mystic | 08cfd147b0258e6df3525a4f936134a39fa14cfc9b66030f87aa70b3c2bb28e4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

08cfd147b0258e6df3525a4f936134a39fa14cfc9b66030f87aa70b3c2bb28e4
Size

365KB
Sample

231012-el6vvaff95
MD5

4f9b17bc0e3be5600259da6879cb6032
SHA1

f40cb91a65b111559aaf28285fc39228844d0808
SHA256

08cfd147b0258e6df3525a4f936134a39fa14cfc9b66030f87aa70b3c2bb28e4
SHA512

401b84388f02cc779ccd49796a9a479895aebda3fb46a354ee3b49d1b3e9873c16bb55db345cc60df007a4387c956893a909cf951d7d51138674593351444d39
SSDEEP

6144:ms5frpxdonyq4zaG2u5AOzeKQtsmHRFL6aqshFquqp:marp0/9u5ZextsSSUquqp

Score

10^/10

mystic stealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

- Target
  
  08cfd147b0258e6df3525a4f936134a39fa14cfc9b66030f87aa70b3c2bb28e4
- Size
  
  365KB
- MD5
  
  4f9b17bc0e3be5600259da6879cb6032
- SHA1
  
  f40cb91a65b111559aaf28285fc39228844d0808
- SHA256
  
  08cfd147b0258e6df3525a4f936134a39fa14cfc9b66030f87aa70b3c2bb28e4
- SHA512
  
  401b84388f02cc779ccd49796a9a479895aebda3fb46a354ee3b49d1b3e9873c16bb55db345cc60df007a4387c956893a909cf951d7d51138674593351444d39
- SSDEEP
  
  6144:ms5frpxdonyq4zaG2u5AOzeKQtsmHRFL6aqshFquqp:marp0/9u5ZextsSSUquqp
Score

10^/10

mystic stealer
- Mystic
  Mystic is an infostealer written in C++.
  stealer mystic
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2