Overview

overview

10

Static

static

3

0b6150d792...ba.exe

windows7-x64

10

0b6150d792...ba.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0b6150d79264d43a2a7c4f5fd8831246e4fd54ba4511e5c296763b4523c991ba

  • Size

    356KB

  • Sample

    231010-13wl4aee9s

  • MD5

    23e3097e086af48b7618413cb197eb40

  • SHA1

    7318782c91785af162127ec5217bc47c106b6a90

  • SHA256

    0b6150d79264d43a2a7c4f5fd8831246e4fd54ba4511e5c296763b4523c991ba

  • SHA512

    17acfcc267898b67e7ae07635a57be7768adad63f255676d9ca2f21067375493b8069e06dba8e544ac5d6cb319e5a6d9f0f757da4c3e5c65d1f92796cf3268ae

  • SSDEEP

    6144:tMTeW/s5GqrO5aXnfEGIXWPvZAOVyar/1F/sJaZFeQsoEVs0BC+:jmcGqrOk86x6oFKoAs0BC+

Score
10/10
mysticstealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      0b6150d79264d43a2a7c4f5fd8831246e4fd54ba4511e5c296763b4523c991ba

    • Size

      356KB

    • MD5

      23e3097e086af48b7618413cb197eb40

    • SHA1

      7318782c91785af162127ec5217bc47c106b6a90

    • SHA256

      0b6150d79264d43a2a7c4f5fd8831246e4fd54ba4511e5c296763b4523c991ba

    • SHA512

      17acfcc267898b67e7ae07635a57be7768adad63f255676d9ca2f21067375493b8069e06dba8e544ac5d6cb319e5a6d9f0f757da4c3e5c65d1f92796cf3268ae

    • SSDEEP

      6144:tMTeW/s5GqrO5aXnfEGIXWPvZAOVyar/1F/sJaZFeQsoEVs0BC+:jmcGqrOk86x6oFKoAs0BC+

    Score
    10/10
    mysticstealer

    • Detect Mystic stealer payload

    • Mystic

      Mystic is an infostealer written in C++.

      stealermystic

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks