Overview

overview

10

Static

static

1

NEAS.e45db...JC.exe

windows7-x64

10

NEAS.e45db...JC.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.e45db5ef043ad9b5c82c58d0bff06826c09fe8eb833fcf9df03354265bc43755_JC.exe

  • Size

    378KB

  • Sample

    231007-q79z6sfb84

  • MD5

    6f7a8a6721ec18e6ac75d65f69e86caf

  • SHA1

    cb04920d42f6962c3bfed223f5c4f27f9ef7fa1f

  • SHA256

    e45db5ef043ad9b5c82c58d0bff06826c09fe8eb833fcf9df03354265bc43755

  • SHA512

    0d033e7e066a10cf7d627b6e6baa2d091ecd83b41c3684a42984715d42c3a91ffef82feba8812820a4daa4414c24259dd31376af6eb5b54b3d4ee3e3708bca24

  • SSDEEP

    6144:h4ZSt92pCryG4kfjSGwEi56AOlGsnlMagGNB5MqAy+rExmSctIvY9U1x0D:h4Zu2wryNSWYsGNnf1xGtmY9BD

Score
10/10
mysticstealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      NEAS.e45db5ef043ad9b5c82c58d0bff06826c09fe8eb833fcf9df03354265bc43755_JC.exe

    • Size

      378KB

    • MD5

      6f7a8a6721ec18e6ac75d65f69e86caf

    • SHA1

      cb04920d42f6962c3bfed223f5c4f27f9ef7fa1f

    • SHA256

      e45db5ef043ad9b5c82c58d0bff06826c09fe8eb833fcf9df03354265bc43755

    • SHA512

      0d033e7e066a10cf7d627b6e6baa2d091ecd83b41c3684a42984715d42c3a91ffef82feba8812820a4daa4414c24259dd31376af6eb5b54b3d4ee3e3708bca24

    • SSDEEP

      6144:h4ZSt92pCryG4kfjSGwEi56AOlGsnlMagGNB5MqAy+rExmSctIvY9U1x0D:h4Zu2wryNSWYsGNnf1xGtmY9BD

    Score
    10/10
    mysticstealer

    • Detect Mystic stealer payload

    • Mystic

      Mystic is an infostealer written in C++.

      stealermystic

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks