mystic | a3754c28f55860c4021437ba0582b122ab0f56797e3823ae3f03bfcc5b869a54 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a3754c28f55860c4021437ba0582b122ab0f56797e3823ae3f03bfcc5b869a54
Size

396KB
Sample

231011-2g8j7sah56
MD5

707bcb6e37bd73555d0a7b47eb45a5bd
SHA1

d9f662146a31d7ad398a63a1b10d49676df7bbc7
SHA256

a3754c28f55860c4021437ba0582b122ab0f56797e3823ae3f03bfcc5b869a54
SHA512

5b1bb7a1c2061eedd70d7eb16e9397c5d68f6eea81c924c1c9dace3256e337701fbe6a380f4ce1627820fd4e0cfeb65b490913cd029115c04e592610d59bef3d
SSDEEP

12288:nNxdqW5sEe2uucw3O8PN1hzRr2QE3wlwh:nNxt5vDdl1Vs5h

Score

10^/10

mystic stealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

- Target
  
  a3754c28f55860c4021437ba0582b122ab0f56797e3823ae3f03bfcc5b869a54
- Size
  
  396KB
- MD5
  
  707bcb6e37bd73555d0a7b47eb45a5bd
- SHA1
  
  d9f662146a31d7ad398a63a1b10d49676df7bbc7
- SHA256
  
  a3754c28f55860c4021437ba0582b122ab0f56797e3823ae3f03bfcc5b869a54
- SHA512
  
  5b1bb7a1c2061eedd70d7eb16e9397c5d68f6eea81c924c1c9dace3256e337701fbe6a380f4ce1627820fd4e0cfeb65b490913cd029115c04e592610d59bef3d
- SSDEEP
  
  12288:nNxdqW5sEe2uucw3O8PN1hzRr2QE3wlwh:nNxt5vDdl1Vs5h
Score

10^/10

mystic stealer
- Mystic
  Mystic is an infostealer written in C++.
  stealer mystic
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2