Overview

overview

10

Static

static

3

dridex

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5a8d3d40ed21d984db0712373f467f835f9cbc423dd094daa822c60a6c9fbc74

  • Size

    283KB

  • Sample

    231112-tetn9sgf8t

  • MD5

    1ecd1ffc41c75a212ac7871ed8a0c5e8

  • SHA1

    d1bd4ca453f325cb5908c7eb2eb6a21a30819aa6

  • SHA256

    5a8d3d40ed21d984db0712373f467f835f9cbc423dd094daa822c60a6c9fbc74

  • SHA512

    9559d8222939119be5c99bcac176dfb378efd16596d73259c280963ee9452c238bc6409cf1ab6cbb713398b578ba94b69f3f990a5c84bfeecf98500fa137797d

  • SSDEEP

    3072:/cNqRJurMsou937Zx8GKadC/CPbYpMi1DEWpnPIC0cHNjeXFbnebZKh5XZYpFInu:/c/LomW3DzpnPqpXFOfU6cZB7Ud3

Score
10/10
mysticstealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.43/loghub/master

Targets

    • Target

      5a8d3d40ed21d984db0712373f467f835f9cbc423dd094daa822c60a6c9fbc74

    • Size

      283KB

    • MD5

      1ecd1ffc41c75a212ac7871ed8a0c5e8

    • SHA1

      d1bd4ca453f325cb5908c7eb2eb6a21a30819aa6

    • SHA256

      5a8d3d40ed21d984db0712373f467f835f9cbc423dd094daa822c60a6c9fbc74

    • SHA512

      9559d8222939119be5c99bcac176dfb378efd16596d73259c280963ee9452c238bc6409cf1ab6cbb713398b578ba94b69f3f990a5c84bfeecf98500fa137797d

    • SSDEEP

      3072:/cNqRJurMsou937Zx8GKadC/CPbYpMi1DEWpnPIC0cHNjeXFbnebZKh5XZYpFInu:/c/LomW3DzpnPqpXFOfU6cZB7Ud3

    Score
    10/10
    mysticstealer

    • Detect Mystic stealer payload

    • Mystic

      Mystic is an infostealer written in C++.

      stealermystic

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Matrix

Tasks