Overview

overview

10

Static

static

3

9072af6584...f8.exe

windows7-x64

10

9072af6584...f8.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    9072af6584cc2778c7d066054e1f8e9d58458e46b3ba78a2d33f14fc87f5faf8

  • Size

    356KB

  • Sample

    231010-2q7n9sgc6z

  • MD5

    daceb685006348afec45b004a927cd90

  • SHA1

    7f37508936271cc76fe6217bfb8b7e1e960214d8

  • SHA256

    9072af6584cc2778c7d066054e1f8e9d58458e46b3ba78a2d33f14fc87f5faf8

  • SHA512

    2bb4bdbec0ad3e946fe6c3ac01e9d76fc1e6358a44849ec93d8b831b5602f523d396a0367abb3301ace8504d2d19bea8d800b0869896709a8a5c83fbe53002c4

  • SSDEEP

    6144:KwTeW/s5GqrO5aXnfEGIXWPvZAOLy4Si5JtdfMvIUp5RY8Sh+ffVs0BC+:GmcGqrOk86xuinttMvIUp5jShas0BC+

Score
10/10
mysticstealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      9072af6584cc2778c7d066054e1f8e9d58458e46b3ba78a2d33f14fc87f5faf8

    • Size

      356KB

    • MD5

      daceb685006348afec45b004a927cd90

    • SHA1

      7f37508936271cc76fe6217bfb8b7e1e960214d8

    • SHA256

      9072af6584cc2778c7d066054e1f8e9d58458e46b3ba78a2d33f14fc87f5faf8

    • SHA512

      2bb4bdbec0ad3e946fe6c3ac01e9d76fc1e6358a44849ec93d8b831b5602f523d396a0367abb3301ace8504d2d19bea8d800b0869896709a8a5c83fbe53002c4

    • SSDEEP

      6144:KwTeW/s5GqrO5aXnfEGIXWPvZAOLy4Si5JtdfMvIUp5RY8Sh+ffVs0BC+:GmcGqrOk86xuinttMvIUp5jShas0BC+

    Score
    10/10
    mysticstealer

    • Detect Mystic stealer payload

    • Mystic

      Mystic is an infostealer written in C++.

      stealermystic

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks