Overview

overview

10

Static

static

3

d83da3d103...b6.exe

windows7-x64

10

d83da3d103...b6.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d83da3d1035ce36cb7c955a91916a89c3dc193f49a2556c4b02b4f8f253b85b6

  • Size

    1016KB

  • Sample

    231011-h7jtzshf6t

  • MD5

    00d6578d598e0dba298d26be9ca4f74b

  • SHA1

    930726f9d52e74b32ba0764210b0256a6e9f8916

  • SHA256

    d83da3d1035ce36cb7c955a91916a89c3dc193f49a2556c4b02b4f8f253b85b6

  • SHA512

    1c1c5d5d23f84c754a2dc07c93d8e3dac537ce27db55167fe455e27a018624b1738f7691eb6435f2f70d37f3e98d3c61bc60867437b37b3f2bd7988f99c798bf

  • SSDEEP

    12288:w+KAoJYcBYDKzcx9jkmP8bey7/0RDMmZZxnyUuyyuP1WySxkDchn/9:wVnYDKzcx9jkmPe/knxySWkW/9

Score
10/10
mysticstealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      d83da3d1035ce36cb7c955a91916a89c3dc193f49a2556c4b02b4f8f253b85b6

    • Size

      1016KB

    • MD5

      00d6578d598e0dba298d26be9ca4f74b

    • SHA1

      930726f9d52e74b32ba0764210b0256a6e9f8916

    • SHA256

      d83da3d1035ce36cb7c955a91916a89c3dc193f49a2556c4b02b4f8f253b85b6

    • SHA512

      1c1c5d5d23f84c754a2dc07c93d8e3dac537ce27db55167fe455e27a018624b1738f7691eb6435f2f70d37f3e98d3c61bc60867437b37b3f2bd7988f99c798bf

    • SSDEEP

      12288:w+KAoJYcBYDKzcx9jkmP8bey7/0RDMmZZxnyUuyyuP1WySxkDchn/9:wVnYDKzcx9jkmPe/knxySWkW/9

    Score
    10/10
    mysticstealer

    • Detect Mystic stealer payload

    • Mystic

      Mystic is an infostealer written in C++.

      stealermystic

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks