Overview

overview

10

Static

static

3

file.exe

windows7-x64

10

file.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    file

  • Size

    356KB

  • Sample

    231010-1vyrgsea7s

  • MD5

    87f37631a05f33d93d78dae9d1a462fd

  • SHA1

    a7b494439526e024bda21822de59f4f81042804d

  • SHA256

    f7f9b5e8857de83934732e943bbb0d9d996ccf596dd20069201e0d9e20f7cb79

  • SHA512

    6f10cbca5ecb3eb3da0c3d51f7075b4236942b17e15ababff0e250f2a0ea4439c4009eb7a11c6d16c86824569efeb658ba37188d7f65cace75e8a34e3022b9f9

  • SSDEEP

    6144:CkTeW/s5GqrO5aXnfEGIXWPvZAOfyECo6wbG+22Ov69AC9K7B180X6ZFB2iPIPXT:amcGqrOk86xLCoWV8iwQPXKT9k5lQss2

Score
10/10
mysticstealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      file

    • Size

      356KB

    • MD5

      87f37631a05f33d93d78dae9d1a462fd

    • SHA1

      a7b494439526e024bda21822de59f4f81042804d

    • SHA256

      f7f9b5e8857de83934732e943bbb0d9d996ccf596dd20069201e0d9e20f7cb79

    • SHA512

      6f10cbca5ecb3eb3da0c3d51f7075b4236942b17e15ababff0e250f2a0ea4439c4009eb7a11c6d16c86824569efeb658ba37188d7f65cace75e8a34e3022b9f9

    • SSDEEP

      6144:CkTeW/s5GqrO5aXnfEGIXWPvZAOfyECo6wbG+22Ov69AC9K7B180X6ZFB2iPIPXT:amcGqrOk86xLCoWV8iwQPXKT9k5lQss2

    Score
    10/10
    mysticstealer

    • Detect Mystic stealer payload

    • Mystic

      Mystic is an infostealer written in C++.

      stealermystic

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks