mystic | db31cca919c259ea1a7af97f33819d8af5d98e5a0329703a2cc0a7529b5a6dbb | Triage

Submit
Reports

Overview

overview

Static

static

1

db31cca919...bb.exe

windows7-x64

db31cca919...bb.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

db31cca919c259ea1a7af97f33819d8af5d98e5a0329703a2cc0a7529b5a6dbb
Size

379KB
Sample

231011-pa1jsseb6s
MD5

9ab250517da34b915f2e1065e9adbba3
SHA1

7a594eddb6adead73eba3daa03a45e1e8587d1c1
SHA256

db31cca919c259ea1a7af97f33819d8af5d98e5a0329703a2cc0a7529b5a6dbb
SHA512

3b830d5568394f56076d44c75990e2c5c4f486f7352b9357a9a21b48b4c8c18f13fcbbe522111618c6bec1b67c5cb594ac2dbc912462d1f8f459da365d314997
SSDEEP

6144:IdpcRgs3r9vIum2Tg0N63KAOqNPeVbcoNMvMrAIdHlBI+g3F:IduRP3r9HmegNPeC3MrAIdHl6F3F

Score

10^/10

mystic stealer

Static task

static1

Behavioral task

behavioral1

Sample

db31cca919c259ea1a7af97f33819d8af5d98e5a0329703a2cc0a7529b5a6dbb.exe

Resource

win7-20230831-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

db31cca919c259ea1a7af97f33819d8af5d98e5a0329703a2cc0a7529b5a6dbb.exe

Resource

win10v2004-20230915-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

- Target
  
  db31cca919c259ea1a7af97f33819d8af5d98e5a0329703a2cc0a7529b5a6dbb
- Size
  
  379KB
- MD5
  
  9ab250517da34b915f2e1065e9adbba3
- SHA1
  
  7a594eddb6adead73eba3daa03a45e1e8587d1c1
- SHA256
  
  db31cca919c259ea1a7af97f33819d8af5d98e5a0329703a2cc0a7529b5a6dbb
- SHA512
  
  3b830d5568394f56076d44c75990e2c5c4f486f7352b9357a9a21b48b4c8c18f13fcbbe522111618c6bec1b67c5cb594ac2dbc912462d1f8f459da365d314997
- SSDEEP
  
  6144:IdpcRgs3r9vIum2Tg0N63KAOqNPeVbcoNMvMrAIdHlBI+g3F:IduRP3r9HmegNPeC3MrAIdHl6F3F
Score

10^/10

mystic stealer
- Detect Mystic stealer payload
- Mystic
  Mystic is an infostealer written in C++.
  stealer mystic
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy