Overview

overview

10

Static

static

3

8f9e4610a2...62.exe

windows7-x64

10

8f9e4610a2...62.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    8f9e4610a269b4ef47ec54fe17b9cdb3e841d6e78f0bffbc61f4e97e8b2fc862

  • Size

    356KB

  • Sample

    231010-2mmvpafh8t

  • MD5

    4ba68dd0a7e3ae52cbebff6fe99d9619

  • SHA1

    8c9eb993c2425a2b4ba64fd92b264142d80dfab1

  • SHA256

    8f9e4610a269b4ef47ec54fe17b9cdb3e841d6e78f0bffbc61f4e97e8b2fc862

  • SHA512

    2230fde5f325a28c44f4c679fe4da7282891ed314ef1d4b23ec7c826167f1f4e9bfd046760b9e736494dfd3e04c9b0029e552183ae21040e0ae01a7ed74eacdd

  • SSDEEP

    6144:T7YZx/d5kbrcja0ecz13/i/vZAOT2i8tGi4MMIflaaaWai1IkcMM9u6ys0BC+:yRzkbrceu2xe+nIflaRWai1IkpM9u5s2

Score
10/10
mysticstealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      8f9e4610a269b4ef47ec54fe17b9cdb3e841d6e78f0bffbc61f4e97e8b2fc862

    • Size

      356KB

    • MD5

      4ba68dd0a7e3ae52cbebff6fe99d9619

    • SHA1

      8c9eb993c2425a2b4ba64fd92b264142d80dfab1

    • SHA256

      8f9e4610a269b4ef47ec54fe17b9cdb3e841d6e78f0bffbc61f4e97e8b2fc862

    • SHA512

      2230fde5f325a28c44f4c679fe4da7282891ed314ef1d4b23ec7c826167f1f4e9bfd046760b9e736494dfd3e04c9b0029e552183ae21040e0ae01a7ed74eacdd

    • SSDEEP

      6144:T7YZx/d5kbrcja0ecz13/i/vZAOT2i8tGi4MMIflaaaWai1IkcMM9u6ys0BC+:yRzkbrceu2xe+nIflaRWai1IkpM9u5s2

    Score
    10/10
    mysticstealer

    • Detect Mystic stealer payload

    • Mystic

      Mystic is an infostealer written in C++.

      stealermystic

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks