mystic | 48306763d304a290be40adce5ab80399d794adb0536010e3baff40e086631d69 | Triage

Sharing

General

Target

48306763d304a290be40adce5ab80399d794adb0536010e3baff40e086631d69
Size

396KB
Sample

231011-1pcbased8t
MD5

65b9f7ad3e4cc060170b667f85c4d4f4
SHA1

6f1148ed512d488f7b687f4525371faab28cdb87
SHA256

48306763d304a290be40adce5ab80399d794adb0536010e3baff40e086631d69
SHA512

e88921a6b295a05a331e217398c98f0009f17165b42a809b255ee95215f8ff2060c9c0d26ee89fa3f642c4f7ecb9a578a0d3ebbc498a8d095ad4043fd5750aff
SSDEEP

12288:cNVfqW5sEe25ufUDee1gelT9hKkhbKh/cQswh:cNV75vPF1gelRThccuh

Score

10^/10

mystic stealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

- Target
  
  48306763d304a290be40adce5ab80399d794adb0536010e3baff40e086631d69
- Size
  
  396KB
- MD5
  
  65b9f7ad3e4cc060170b667f85c4d4f4
- SHA1
  
  6f1148ed512d488f7b687f4525371faab28cdb87
- SHA256
  
  48306763d304a290be40adce5ab80399d794adb0536010e3baff40e086631d69
- SHA512
  
  e88921a6b295a05a331e217398c98f0009f17165b42a809b255ee95215f8ff2060c9c0d26ee89fa3f642c4f7ecb9a578a0d3ebbc498a8d095ad4043fd5750aff
- SSDEEP
  
  12288:cNVfqW5sEe25ufUDee1gelT9hKkhbKh/cQswh:cNV75vPF1gelRThccuh
Score

10^/10

mystic stealer
- Mystic
  Mystic is an infostealer written in C++.
  stealer mystic
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2