Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    80e932fc3c2fe469154c678fb571fc9eb16efe32d28fbcfc3fe79abd8645fa18

  • Size

    364KB

  • Sample

    231011-2whmbscd23

  • MD5

    4456fa6958bd60813d507768aaa91a30

  • SHA1

    d75753ba5119d0964bc4a0975016f1f1ecc72ca1

  • SHA256

    80e932fc3c2fe469154c678fb571fc9eb16efe32d28fbcfc3fe79abd8645fa18

  • SHA512

    616ac946461dbe6cfd46bfa87ee16c86feba7a8b8a793737c0fcda2ce71078e9acf7982d3b91c0c36841e406d01220cf23125e25fe53bc5ebdc1366708e549a3

  • SSDEEP

    6144:JS46fuYXChoQTjlFgLuCY1dRuAOlvFU4RpMbvO5Zc//S2w8y0:J3YzXChdTbv1buudvN//S2w8y

Score
10/10

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      80e932fc3c2fe469154c678fb571fc9eb16efe32d28fbcfc3fe79abd8645fa18

    • Size

      364KB

    • MD5

      4456fa6958bd60813d507768aaa91a30

    • SHA1

      d75753ba5119d0964bc4a0975016f1f1ecc72ca1

    • SHA256

      80e932fc3c2fe469154c678fb571fc9eb16efe32d28fbcfc3fe79abd8645fa18

    • SHA512

      616ac946461dbe6cfd46bfa87ee16c86feba7a8b8a793737c0fcda2ce71078e9acf7982d3b91c0c36841e406d01220cf23125e25fe53bc5ebdc1366708e549a3

    • SSDEEP

      6144:JS46fuYXChoQTjlFgLuCY1dRuAOlvFU4RpMbvO5Zc//S2w8y0:J3YzXChdTbv1buudvN//S2w8y

    Score
    10/10
    • Mystic

      Mystic is an infostealer written in C++.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks