Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    43c9d5192e280fb9c969d3a50b015b0f573e092ff9d78c4f96bf324124eac468

  • Size

    396KB

  • Sample

    231011-1sfswsgg59

  • MD5

    d264869406b4cb09110b6b8af5456b37

  • SHA1

    bdbbd0bc70c9c2dd1b667e475fcf61479c3ce2aa

  • SHA256

    43c9d5192e280fb9c969d3a50b015b0f573e092ff9d78c4f96bf324124eac468

  • SHA512

    b3f8b707774f15acae65e4a8bf0c85fdc18a64a0e17226de845383aa6bce41a49b85e20539ba5e0351621ccd374eb07d4f7c990c43d707a7865f4114de9ea597

  • SSDEEP

    12288:TNcdqW5sEe2uusc5vWDGS1/Q6oCmNtIDU7mhol8Mwh:TNct5vv5XS1/Q0mNtIDU7mholWh

Score
10/10

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      43c9d5192e280fb9c969d3a50b015b0f573e092ff9d78c4f96bf324124eac468

    • Size

      396KB

    • MD5

      d264869406b4cb09110b6b8af5456b37

    • SHA1

      bdbbd0bc70c9c2dd1b667e475fcf61479c3ce2aa

    • SHA256

      43c9d5192e280fb9c969d3a50b015b0f573e092ff9d78c4f96bf324124eac468

    • SHA512

      b3f8b707774f15acae65e4a8bf0c85fdc18a64a0e17226de845383aa6bce41a49b85e20539ba5e0351621ccd374eb07d4f7c990c43d707a7865f4114de9ea597

    • SSDEEP

      12288:TNcdqW5sEe2uusc5vWDGS1/Q6oCmNtIDU7mhol8Mwh:TNct5vv5XS1/Q0mNtIDU7mholWh

    Score
    10/10
    • Mystic

      Mystic is an infostealer written in C++.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks