mystic | f2a57a439a32f09df905be0d7644a34a0ce76bc240b13849e80b4f94ff1e7477 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f2a57a439a32f09df905be0d7644a34a0ce76bc240b13849e80b4f94ff1e7477
Size

700KB
Sample

231012-gwev8abe8v
MD5

40514ef796cedd7d1f1c450b84847aeb
SHA1

818ec515ac5cac1f7ab1c5dd7605af29030d7375
SHA256

f2a57a439a32f09df905be0d7644a34a0ce76bc240b13849e80b4f94ff1e7477
SHA512

58c47880e05b6000aca9cb9f29097cdca518cfd8cf8e3ec6265c4e0b67ff9d649f7683000edce499e32d947105affe34c3e879721ec4859a7f059303ba6463c9
SSDEEP

12288:MgOgxyKVucQZ91XszXzM+fN9RSe5CnLKucQojJHhysVx8U0tAyOAf7rZr:Ygfk1XszXzM+fN9RSe5CnLKudojJHhyL

Score

10^/10

mystic stealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

- Target
  
  f2a57a439a32f09df905be0d7644a34a0ce76bc240b13849e80b4f94ff1e7477
- Size
  
  700KB
- MD5
  
  40514ef796cedd7d1f1c450b84847aeb
- SHA1
  
  818ec515ac5cac1f7ab1c5dd7605af29030d7375
- SHA256
  
  f2a57a439a32f09df905be0d7644a34a0ce76bc240b13849e80b4f94ff1e7477
- SHA512
  
  58c47880e05b6000aca9cb9f29097cdca518cfd8cf8e3ec6265c4e0b67ff9d649f7683000edce499e32d947105affe34c3e879721ec4859a7f059303ba6463c9
- SSDEEP
  
  12288:MgOgxyKVucQZ91XszXzM+fN9RSe5CnLKucQojJHhysVx8U0tAyOAf7rZr:Ygfk1XszXzM+fN9RSe5CnLKudojJHhyL
Score

10^/10

mystic stealer
- Mystic
  Mystic is an infostealer written in C++.
  stealer mystic
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2