Overview

overview

10

Static

static

1

a23e825a21...83.exe

windows7-x64

10

a23e825a21...83.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a23e825a219297f40d096df546a11e21e70c0642ebb04866cac9f8c991f16f83

  • Size

    379KB

  • Sample

    231011-p1yswsae34

  • MD5

    36e4d7c38ed8609c3a2ffaa57d593809

  • SHA1

    9903b576d9fc80f3ee65869f8cb6d025a863416b

  • SHA256

    a23e825a219297f40d096df546a11e21e70c0642ebb04866cac9f8c991f16f83

  • SHA512

    0c91e260f1719b80a9ea7b3179f12978fec4f008860dbb467d25a893191fba6e2d00f96012a46d89a80643c6367851af9bd7c9c6f674844750555fcda670eb37

  • SSDEEP

    6144:GMecRgs3r9vIum2Tg0N63KAOw4VTudJ02l8reRaCJMvdg3F:GM1RP3r9Hmeau2qyRaCSvK3F

Score
10/10
mysticstealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      a23e825a219297f40d096df546a11e21e70c0642ebb04866cac9f8c991f16f83

    • Size

      379KB

    • MD5

      36e4d7c38ed8609c3a2ffaa57d593809

    • SHA1

      9903b576d9fc80f3ee65869f8cb6d025a863416b

    • SHA256

      a23e825a219297f40d096df546a11e21e70c0642ebb04866cac9f8c991f16f83

    • SHA512

      0c91e260f1719b80a9ea7b3179f12978fec4f008860dbb467d25a893191fba6e2d00f96012a46d89a80643c6367851af9bd7c9c6f674844750555fcda670eb37

    • SSDEEP

      6144:GMecRgs3r9vIum2Tg0N63KAOw4VTudJ02l8reRaCJMvdg3F:GM1RP3r9Hmeau2qyRaCSvK3F

    Score
    10/10
    mysticstealer

    • Detect Mystic stealer payload

    • Mystic

      Mystic is an infostealer written in C++.

      stealermystic

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks