Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d07497774827448c56a1f5ffa994df000fb91f0fb1ac190e0a7035bf308f691f

  • Size

    1.6MB

  • Sample

    231007-1npj8saa69

  • MD5

    89f1524c9936c37b872ce2a5d3216068

  • SHA1

    e698ace29ac1beec20f3cdec541455af2ac2a2c1

  • SHA256

    d07497774827448c56a1f5ffa994df000fb91f0fb1ac190e0a7035bf308f691f

  • SHA512

    fdd8a32576e816b31e53c3d3b24126077022a192c00c1023ca8a8a6f702a1c3339a482ea7ca2496a33a521921dafbc16c5147de54c39c5b285ec5e9604eb7558

  • SSDEEP

    24576:FymOF8nCjgTmo6PqHYPCt2lIs8oVahKh8/05413i2lKtdVtI/wu2Gb1/ad2lN6:gCFTmo6PiYPCtGmoVae8q41y2wtZ+d

Malware Config

Targets

    • Target

      d07497774827448c56a1f5ffa994df000fb91f0fb1ac190e0a7035bf308f691f

    • Size

      1.6MB

    • MD5

      89f1524c9936c37b872ce2a5d3216068

    • SHA1

      e698ace29ac1beec20f3cdec541455af2ac2a2c1

    • SHA256

      d07497774827448c56a1f5ffa994df000fb91f0fb1ac190e0a7035bf308f691f

    • SHA512

      fdd8a32576e816b31e53c3d3b24126077022a192c00c1023ca8a8a6f702a1c3339a482ea7ca2496a33a521921dafbc16c5147de54c39c5b285ec5e9604eb7558

    • SSDEEP

      24576:FymOF8nCjgTmo6PqHYPCt2lIs8oVahKh8/05413i2lKtdVtI/wu2Gb1/ad2lN6:gCFTmo6PiYPCtGmoVae8q41y2wtZ+d

    • Detect Mystic stealer payload

    • Mystic

      Mystic is an infostealer written in C++.

    • Executes dropped EXE

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks