mystic | 7bfb4eb9f27fa3e4ccb24dda52866d1759050aa7b28a2d9dc74ee835c0fd37f8 | Triage

Submit
Reports

Overview

overview

Static

static

1

7bfb4eb9f2...f8.exe

windows7-x64

7bfb4eb9f2...f8.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

7bfb4eb9f27fa3e4ccb24dda52866d1759050aa7b28a2d9dc74ee835c0fd37f8
Size

379KB
Sample

231011-n8kessdg9x
MD5

9729c45e757a05d520c6ba14531f6f09
SHA1

66420f2cc94d7a51cb6b2186e86b66442ed33e14
SHA256

7bfb4eb9f27fa3e4ccb24dda52866d1759050aa7b28a2d9dc74ee835c0fd37f8
SHA512

6b50f50b6bb098d1160d2ba229c24aa537b8c8c70e9aff8668903b5674f76e5af02ed9be61c2658b1b72939118a263da9ce5919f739fefac7998b38d6421eefe
SSDEEP

6144:EfOcRgs3r9vIum2Tg0N63KAO2ATCwjQwUGPCdF39U0Ri9I7yI3F:EfFRP3r9Hme0mCwjT7WF320MKN3F

Score

10^/10

mystic stealer

Static task

static1

Behavioral task

behavioral1

Sample

7bfb4eb9f27fa3e4ccb24dda52866d1759050aa7b28a2d9dc74ee835c0fd37f8.exe

Resource

win7-20230831-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

7bfb4eb9f27fa3e4ccb24dda52866d1759050aa7b28a2d9dc74ee835c0fd37f8.exe

Resource

win10v2004-20230915-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

- Target
  
  7bfb4eb9f27fa3e4ccb24dda52866d1759050aa7b28a2d9dc74ee835c0fd37f8
- Size
  
  379KB
- MD5
  
  9729c45e757a05d520c6ba14531f6f09
- SHA1
  
  66420f2cc94d7a51cb6b2186e86b66442ed33e14
- SHA256
  
  7bfb4eb9f27fa3e4ccb24dda52866d1759050aa7b28a2d9dc74ee835c0fd37f8
- SHA512
  
  6b50f50b6bb098d1160d2ba229c24aa537b8c8c70e9aff8668903b5674f76e5af02ed9be61c2658b1b72939118a263da9ce5919f739fefac7998b38d6421eefe
- SSDEEP
  
  6144:EfOcRgs3r9vIum2Tg0N63KAO2ATCwjQwUGPCdF39U0Ri9I7yI3F:EfFRP3r9Hme0mCwjT7WF320MKN3F
Score

10^/10

mystic stealer
- Detect Mystic stealer payload
- Mystic
  Mystic is an infostealer written in C++.
  stealer mystic
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy