mystic | dd46f59718b656c0057bb3899637ab5f79e6bf29f32645fa71d8251dd5be66da | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dd46f59718b656c0057bb3899637ab5f79e6bf29f32645fa71d8251dd5be66da
Size

365KB
Sample

231012-cr1jxaab7s
MD5

86261ced779abc6305c3858b3531c12c
SHA1

23a8b8ef06c5898485ad6deb3da369f2599ba7f0
SHA256

dd46f59718b656c0057bb3899637ab5f79e6bf29f32645fa71d8251dd5be66da
SHA512

2cc5c9c6307394c6f7a339c33cbf6f3e205a1d2d7309cfb38cdc54278f96e513579508819e01ecff5f2db445d1cd83e273b35e322c1e0b39e8cd79ee3d7e4dee
SSDEEP

6144:395frpxdonyq4zaG2u5AOceKWorX0PE6pdGkpnosQWquqp:3Drp0/9u5SenpnPRquqp

Score

10^/10

mystic stealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

- Target
  
  dd46f59718b656c0057bb3899637ab5f79e6bf29f32645fa71d8251dd5be66da
- Size
  
  365KB
- MD5
  
  86261ced779abc6305c3858b3531c12c
- SHA1
  
  23a8b8ef06c5898485ad6deb3da369f2599ba7f0
- SHA256
  
  dd46f59718b656c0057bb3899637ab5f79e6bf29f32645fa71d8251dd5be66da
- SHA512
  
  2cc5c9c6307394c6f7a339c33cbf6f3e205a1d2d7309cfb38cdc54278f96e513579508819e01ecff5f2db445d1cd83e273b35e322c1e0b39e8cd79ee3d7e4dee
- SSDEEP
  
  6144:395frpxdonyq4zaG2u5AOceKWorX0PE6pdGkpnosQWquqp:3Drp0/9u5SenpnPRquqp
Score

10^/10

mystic stealer
- Mystic
  Mystic is an infostealer written in C++.
  stealer mystic
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2