General

  • Target

    c16cab1c845d4f73318c21821b3b3337.exe

  • Size

    378KB

  • Sample

    231007-jcdvxshg8z

  • MD5

    c16cab1c845d4f73318c21821b3b3337

  • SHA1

    01660d42de619ab5497cd40dda2cf79d7b9684c7

  • SHA256

    df0b9492299708ab0be01adba36a7a6528172c0599a830ecd965189538d0d4b6

  • SHA512

    cfce119c96d33e26d16f5aae875af045a28d8bc150502c4786d2d8402172c890e43871b1f1f2a21ca62d7713aaf745b2eadf0e7581d7d662c06b4c8c2434a303

  • SSDEEP

    6144:CLCFCH557yGY/fjBximSLB5aAOniJvJuL6z6O2NqT0Kbw9FRfhPzhMm3tNj:CLZHr7yV3OWk9AL6mAgvb1jj

Score
10/10

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      c16cab1c845d4f73318c21821b3b3337.exe

    • Size

      378KB

    • MD5

      c16cab1c845d4f73318c21821b3b3337

    • SHA1

      01660d42de619ab5497cd40dda2cf79d7b9684c7

    • SHA256

      df0b9492299708ab0be01adba36a7a6528172c0599a830ecd965189538d0d4b6

    • SHA512

      cfce119c96d33e26d16f5aae875af045a28d8bc150502c4786d2d8402172c890e43871b1f1f2a21ca62d7713aaf745b2eadf0e7581d7d662c06b4c8c2434a303

    • SSDEEP

      6144:CLCFCH557yGY/fjBximSLB5aAOniJvJuL6z6O2NqT0Kbw9FRfhPzhMm3tNj:CLZHr7yV3OWk9AL6mAgvb1jj

    Score
    10/10
    • Detect Mystic stealer payload

    • Mystic

      Mystic is an infostealer written in C++.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks