General

  • Target

    1205c15ae95fefb9d98e9b37ed202c2ae332df0624b66b301da647fee530210d

  • Size

    1.2MB

  • Sample

    231007-jrkl1scb86

  • MD5

    46272a97e51c53dc538dab101f341058

  • SHA1

    0e491bd51065ffc181218521f78f0bcc711d8025

  • SHA256

    1205c15ae95fefb9d98e9b37ed202c2ae332df0624b66b301da647fee530210d

  • SHA512

    c6bf1754e8d88bb4dd29f140d320630db94b1be6966379d9d3b41ebf36ab4e3c5a9f25e8d13e2b29e725adfae1c9d6f68f6abf4b71e3bcb68ba773048647358c

  • SSDEEP

    24576:hyUsow7Nm8ztQICmHMx+al+U5kr//5xYQF2V0f:Uhl7NtCmH4/TY/5O2x

Malware Config

Targets

    • Target

      1205c15ae95fefb9d98e9b37ed202c2ae332df0624b66b301da647fee530210d

    • Size

      1.2MB

    • MD5

      46272a97e51c53dc538dab101f341058

    • SHA1

      0e491bd51065ffc181218521f78f0bcc711d8025

    • SHA256

      1205c15ae95fefb9d98e9b37ed202c2ae332df0624b66b301da647fee530210d

    • SHA512

      c6bf1754e8d88bb4dd29f140d320630db94b1be6966379d9d3b41ebf36ab4e3c5a9f25e8d13e2b29e725adfae1c9d6f68f6abf4b71e3bcb68ba773048647358c

    • SSDEEP

      24576:hyUsow7Nm8ztQICmHMx+al+U5kr//5xYQF2V0f:Uhl7NtCmH4/TY/5O2x

    • Detect Mystic stealer payload

    • Mystic

      Mystic is an infostealer written in C++.

    • Executes dropped EXE

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks