mystic | 0321ff9b349c1bda3dbb56c61d35ebe56ac8ac9dfbb6206048bd9b8153538d88 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0321ff9b349c1bda3dbb56c61d35ebe56ac8ac9dfbb6206048bd9b8153538d88
Size

396KB
Sample

231011-161p8ahe49
MD5

f0cb7180b76f57d1242f13198344bfa9
SHA1

b8faa649b3af44174d43a8871e84d57a223c6302
SHA256

0321ff9b349c1bda3dbb56c61d35ebe56ac8ac9dfbb6206048bd9b8153538d88
SHA512

f34899527015ac6ecd290db00b90bd32ab57a5d9e484357abd87e6a49b26e7b5d12de41117b6ca81ffa48d3c1f58d820dcedb37eebfaef41eddcb62169076fd4
SSDEEP

6144:lNAhUOqW5XJ6EDOpvOCm5MNuAOEaMjNy7hsU1XXaFc+Bs8YdD4ZJsgqwh:lNmdqW5sEe2uuydxyrBXaFFBpZspwh

Score

10^/10

mystic stealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

- Target
  
  0321ff9b349c1bda3dbb56c61d35ebe56ac8ac9dfbb6206048bd9b8153538d88
- Size
  
  396KB
- MD5
  
  f0cb7180b76f57d1242f13198344bfa9
- SHA1
  
  b8faa649b3af44174d43a8871e84d57a223c6302
- SHA256
  
  0321ff9b349c1bda3dbb56c61d35ebe56ac8ac9dfbb6206048bd9b8153538d88
- SHA512
  
  f34899527015ac6ecd290db00b90bd32ab57a5d9e484357abd87e6a49b26e7b5d12de41117b6ca81ffa48d3c1f58d820dcedb37eebfaef41eddcb62169076fd4
- SSDEEP
  
  6144:lNAhUOqW5XJ6EDOpvOCm5MNuAOEaMjNy7hsU1XXaFc+Bs8YdD4ZJsgqwh:lNmdqW5sEe2uuydxyrBXaFFBpZspwh
Score

10^/10

mystic stealer
- Mystic
  Mystic is an infostealer written in C++.
  stealer mystic
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2