Overview

overview

10

Static

static

3

file.exe

windows7-x64

10

file.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    file.exe

  • Size

    356KB

  • Sample

    231011-fncv8adb76

  • MD5

    fd9c5c946e997348c799dd7b397baeb6

  • SHA1

    ea9665e25e9b542e6fdc760c6d0cf087ec3b3a42

  • SHA256

    69681a84faaa9db188bc47aa79ec4f8acbcc8b1452a59c86be9ea5e44f552d75

  • SHA512

    c15b3dc52edbb98e5d9ef04d7610861dd845e4b70e1b854e50faad5c20170b43b36e90d7d845c0561f5bbea345916765f6c7262594c5c48d6ba23c6b7a8615ab

  • SSDEEP

    6144:DuTeW/s5GqrO5aXnfEGIXWPvZAOfykow2SGAn2KnIelfECnnnLURRlVs0BC+:DmcGqrOk86x/bnGKIwnnnYHs0BC+

Score
10/10
mysticstealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      file.exe

    • Size

      356KB

    • MD5

      fd9c5c946e997348c799dd7b397baeb6

    • SHA1

      ea9665e25e9b542e6fdc760c6d0cf087ec3b3a42

    • SHA256

      69681a84faaa9db188bc47aa79ec4f8acbcc8b1452a59c86be9ea5e44f552d75

    • SHA512

      c15b3dc52edbb98e5d9ef04d7610861dd845e4b70e1b854e50faad5c20170b43b36e90d7d845c0561f5bbea345916765f6c7262594c5c48d6ba23c6b7a8615ab

    • SSDEEP

      6144:DuTeW/s5GqrO5aXnfEGIXWPvZAOfykow2SGAn2KnIelfECnnnLURRlVs0BC+:DmcGqrOk86x/bnGKIwnnnYHs0BC+

    Score
    10/10
    mysticstealer

    • Detect Mystic stealer payload

    • Mystic

      Mystic is an infostealer written in C++.

      stealermystic

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks