mystic | 3852ed3843fd500abf880ec525bf190281d80b78d58b25510fc166214b56dbaa | Triage

Sharing

General

Target

3852ed3843fd500abf880ec525bf190281d80b78d58b25510fc166214b56dbaa
Size

700KB
Sample

231012-flh98agd5w
MD5

3fa9577e900029040fa402dac02a7895
SHA1

961baff9331ac40dd9bc8d55fd420663fc78e935
SHA256

3852ed3843fd500abf880ec525bf190281d80b78d58b25510fc166214b56dbaa
SHA512

69f98ddfb9791ee512f0af21524e209f5a43fa57044c20676c9649b11ca7fd1d884308410dbe86e9fd1fc52d50568c4f2547b7366c833190430f3d502cca6624
SSDEEP

6144:MSvGAafgBMniUwluzlcy/XVucQ5d8tU25CbSyadSxbXuvfz:NGfg2i8VucQ5StybFad4Cz

Score

10^/10

mystic stealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

- Target
  
  3852ed3843fd500abf880ec525bf190281d80b78d58b25510fc166214b56dbaa
- Size
  
  700KB
- MD5
  
  3fa9577e900029040fa402dac02a7895
- SHA1
  
  961baff9331ac40dd9bc8d55fd420663fc78e935
- SHA256
  
  3852ed3843fd500abf880ec525bf190281d80b78d58b25510fc166214b56dbaa
- SHA512
  
  69f98ddfb9791ee512f0af21524e209f5a43fa57044c20676c9649b11ca7fd1d884308410dbe86e9fd1fc52d50568c4f2547b7366c833190430f3d502cca6624
- SSDEEP
  
  6144:MSvGAafgBMniUwluzlcy/XVucQ5d8tU25CbSyadSxbXuvfz:NGfg2i8VucQ5StybFad4Cz
Score

10^/10

mystic stealer
- Mystic
  Mystic is an infostealer written in C++.
  stealer mystic
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2