Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3bf82e78c1668578276f0eff8ede9d61d214f78b6d495764c740e0869abcb556

  • Size

    356KB

  • Sample

    231010-19lqgafb4x

  • MD5

    12b455c4175731142ff6eb653193fb23

  • SHA1

    475387ae1b3f802f76acc44fb2958930e8a6533d

  • SHA256

    3bf82e78c1668578276f0eff8ede9d61d214f78b6d495764c740e0869abcb556

  • SHA512

    2622e4bf7f8d4fa2cbd0fc7e683f74e61ad63ce33d88a4c60cf45491b087e5909ef3fd22a247d0476fa72b2a9d7a8bda26ea94757f8f4ef04a30e39328c43583

  • SSDEEP

    6144:wMTeW/s5GqrO5aXnfEGIXWPvZAO4y44zVu2Stje2/Eh5rkdY9un44eVs0BC+:wmcGqrOk86xA4s2SEOGs0BC+

Score
10/10

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      3bf82e78c1668578276f0eff8ede9d61d214f78b6d495764c740e0869abcb556

    • Size

      356KB

    • MD5

      12b455c4175731142ff6eb653193fb23

    • SHA1

      475387ae1b3f802f76acc44fb2958930e8a6533d

    • SHA256

      3bf82e78c1668578276f0eff8ede9d61d214f78b6d495764c740e0869abcb556

    • SHA512

      2622e4bf7f8d4fa2cbd0fc7e683f74e61ad63ce33d88a4c60cf45491b087e5909ef3fd22a247d0476fa72b2a9d7a8bda26ea94757f8f4ef04a30e39328c43583

    • SSDEEP

      6144:wMTeW/s5GqrO5aXnfEGIXWPvZAO4y44zVu2Stje2/Eh5rkdY9un44eVs0BC+:wmcGqrOk86xA4s2SEOGs0BC+

    Score
    10/10
    • Detect Mystic stealer payload

    • Mystic

      Mystic is an infostealer written in C++.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks