mystic | 38039484164e3ccb9a7d5fd747c3275bc53a40bf2d5c3951c21f9f13d4a8bf3a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

38039484164e3ccb9a7d5fd747c3275bc53a40bf2d5c3951c21f9f13d4a8bf3a
Size

700KB
Sample

231012-jc5cwagc53
MD5

01ad809051d794a1eb427d93817c8ef2
SHA1

dee0af0c175a6a8427f7dc6c362e727792fa7240
SHA256

38039484164e3ccb9a7d5fd747c3275bc53a40bf2d5c3951c21f9f13d4a8bf3a
SHA512

b2bb74f732805ab440a781692ce44d78a3ecbef938e12b7132428bacf6831354358160d0c475a6bdc27d1aaf3a1e6ef54bf651289e910e96dc4b821c25b2aa94
SSDEEP

6144:I6vGALXgBEIy8wluzNcq/PVucQplL871VZmUMElOKfSnUIgvTgvfr:5HXgFysVucQplL87/ZmUJAqIyEr

Score

10^/10

mystic stealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

- Target
  
  38039484164e3ccb9a7d5fd747c3275bc53a40bf2d5c3951c21f9f13d4a8bf3a
- Size
  
  700KB
- MD5
  
  01ad809051d794a1eb427d93817c8ef2
- SHA1
  
  dee0af0c175a6a8427f7dc6c362e727792fa7240
- SHA256
  
  38039484164e3ccb9a7d5fd747c3275bc53a40bf2d5c3951c21f9f13d4a8bf3a
- SHA512
  
  b2bb74f732805ab440a781692ce44d78a3ecbef938e12b7132428bacf6831354358160d0c475a6bdc27d1aaf3a1e6ef54bf651289e910e96dc4b821c25b2aa94
- SSDEEP
  
  6144:I6vGALXgBEIy8wluzNcq/PVucQplL871VZmUMElOKfSnUIgvTgvfr:5HXgFysVucQplL87/ZmUJAqIyEr
Score

10^/10

mystic stealer
- Mystic
  Mystic is an infostealer written in C++.
  stealer mystic
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2