Overview

overview

10

Static

static

3

602be46979...bb.exe

windows7-x64

10

602be46979...bb.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    602be46979a215d95fd87853e42f626be1b1838256b536e9b6c89511d74fbebb

  • Size

    350KB

  • Sample

    231011-mqz7vsbc66

  • MD5

    59e7398f6008e3edd6154e58134f8b5c

  • SHA1

    3937b2b5b914d19529c700179f8904536630f20d

  • SHA256

    602be46979a215d95fd87853e42f626be1b1838256b536e9b6c89511d74fbebb

  • SHA512

    7822f48a87d6ec0de99378e018a825134a407643e06c70b6033b522616fa43140d096c1c544ede2a2b0398e88b1b9078811ce4ae11dbbda79c8da22329eb46fe

  • SSDEEP

    6144:ytILsrNJmc30jXud9b7zAO4p70n6WSQh/gkNogAbP/RW5jM35aJF4S:yDxJm+bzCpwn6eYkSgQEZF4S

Score
10/10
mysticstealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      602be46979a215d95fd87853e42f626be1b1838256b536e9b6c89511d74fbebb

    • Size

      350KB

    • MD5

      59e7398f6008e3edd6154e58134f8b5c

    • SHA1

      3937b2b5b914d19529c700179f8904536630f20d

    • SHA256

      602be46979a215d95fd87853e42f626be1b1838256b536e9b6c89511d74fbebb

    • SHA512

      7822f48a87d6ec0de99378e018a825134a407643e06c70b6033b522616fa43140d096c1c544ede2a2b0398e88b1b9078811ce4ae11dbbda79c8da22329eb46fe

    • SSDEEP

      6144:ytILsrNJmc30jXud9b7zAO4p70n6WSQh/gkNogAbP/RW5jM35aJF4S:yDxJm+bzCpwn6eYkSgQEZF4S

    Score
    10/10
    mysticstealer

    • Detect Mystic stealer payload

    • Mystic

      Mystic is an infostealer written in C++.

      stealermystic

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks