakfgafa99

  • MD5

    ed7a5a4634a8ce23a59e13637c4f8712

  • SHA1

    c1e71d5be41c1366d6b74279c5cac55599e9a87f

  • SHA256

    d3fdfcb831060bfcd06a1f4f5e96f295ed23253eb9ebc681fc0f1ad3d29bc327

  • SHA512

    0c9a4332943bd451b03da4388795d03dc2798b6b38e59233bb34aacc501df6cc2c7d2e52d350eeeb329b0bace8cbaa7511af146eebc986f251e9a37a095c2fb3

  • SSDEEP

    24576:buJ4WEBndDjd1Trdv7Dy6a9Dhvhq5DlQnnn:xdDjd1V7G6a3vc5DlQnnn

Score
10/10
mysticstealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      d3fdfcb831060bfcd06a1f4f5e96f295ed23253eb9ebc681fc0f1ad3d29bc327

    • Size

      1.8MB

    • MD5

      ed7a5a4634a8ce23a59e13637c4f8712

    • SHA1

      c1e71d5be41c1366d6b74279c5cac55599e9a87f

    • SHA256

      d3fdfcb831060bfcd06a1f4f5e96f295ed23253eb9ebc681fc0f1ad3d29bc327

    • SHA512

      0c9a4332943bd451b03da4388795d03dc2798b6b38e59233bb34aacc501df6cc2c7d2e52d350eeeb329b0bace8cbaa7511af146eebc986f251e9a37a095c2fb3

    • SSDEEP

      24576:buJ4WEBndDjd1Trdv7Dy6a9Dhvhq5DlQnnn:xdDjd1V7G6a3vc5DlQnnn

    Score
    10/10
    mysticstealer

    • Detect Mystic stealer payload

    • Mystic

      Mystic is an infostealer written in C++.

      stealermystic

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Matrix

Tasks