mystic | f6116442a2973862c838effc2b1296f0435e1233caf64c32c0d3ae9feb9d2834 | Triage

Sharing

General

Target

f6116442a2973862c838effc2b1296f0435e1233caf64c32c0d3ae9feb9d2834_JC.exe
Size

695KB
Sample

231011-18sgmahg33
MD5

ce0aa245546b4388c31e265389630022
SHA1

45a16a59a2047b88942afe8656e439bd18242c37
SHA256

f6116442a2973862c838effc2b1296f0435e1233caf64c32c0d3ae9feb9d2834
SHA512

c9d1f4170c06cf59a2c20f310efbb7c21c052d1f5d494a06e5d4ad92e2c519d16e9641c36f0c0a4193daf1f0fec1ce535930f0b1986b2b22a3d2f8fc8de734c2
SSDEEP

12288:9P/gohZVucQ5qfICJSHSsPe5A96RPYw9l:dgQ7pJCSsPEW4

Score

10^/10

mystic stealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

- Target
  
  f6116442a2973862c838effc2b1296f0435e1233caf64c32c0d3ae9feb9d2834_JC.exe
- Size
  
  695KB
- MD5
  
  ce0aa245546b4388c31e265389630022
- SHA1
  
  45a16a59a2047b88942afe8656e439bd18242c37
- SHA256
  
  f6116442a2973862c838effc2b1296f0435e1233caf64c32c0d3ae9feb9d2834
- SHA512
  
  c9d1f4170c06cf59a2c20f310efbb7c21c052d1f5d494a06e5d4ad92e2c519d16e9641c36f0c0a4193daf1f0fec1ce535930f0b1986b2b22a3d2f8fc8de734c2
- SSDEEP
  
  12288:9P/gohZVucQ5qfICJSHSsPe5A96RPYw9l:dgQ7pJCSsPEW4
Score

10^/10

mystic stealer
- Mystic
  Mystic is an infostealer written in C++.
  stealer mystic
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2