Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    a21205f09e29e9b915b65d28633d88e892e7c9df4bcaba65bc07c770d74320a0

  • Size

    364KB

  • Sample

    231011-2xebasac8w

  • MD5

    de4f1f53ada869dd31f37d881ed70f6f

  • SHA1

    483f09ac2dbc351010985205dfe8e10b371caa74

  • SHA256

    a21205f09e29e9b915b65d28633d88e892e7c9df4bcaba65bc07c770d74320a0

  • SHA512

    375db472a9a8afee8823375751ac4af850a2ef9921463519f7bf0961145220ff90e774de6876dbb61627b0cf6603bd8c7bb99808eb69e0de62fe132cbb3a5164

  • SSDEEP

    6144:3646fuYXChoQTjlFgLuCY1dRuAOfallWNTzjD4LoBFqql8gDP4w8y0:3/YzXChdTbv1buUQNjELoD8gkw8y

Score
10/10

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      a21205f09e29e9b915b65d28633d88e892e7c9df4bcaba65bc07c770d74320a0

    • Size

      364KB

    • MD5

      de4f1f53ada869dd31f37d881ed70f6f

    • SHA1

      483f09ac2dbc351010985205dfe8e10b371caa74

    • SHA256

      a21205f09e29e9b915b65d28633d88e892e7c9df4bcaba65bc07c770d74320a0

    • SHA512

      375db472a9a8afee8823375751ac4af850a2ef9921463519f7bf0961145220ff90e774de6876dbb61627b0cf6603bd8c7bb99808eb69e0de62fe132cbb3a5164

    • SSDEEP

      6144:3646fuYXChoQTjlFgLuCY1dRuAOfallWNTzjD4LoBFqql8gDP4w8y0:3/YzXChdTbv1buUQNjELoD8gkw8y

    Score
    10/10
    • Mystic

      Mystic is an infostealer written in C++.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks