mystic | f3505df94802d077db41aaecf8cd66f077837ca7481e4ab0ecf0d1d091f00484 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f3505df94802d077db41aaecf8cd66f077837ca7481e4ab0ecf0d1d091f00484
Size

700KB
Sample

231012-gh24laaf9t
MD5

b1e3238fda40c23f82e5ece57f34fab4
SHA1

49881e0d4ee22dd7baeb54b484094f903ec3ad9e
SHA256

f3505df94802d077db41aaecf8cd66f077837ca7481e4ab0ecf0d1d091f00484
SHA512

831f482b58ab6d3dd13df30d4a737b35b74e9c7eba285185c769af7650bb1e2484f14ffd6d22b2f290529a1f1b297cdd4468545af235878e481dfe5b4e669148
SSDEEP

6144:C6vGALXgBEIy8wluzNcq/PVucQpJ6gAeaPqke8A+MPfExD3Y0fjvvfr:bHXgFysVucQpJ6+PjnW3JLr

Score

10^/10

mystic stealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

- Target
  
  f3505df94802d077db41aaecf8cd66f077837ca7481e4ab0ecf0d1d091f00484
- Size
  
  700KB
- MD5
  
  b1e3238fda40c23f82e5ece57f34fab4
- SHA1
  
  49881e0d4ee22dd7baeb54b484094f903ec3ad9e
- SHA256
  
  f3505df94802d077db41aaecf8cd66f077837ca7481e4ab0ecf0d1d091f00484
- SHA512
  
  831f482b58ab6d3dd13df30d4a737b35b74e9c7eba285185c769af7650bb1e2484f14ffd6d22b2f290529a1f1b297cdd4468545af235878e481dfe5b4e669148
- SSDEEP
  
  6144:C6vGALXgBEIy8wluzNcq/PVucQpJ6gAeaPqke8A+MPfExD3Y0fjvvfr:bHXgFysVucQpJ6+PjnW3JLr
Score

10^/10

mystic stealer
- Mystic
  Mystic is an infostealer written in C++.
  stealer mystic
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2