mystic | 25a6b5b6fc67ddb1838c50cd0146ac845f5a86e3620e7c463361f355d90dc4a8 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

1

b82895964d...d6.exe

windows7-x64

5

b82895964d...d6.exe

windows10-2004-x64

Sharing

General

Target

2d5d8d55e461986b5f3245d0a73a6643.bin
Size

212KB
Sample

231011-t98fxaae6w
MD5

861dccd579b623de67bc03b599d9fb43
SHA1

ada1e1799f34915bc2a0688d9b02619c7dc3dd1a
SHA256

25a6b5b6fc67ddb1838c50cd0146ac845f5a86e3620e7c463361f355d90dc4a8
SHA512

af4b1fdcd5a445f662cb50b13447df7875cf496e3654702ad41814a3d4877f482027a56a8aaa757b4a5c6881bd9a50fe154d602dd857a8c54119f2d5e0508d3d
SSDEEP

6144:ZaLV8/cxZf6CXPckbX6d7ooEZHGAIcPuCAgm:ZaLy6pdDXmSGAIcGYm

Score

10^/10

mystic stealer

Static task

static1

Behavioral task

behavioral1

Sample

b82895964dcd2bc25bd94d15882e352369d4a2e326dabccce89571f7a9c76cd6.exe

Resource

win7-20230831-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

b82895964dcd2bc25bd94d15882e352369d4a2e326dabccce89571f7a9c76cd6.exe

Resource

win10v2004-20230915-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

- Target
  
  b82895964dcd2bc25bd94d15882e352369d4a2e326dabccce89571f7a9c76cd6.exe
- Size
  
  372KB
- MD5
  
  2d5d8d55e461986b5f3245d0a73a6643
- SHA1
  
  755070b71b3fa2a8446256d0c0dac54be95b63fb
- SHA256
  
  b82895964dcd2bc25bd94d15882e352369d4a2e326dabccce89571f7a9c76cd6
- SHA512
  
  6f2948c711f63409ade4ced1512618c91e8a92972de39861642cb72aac19e944ac2adb7a0f46ab8a9e663da0702a8e70747eb5e3ded8b51b344a8e73cefafce0
- SSDEEP
  
  6144:Pq46fuYXChoQTjlFgLuCY1dRuAO3xkqJkcEsu1OGxkE7VRw8y0M:PPYzXChdTbv1buUqJMsXGyEVRw8yr
Score

10^/10

mystic stealer
- Mystic
  Mystic is an infostealer written in C++.
  stealer mystic
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy