mystic | 8011e74693b5d8a2a1488ef32f1586afd922a91c965142b3ceee8ba9455a64ce | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8011e74693b5d8a2a1488ef32f1586afd922a91c965142b3ceee8ba9455a64ce
Size

364KB
Sample

231012-anx89sfc93
MD5

36c4eaac755d927f09b9fc807f463dc4
SHA1

accd7b2bed923aaeb5999cf16084b2323e5e8a15
SHA256

8011e74693b5d8a2a1488ef32f1586afd922a91c965142b3ceee8ba9455a64ce
SHA512

c434c372f766305a2ff97dd86cf37e1ef61c73c975ec1ca4caafb0979ebf4d16bf7f5ce8db69a0bb731c0a0adc7ba1bc1c52ec0fade5fe4171d233099e3a95d6
SSDEEP

6144:pK46fuYXChoQTjlFgLuCY1dRuAO5LQRNHrWb2UynYghxLsXG2aN1hw8y0:pvYzXChdTbv1buoDLo2pDhx4XNaN1hwX

Score

10^/10

mystic stealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

- Target
  
  8011e74693b5d8a2a1488ef32f1586afd922a91c965142b3ceee8ba9455a64ce
- Size
  
  364KB
- MD5
  
  36c4eaac755d927f09b9fc807f463dc4
- SHA1
  
  accd7b2bed923aaeb5999cf16084b2323e5e8a15
- SHA256
  
  8011e74693b5d8a2a1488ef32f1586afd922a91c965142b3ceee8ba9455a64ce
- SHA512
  
  c434c372f766305a2ff97dd86cf37e1ef61c73c975ec1ca4caafb0979ebf4d16bf7f5ce8db69a0bb731c0a0adc7ba1bc1c52ec0fade5fe4171d233099e3a95d6
- SSDEEP
  
  6144:pK46fuYXChoQTjlFgLuCY1dRuAO5LQRNHrWb2UynYghxLsXG2aN1hw8y0:pvYzXChdTbv1buoDLo2pDhx4XNaN1hwX
Score

10^/10

mystic stealer
- Mystic
  Mystic is an infostealer written in C++.
  stealer mystic
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2