General

  • Target

    675519af0d42257c8a9833590b3202a53927483513d805a2e238652e70258110

  • Size

    1.2MB

  • Sample

    231007-hh7vhshe9w

  • MD5

    d50b72a7962a7f9db9d5f1ef3ad2f032

  • SHA1

    48b092f493e51deee744982de38edf6207805cdc

  • SHA256

    675519af0d42257c8a9833590b3202a53927483513d805a2e238652e70258110

  • SHA512

    6776b8ff41d5d3d9ce6cb1a6e011e6d26e5ce1803ef1f08aa978e80e95c56e439950c294a342696f5d28f692cda012af8745508b5f21ce9a2bf54336237a3221

  • SSDEEP

    24576:gyd9fFOSqfj7Ui6TVKgOne/MA6DO+0YD1Pnm2IoEKKDa5MySu6xHGLm:noLfPSgNne/MA6CIPn7IWKDAhL

Malware Config

Targets

    • Target

      675519af0d42257c8a9833590b3202a53927483513d805a2e238652e70258110

    • Size

      1.2MB

    • MD5

      d50b72a7962a7f9db9d5f1ef3ad2f032

    • SHA1

      48b092f493e51deee744982de38edf6207805cdc

    • SHA256

      675519af0d42257c8a9833590b3202a53927483513d805a2e238652e70258110

    • SHA512

      6776b8ff41d5d3d9ce6cb1a6e011e6d26e5ce1803ef1f08aa978e80e95c56e439950c294a342696f5d28f692cda012af8745508b5f21ce9a2bf54336237a3221

    • SSDEEP

      24576:gyd9fFOSqfj7Ui6TVKgOne/MA6DO+0YD1Pnm2IoEKKDa5MySu6xHGLm:noLfPSgNne/MA6CIPn7IWKDAhL

    • Detect Mystic stealer payload

    • Mystic

      Mystic is an infostealer written in C++.

    • Executes dropped EXE

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks