mystic | 4a7fb8532ee68dc5ea95c449014db1cffdb0bcd937305dc0b475467725fbcd2b | Triage

Sharing

General

Target

4a7fb8532ee68dc5ea95c449014db1cffdb0bcd937305dc0b475467725fbcd2b
Size

700KB
Sample

231012-jczsdseb4z
MD5

d652127a0b21c53eee53db06fcd34a97
SHA1

65df69c6c9e28b22ca197fc4e19a15649602fe16
SHA256

4a7fb8532ee68dc5ea95c449014db1cffdb0bcd937305dc0b475467725fbcd2b
SHA512

662394558dee518b6c8f4598dd3b1203731445997aabcb8f88ea69d43ae8fdabd29aa40eea6268ab53b942dfd0d5f3f98c5daaf1cc7a307356c52b5ce41df426
SSDEEP

6144:J6vGALXgBEIy8wluzNcq/PVucQpTc+HvAHhgClx+uHbLu8tW0nnQvfr:UHXgFysVucQpTzYHBXbLuUTn0r

Score

10^/10

mystic stealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

- Target
  
  4a7fb8532ee68dc5ea95c449014db1cffdb0bcd937305dc0b475467725fbcd2b
- Size
  
  700KB
- MD5
  
  d652127a0b21c53eee53db06fcd34a97
- SHA1
  
  65df69c6c9e28b22ca197fc4e19a15649602fe16
- SHA256
  
  4a7fb8532ee68dc5ea95c449014db1cffdb0bcd937305dc0b475467725fbcd2b
- SHA512
  
  662394558dee518b6c8f4598dd3b1203731445997aabcb8f88ea69d43ae8fdabd29aa40eea6268ab53b942dfd0d5f3f98c5daaf1cc7a307356c52b5ce41df426
- SSDEEP
  
  6144:J6vGALXgBEIy8wluzNcq/PVucQpTc+HvAHhgClx+uHbLu8tW0nnQvfr:UHXgFysVucQpTzYHBXbLuUTn0r
Score

10^/10

mystic stealer
- Mystic
  Mystic is an infostealer written in C++.
  stealer mystic
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2