mystic | 39a4e09b8e2cbea6ea95c84dd30b760d536e968a6aa95052229a8523374b1157 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

file
Size

700KB
Sample

231012-g14p5sbg9s
MD5

01bab8deb4ce8c4664045fa3a348ffd7
SHA1

b3e6c900203fdee0ce231104ba4b5c68be7ddc22
SHA256

39a4e09b8e2cbea6ea95c84dd30b760d536e968a6aa95052229a8523374b1157
SHA512

ab300d58fcb181e6818c81cd383752ad85ce1d1ebf4f4d1d23bdd532931e1aefa8f95b8cf99ee3651d960ade298e5717cb14fb792faddaed0291ab26bd6df37c
SSDEEP

6144:v6vGALXgBEIy8wluzNcq/PVucQp8f737JoalsiJW+5ik5Owvfr:CHXgFysVucQp8z37JobiJW0vr

Score

10^/10

mystic stealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

- Target
  
  file
- Size
  
  700KB
- MD5
  
  01bab8deb4ce8c4664045fa3a348ffd7
- SHA1
  
  b3e6c900203fdee0ce231104ba4b5c68be7ddc22
- SHA256
  
  39a4e09b8e2cbea6ea95c84dd30b760d536e968a6aa95052229a8523374b1157
- SHA512
  
  ab300d58fcb181e6818c81cd383752ad85ce1d1ebf4f4d1d23bdd532931e1aefa8f95b8cf99ee3651d960ade298e5717cb14fb792faddaed0291ab26bd6df37c
- SSDEEP
  
  6144:v6vGALXgBEIy8wluzNcq/PVucQp8f737JoalsiJW+5ik5Owvfr:CHXgFysVucQp8z37JobiJW0vr
Score

10^/10

mystic stealer
- Mystic
  Mystic is an infostealer written in C++.
  stealer mystic
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2