Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    5a7c31b5c0b9951a8789fab6681789046cfa97cf637fd7eef11e2d65b9dcf3da

  • Size

    1.2MB

  • Sample

    231006-t6hq3sed9z

  • MD5

    fffffe125969cbbe6ccee9753ae33415

  • SHA1

    aad336d9eedc9f77358169cf77c3580e52a9998c

  • SHA256

    5a7c31b5c0b9951a8789fab6681789046cfa97cf637fd7eef11e2d65b9dcf3da

  • SHA512

    7a0a85b1df53258c54086fe76a23f0b7eaaff88eb74e509a23e97e3975908752c6c422b35779a4fb416af2af0f1039adf1fde4c1986b6f43f50ddd617439cf2d

  • SSDEEP

    24576:dysI1+2j148/+BF2qzD73483PwK+Bd5oxNjeKHCxVAYN+:4sd2v2RP3nf3zHCXN

Malware Config

Targets

    • Target

      5a7c31b5c0b9951a8789fab6681789046cfa97cf637fd7eef11e2d65b9dcf3da

    • Size

      1.2MB

    • MD5

      fffffe125969cbbe6ccee9753ae33415

    • SHA1

      aad336d9eedc9f77358169cf77c3580e52a9998c

    • SHA256

      5a7c31b5c0b9951a8789fab6681789046cfa97cf637fd7eef11e2d65b9dcf3da

    • SHA512

      7a0a85b1df53258c54086fe76a23f0b7eaaff88eb74e509a23e97e3975908752c6c422b35779a4fb416af2af0f1039adf1fde4c1986b6f43f50ddd617439cf2d

    • SSDEEP

      24576:dysI1+2j148/+BF2qzD73483PwK+Bd5oxNjeKHCxVAYN+:4sd2v2RP3nf3zHCXN

    • Detect Mystic stealer payload

    • Mystic

      Mystic is an infostealer written in C++.

    • Executes dropped EXE

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks