General

  • Target

    0348c0fa7c4858eb818ea55d1a0a1300a2ecfd47a47d79ba25409652404f7ee8

  • Size

    378KB

  • Sample

    231006-1p27qagb61

  • MD5

    676ec6211eb35842278ba27045ec6aa9

  • SHA1

    737f86db3e8dc8a30f83ffb895eec7c30bc9f0d4

  • SHA256

    0348c0fa7c4858eb818ea55d1a0a1300a2ecfd47a47d79ba25409652404f7ee8

  • SHA512

    2782028dc5b43e03130ff9b879f3173d815cbe6223bd25f727433b5ec1ee7a415b197f34d35455afa3fd5cce9ee80855d3b353cd4a69f82fe679a6c599117a88

  • SSDEEP

    6144:n4kS292pCryG4kfjSGwEi56AOvGI0yp+y3PLQRaMhvfV9sHkg0D:n4kz2wryNSUI0s/LQRff9sHiD

Score
10/10

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      0348c0fa7c4858eb818ea55d1a0a1300a2ecfd47a47d79ba25409652404f7ee8

    • Size

      378KB

    • MD5

      676ec6211eb35842278ba27045ec6aa9

    • SHA1

      737f86db3e8dc8a30f83ffb895eec7c30bc9f0d4

    • SHA256

      0348c0fa7c4858eb818ea55d1a0a1300a2ecfd47a47d79ba25409652404f7ee8

    • SHA512

      2782028dc5b43e03130ff9b879f3173d815cbe6223bd25f727433b5ec1ee7a415b197f34d35455afa3fd5cce9ee80855d3b353cd4a69f82fe679a6c599117a88

    • SSDEEP

      6144:n4kS292pCryG4kfjSGwEi56AOvGI0yp+y3PLQRaMhvfV9sHkg0D:n4kz2wryNSUI0s/LQRff9sHiD

    Score
    10/10
    • Detect Mystic stealer payload

    • Mystic

      Mystic is an infostealer written in C++.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks