General

  • Target

    SecuriteInfo.com.Trojan.PWS.Stealer.38079.9664.9958.exe

  • Size

    1.1MB

  • Sample

    241027-v8s59sxpar

  • MD5

    277229d35af1f921f9cb1846e1431266

  • SHA1

    317fd9424ee4b5b422939462a55c952fe9149882

  • SHA256

    16861f7993bf2cab2d0248f22b6930810307b3618f33d888d9a0ca4b531962f1

  • SHA512

    826d6fefa6502695092ee182c47b16f4376f26b9b36687887b81fbe04b4ff6238891ea5c7a34762d20279dccb8752884d120d304bb47339e17dfe4c152fa556e

  • SSDEEP

    24576:f8BS0NBiaZ7KPo1toFuHuWaWNJv+TMYGWDaR:f8M0ND7Kg12FQutWNJv+TMYGWDaR

Malware Config

Targets

    • Target

      SecuriteInfo.com.Trojan.PWS.Stealer.38079.9664.9958.exe

    • Size

      1.1MB

    • MD5

      277229d35af1f921f9cb1846e1431266

    • SHA1

      317fd9424ee4b5b422939462a55c952fe9149882

    • SHA256

      16861f7993bf2cab2d0248f22b6930810307b3618f33d888d9a0ca4b531962f1

    • SHA512

      826d6fefa6502695092ee182c47b16f4376f26b9b36687887b81fbe04b4ff6238891ea5c7a34762d20279dccb8752884d120d304bb47339e17dfe4c152fa556e

    • SSDEEP

      24576:f8BS0NBiaZ7KPo1toFuHuWaWNJv+TMYGWDaR:f8M0ND7Kg12FQutWNJv+TMYGWDaR

    • Detect Mystic stealer payload

    • Mystic

      Mystic is an infostealer written in C++.

    • Mystic family

    • Executes dropped EXE

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks