Overview

overview

10

Static

static

1

2cfa833622...ac.exe

windows7-x64

10

2cfa833622...ac.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2cfa8336225b21c1ceaff9d306ba452602b931a22588f40316c55690f2c04eac

  • Size

    364KB

  • Sample

    231011-ylgeqsbe37

  • MD5

    b64d859f26e4ab6e619ec7d698d11e0b

  • SHA1

    23ffa1ac59a6972aead26b41ccec91bee5539f77

  • SHA256

    2cfa8336225b21c1ceaff9d306ba452602b931a22588f40316c55690f2c04eac

  • SHA512

    5b1307d13e564a7e24f9177b7af6d47677aff0578a1dd0496888b9ed4f8c3f513f44008c0740969e6f11322718dd7e6420912082e866d185027b04bdee203934

  • SSDEEP

    6144:kNXAxlt3fuPgyxhV5dAOLHVJBcGJGgw0dmlIhpo8oPGCH:kuxltWThl7GB0dlpEGCH

Score
10/10
mysticstealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      2cfa8336225b21c1ceaff9d306ba452602b931a22588f40316c55690f2c04eac

    • Size

      364KB

    • MD5

      b64d859f26e4ab6e619ec7d698d11e0b

    • SHA1

      23ffa1ac59a6972aead26b41ccec91bee5539f77

    • SHA256

      2cfa8336225b21c1ceaff9d306ba452602b931a22588f40316c55690f2c04eac

    • SHA512

      5b1307d13e564a7e24f9177b7af6d47677aff0578a1dd0496888b9ed4f8c3f513f44008c0740969e6f11322718dd7e6420912082e866d185027b04bdee203934

    • SSDEEP

      6144:kNXAxlt3fuPgyxhV5dAOLHVJBcGJGgw0dmlIhpo8oPGCH:kuxltWThl7GB0dlpEGCH

    Score
    10/10
    mysticstealer

    • Detect Mystic stealer payload

    • Mystic

      Mystic is an infostealer written in C++.

      stealermystic

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks