mystic | 61a98cc43e24046e732e5201a32401a5aeb4ca28211f0930f8445675ed548be3 | Triage

Submit
Reports

Overview

overview

Static

static

1

61a98cc43e...e3.exe

windows7-x64

61a98cc43e...e3.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

61a98cc43e24046e732e5201a32401a5aeb4ca28211f0930f8445675ed548be3
Size

379KB
Sample

231011-rwq9csfb57
MD5

3985ba38930348743d3c8426db2cb68b
SHA1

9e83afe03557498853d02789b8dc48d8614c1fca
SHA256

61a98cc43e24046e732e5201a32401a5aeb4ca28211f0930f8445675ed548be3
SHA512

636eb3c99c2ad4a0d070d6d6dd1a3f3628eacc020d4b02d2d81f884e6ee5bb0195cd90d92da3e75c2801debabae367098770dc486b3bf0e06bac12e61552f610
SSDEEP

6144:JsycRgs3r9vIum2Tg0N63KAO/TyF2kDzATWJGhmnvF1faSy4g3F:JsZRP3r9HmepTy0kDzATWJImnvF163F

Score

10^/10

mystic stealer

Static task

static1

Behavioral task

behavioral1

Sample

61a98cc43e24046e732e5201a32401a5aeb4ca28211f0930f8445675ed548be3.exe

Resource

win7-20230831-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

61a98cc43e24046e732e5201a32401a5aeb4ca28211f0930f8445675ed548be3.exe

Resource

win10v2004-20230915-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

- Target
  
  61a98cc43e24046e732e5201a32401a5aeb4ca28211f0930f8445675ed548be3
- Size
  
  379KB
- MD5
  
  3985ba38930348743d3c8426db2cb68b
- SHA1
  
  9e83afe03557498853d02789b8dc48d8614c1fca
- SHA256
  
  61a98cc43e24046e732e5201a32401a5aeb4ca28211f0930f8445675ed548be3
- SHA512
  
  636eb3c99c2ad4a0d070d6d6dd1a3f3628eacc020d4b02d2d81f884e6ee5bb0195cd90d92da3e75c2801debabae367098770dc486b3bf0e06bac12e61552f610
- SSDEEP
  
  6144:JsycRgs3r9vIum2Tg0N63KAO/TyF2kDzATWJGhmnvF1faSy4g3F:JsZRP3r9HmepTy0kDzATWJImnvF163F
Score

10^/10

mystic stealer
- Detect Mystic stealer payload
- Mystic
  Mystic is an infostealer written in C++.
  stealer mystic
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy