mystic | 5a7c31b5c0b9951a8789fab6681789046cfa97cf637fd7eef11e2d65b9dcf3da | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

dridex

windows10-1703-x64

Sharing

General

Target

5a7c31b5c0b9951a8789fab6681789046cfa97cf637fd7eef11e2d65b9dcf3da
Size

1.2MB
Sample

231006-t6hq3sed9z
MD5

fffffe125969cbbe6ccee9753ae33415
SHA1

aad336d9eedc9f77358169cf77c3580e52a9998c
SHA256

5a7c31b5c0b9951a8789fab6681789046cfa97cf637fd7eef11e2d65b9dcf3da
SHA512

7a0a85b1df53258c54086fe76a23f0b7eaaff88eb74e509a23e97e3975908752c6c422b35779a4fb416af2af0f1039adf1fde4c1986b6f43f50ddd617439cf2d
SSDEEP

24576:dysI1+2j148/+BF2qzD73483PwK+Bd5oxNjeKHCxVAYN+:4sd2v2RP3nf3zHCXN

Score

10^/10

mystic persistence stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

5a7c31b5c0b9951a8789fab6681789046cfa97cf637fd7eef11e2d65b9dcf3da.exe

Resource

win10-20230915-en

mystic persistence stealer

windows10-1703-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  5a7c31b5c0b9951a8789fab6681789046cfa97cf637fd7eef11e2d65b9dcf3da
- Size
  
  1.2MB
- MD5
  
  fffffe125969cbbe6ccee9753ae33415
- SHA1
  
  aad336d9eedc9f77358169cf77c3580e52a9998c
- SHA256
  
  5a7c31b5c0b9951a8789fab6681789046cfa97cf637fd7eef11e2d65b9dcf3da
- SHA512
  
  7a0a85b1df53258c54086fe76a23f0b7eaaff88eb74e509a23e97e3975908752c6c422b35779a4fb416af2af0f1039adf1fde4c1986b6f43f50ddd617439cf2d
- SSDEEP
  
  24576:dysI1+2j148/+BF2qzD73483PwK+Bd5oxNjeKHCxVAYN+:4sd2v2RP3nf3zHCXN
Score

10^/10

mystic persistence stealer
- Detect Mystic stealer payload
- Mystic
  Mystic is an infostealer written in C++.
  stealer mystic
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

mysticpersistencestealer

© 2018-2025

Terms | Privacy