mystic | 5239eee0e6f62d978e7362bb8ca5f864ae34cbdeef47d3ddc67d5aba71afa5c5 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

5239eee0e6...c5.exe

windows7-x64

5239eee0e6...c5.exe

windows10-2004-x64

Sharing

General

Target

5239eee0e6f62d978e7362bb8ca5f864ae34cbdeef47d3ddc67d5aba71afa5c5
Size

342KB
Sample

231014-d5bclsdh8x
MD5

3bec2a4893d6c249bd11e39bdf34b6b4
SHA1

eed6f8cea90185e187f7913aaeadc7a109f7943f
SHA256

5239eee0e6f62d978e7362bb8ca5f864ae34cbdeef47d3ddc67d5aba71afa5c5
SHA512

ed45a4228ff26e7631b55cbf9f5526eeb646463ac134f2e0b573912cec55d048dd17c761371c1c6e1a3a592cf8b3f84c22b94cb4e4b617d3a32c1ae72c2606d3
SSDEEP

6144:qCkiKL/yfYb5B+BO99c0s0ZVtAOigJlRiviX5XJ6nMJ2eCUE9:7k//yfYb5BIQZVts1ipsi2eCB9

Score

10^/10

mystic stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

5239eee0e6f62d978e7362bb8ca5f864ae34cbdeef47d3ddc67d5aba71afa5c5.exe

Resource

win7-20230831-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

5239eee0e6f62d978e7362bb8ca5f864ae34cbdeef47d3ddc67d5aba71afa5c5.exe

Resource

win10v2004-20230915-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  5239eee0e6f62d978e7362bb8ca5f864ae34cbdeef47d3ddc67d5aba71afa5c5
- Size
  
  342KB
- MD5
  
  3bec2a4893d6c249bd11e39bdf34b6b4
- SHA1
  
  eed6f8cea90185e187f7913aaeadc7a109f7943f
- SHA256
  
  5239eee0e6f62d978e7362bb8ca5f864ae34cbdeef47d3ddc67d5aba71afa5c5
- SHA512
  
  ed45a4228ff26e7631b55cbf9f5526eeb646463ac134f2e0b573912cec55d048dd17c761371c1c6e1a3a592cf8b3f84c22b94cb4e4b617d3a32c1ae72c2606d3
- SSDEEP
  
  6144:qCkiKL/yfYb5B+BO99c0s0ZVtAOigJlRiviX5XJ6nMJ2eCUE9:7k//yfYb5BIQZVts1ipsi2eCB9
Score

10^/10

mystic stealer
- Detect Mystic stealer payload
- Mystic
  Mystic is an infostealer written in C++.
  stealer mystic
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy