General

  • Target

    f5f1b124c7f9fe2918c8b1479ae55ffbaa115f43be4dbd229c2cdeb8d80e0269

  • Size

    1.2MB

  • Sample

    231007-fl47pabd97

  • MD5

    6818063fec9f1a697ee0ccc93b15d847

  • SHA1

    230cb89b062d018695eafc62fb62041ad1240928

  • SHA256

    f5f1b124c7f9fe2918c8b1479ae55ffbaa115f43be4dbd229c2cdeb8d80e0269

  • SHA512

    085565a4b8c9c55d6f6d693fc152aae415333a305e88f7fdb33b284461cf174e3819970caa1239753969f00da648662db07c89e8fdde72e2145f407bff03be58

  • SSDEEP

    24576:7yZ3eqBn6B3LZwTx0QMHBZNw+mzG+0Mk0CdMn6h7xe5gDpyV2hnehh:uYq+LGkZmK+k0CdMGd9nnq

Malware Config

Targets

    • Target

      f5f1b124c7f9fe2918c8b1479ae55ffbaa115f43be4dbd229c2cdeb8d80e0269

    • Size

      1.2MB

    • MD5

      6818063fec9f1a697ee0ccc93b15d847

    • SHA1

      230cb89b062d018695eafc62fb62041ad1240928

    • SHA256

      f5f1b124c7f9fe2918c8b1479ae55ffbaa115f43be4dbd229c2cdeb8d80e0269

    • SHA512

      085565a4b8c9c55d6f6d693fc152aae415333a305e88f7fdb33b284461cf174e3819970caa1239753969f00da648662db07c89e8fdde72e2145f407bff03be58

    • SSDEEP

      24576:7yZ3eqBn6B3LZwTx0QMHBZNw+mzG+0Mk0CdMn6h7xe5gDpyV2hnehh:uYq+LGkZmK+k0CdMGd9nnq

    • Detect Mystic stealer payload

    • Mystic

      Mystic is an infostealer written in C++.

    • Executes dropped EXE

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks