Overview

overview

10

Static

static

1

2585265cd0...d7.exe

windows7-x64

5

2585265cd0...d7.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2585265cd021683f9b0d041e618d5b920de34aa0161eb04f9ad632877d6541d7

  • Size

    365KB

  • Sample

    231012-ckjmtabh85

  • MD5

    4a0f1fa3d4dc02a898864d0060d71d08

  • SHA1

    912b3dc6cb81d148341f58acf83d5d3be4d261ed

  • SHA256

    2585265cd021683f9b0d041e618d5b920de34aa0161eb04f9ad632877d6541d7

  • SHA512

    0df63bd9715a9d678eff0a3822d14adc69a543a7e7e7a87a438dd3f8a9e5a2a2dcaadd6260a495ef2dbfba5a0750bda42468570d28e3f9cc60b1c186182b6426

  • SSDEEP

    6144:fn5frpxdonyq4zaG2u5AO8eKECRR9TubDvlwE5YYG5zuDquqp:fxrp0/9u5yeQRzgvecYuDquqp

Score
10/10
mysticstealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      2585265cd021683f9b0d041e618d5b920de34aa0161eb04f9ad632877d6541d7

    • Size

      365KB

    • MD5

      4a0f1fa3d4dc02a898864d0060d71d08

    • SHA1

      912b3dc6cb81d148341f58acf83d5d3be4d261ed

    • SHA256

      2585265cd021683f9b0d041e618d5b920de34aa0161eb04f9ad632877d6541d7

    • SHA512

      0df63bd9715a9d678eff0a3822d14adc69a543a7e7e7a87a438dd3f8a9e5a2a2dcaadd6260a495ef2dbfba5a0750bda42468570d28e3f9cc60b1c186182b6426

    • SSDEEP

      6144:fn5frpxdonyq4zaG2u5AO8eKECRR9TubDvlwE5YYG5zuDquqp:fxrp0/9u5yeQRzgvecYuDquqp

    Score
    10/10
    mysticstealer

    • Mystic

      Mystic is an infostealer written in C++.

      stealermystic

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks