mystic | ffcca06430d4babb8ee973aed5c5631014ef58cf61ec7693d8e7e5edf0bf62d7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ffcca06430d4babb8ee973aed5c5631014ef58cf61ec7693d8e7e5edf0bf62d7
Size

378KB
Sample

231012-e1x69aef5s
MD5

2b0c41eaeff117d7560ada6d77166030
SHA1

6cdcabaac064da544f0eaf59e1bd06e6961f55da
SHA256

ffcca06430d4babb8ee973aed5c5631014ef58cf61ec7693d8e7e5edf0bf62d7
SHA512

8abf81d7ce5a1588c19319992e2d6da0ce5ed4085e2dc00e5ea8cb9c1c8d3ea614d7cd1b3c66d90aa94f1a6813d407fb1b96ea6916d78e8dd38a581ceae7b460
SSDEEP

6144:gL55frpxdonyq4zaG2u5AO0eKmqeDzw8O5gnmvNYN/KOx6UtPquqp:gLPrp0/9u52eFzwfgOCNSgPquqp

Score

10^/10

mystic stealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

- Target
  
  ffcca06430d4babb8ee973aed5c5631014ef58cf61ec7693d8e7e5edf0bf62d7
- Size
  
  378KB
- MD5
  
  2b0c41eaeff117d7560ada6d77166030
- SHA1
  
  6cdcabaac064da544f0eaf59e1bd06e6961f55da
- SHA256
  
  ffcca06430d4babb8ee973aed5c5631014ef58cf61ec7693d8e7e5edf0bf62d7
- SHA512
  
  8abf81d7ce5a1588c19319992e2d6da0ce5ed4085e2dc00e5ea8cb9c1c8d3ea614d7cd1b3c66d90aa94f1a6813d407fb1b96ea6916d78e8dd38a581ceae7b460
- SSDEEP
  
  6144:gL55frpxdonyq4zaG2u5AO0eKmqeDzw8O5gnmvNYN/KOx6UtPquqp:gLPrp0/9u52eFzwfgOCNSgPquqp
Score

10^/10

mystic stealer
- Mystic
  Mystic is an infostealer written in C++.
  stealer mystic
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2