Overview

overview

10

Static

static

3

db970fbede...f6.exe

windows7-x64

10

db970fbede...f6.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    db970fbede4952c1e2f41ad41931062704ad80bdec98b151c99d052d009e79f6

  • Size

    356KB

  • Sample

    231011-fkc2tach53

  • MD5

    4fec8fb51507384fbf2df512a9109915

  • SHA1

    bef50c7dcac43c05094ff13f5c6957c625d256de

  • SHA256

    db970fbede4952c1e2f41ad41931062704ad80bdec98b151c99d052d009e79f6

  • SHA512

    efbe6ff6c9d75103691940e2221f6949fa566271ba9a0d491ac2cdea024b9258c6c8072c8c25031017d3b73f09f310de9682201ebbee0121e0a486f2acd2117d

  • SSDEEP

    6144:zEYZx/d5kbrcja0ecz13/i/vZAO22TTplo3gnq7+qAxDtYRZxd+CzrWs0BC+:RRzkbrceu2xJnoQnzKRZxzCs0BC+

Score
10/10
mysticstealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      db970fbede4952c1e2f41ad41931062704ad80bdec98b151c99d052d009e79f6

    • Size

      356KB

    • MD5

      4fec8fb51507384fbf2df512a9109915

    • SHA1

      bef50c7dcac43c05094ff13f5c6957c625d256de

    • SHA256

      db970fbede4952c1e2f41ad41931062704ad80bdec98b151c99d052d009e79f6

    • SHA512

      efbe6ff6c9d75103691940e2221f6949fa566271ba9a0d491ac2cdea024b9258c6c8072c8c25031017d3b73f09f310de9682201ebbee0121e0a486f2acd2117d

    • SSDEEP

      6144:zEYZx/d5kbrcja0ecz13/i/vZAO22TTplo3gnq7+qAxDtYRZxd+CzrWs0BC+:RRzkbrceu2xJnoQnzKRZxzCs0BC+

    Score
    10/10
    mysticstealer

    • Detect Mystic stealer payload

    • Mystic

      Mystic is an infostealer written in C++.

      stealermystic

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks