Overview

overview

10

Static

static

3

85cea14c62...ef.exe

windows7-x64

10

85cea14c62...ef.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    85cea14c62d038eab11954c093b9a7ef52c99084fa3a822b50b1d86d406fbfef

  • Size

    356KB

  • Sample

    231011-gq7daaff76

  • MD5

    53ebf495e825c5ae181438c5a7dc7343

  • SHA1

    ea99b79d5896b5d797b18afbf3a3fbb26bc41859

  • SHA256

    85cea14c62d038eab11954c093b9a7ef52c99084fa3a822b50b1d86d406fbfef

  • SHA512

    11b5c8186930e0a9dd98a08f61c1430e2236cd823337e64dd00bf17e19cdd66e66ef6b826c7a14cb18c651c8f7a9dd50a274809515a606345384fdf5bc93fcd9

  • SSDEEP

    6144:w2TeW/s5GqrO5aXnfEGIXWPvZAOWyzCZUixJxn4CL2zjvoELP4Vs0BC+:CmcGqrOk86xNCZUixJxn92HTL8s0BC+

Score
10/10
mysticstealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      85cea14c62d038eab11954c093b9a7ef52c99084fa3a822b50b1d86d406fbfef

    • Size

      356KB

    • MD5

      53ebf495e825c5ae181438c5a7dc7343

    • SHA1

      ea99b79d5896b5d797b18afbf3a3fbb26bc41859

    • SHA256

      85cea14c62d038eab11954c093b9a7ef52c99084fa3a822b50b1d86d406fbfef

    • SHA512

      11b5c8186930e0a9dd98a08f61c1430e2236cd823337e64dd00bf17e19cdd66e66ef6b826c7a14cb18c651c8f7a9dd50a274809515a606345384fdf5bc93fcd9

    • SSDEEP

      6144:w2TeW/s5GqrO5aXnfEGIXWPvZAOWyzCZUixJxn4CL2zjvoELP4Vs0BC+:CmcGqrOk86xNCZUixJxn92HTL8s0BC+

    Score
    10/10
    mysticstealer

    • Detect Mystic stealer payload

    • Mystic

      Mystic is an infostealer written in C++.

      stealermystic

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks