General

  • Target

    mkpub_part_b.zip

  • Size

    644KB

  • MD5

    575885786d079750919aafe0f47785a2

  • SHA1

    35dba4d9781c705eea072caf1ca7844dd241ccc6

  • SHA256

    0a775c196299f276df502a546abce3fef0359e80fd2fc84cdde6dc9c91870de0

  • SHA512

    ef0292381dadcdee4659a282e5f0635aee1790f16b55d24fcc8335d316dbf6a23dabfcecd9125b16a2f3f42a9f96a69923eee1454dd0cfc9d698a09ecb7ad14f

  • SSDEEP

    12288:ZdMqfZaSgVk4CPmKbScpLvujuYI5WEEl4qgmFUqvCW9DDE4+NzTb:zpSpCPTuOvpYII1PghqaW9DDQ

Score
10/10

Malware Config

Signatures

  • Detect Mystic stealer payload 1 IoCs
  • Mystic family
  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

Files

  • mkpub_part_b.zip
    .zip

    Password: infected

  • 36b5af66f601502999214171c0f4d217a65fcbbd7d2a6b93df13b8a39bd0250c.bin
    .exe windows:4 windows x86

    Password: infected

    f34d5f2d4577ed6d9ceec516c1f5a744


    Code Sign

    Headers

    Imports

    Sections

  • 4e0e4660d283270ae7abac2520b0bbd19324ff879c079ddb771c072bc7bbf60e.bin
    .exe windows:5 windows x86

    Password: infected

    0139538a651a21148db92c7ae213c5f3


    Headers

    Imports

    Sections

  • 4e1e7978279a0ae65856db0180a0fde56b17572d1483f15bf56a6875ac0c045a.bin
    .exe windows:5 windows x86

    Password: infected

    e9df9444a99e49eb51fccc88bae85d1a


    Headers

    Imports

    Sections

  • 4f78fafd88db3a202cd19735892319e7de50ff4c8d949239316f8ea5270578ce.bin
    .dll windows:6 windows x64

    Password: infected

    edff42e34b3d86147cd19fb16d27e61c


    Headers

    Imports

    Exports

    Sections

  • 53b125ce63cb17baee9c49fd3d7ae834ecac6168313ef7a92e46639262d96be3.bin
    .exe windows:5 windows x86

    Password: infected

    e9df9444a99e49eb51fccc88bae85d1a


    Headers

    Imports

    Sections