Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    24fb59ccf89958f0e38137ec6ea72f7c69781ec734ac4a17eae42887d0e2473a

  • Size

    346KB

  • Sample

    231011-my3yqabf93

  • MD5

    225f271d7450f2de6ebd728cc1c9c1be

  • SHA1

    87b164cc4ee58ed97577df65bbfc968f5c6c6c5a

  • SHA256

    24fb59ccf89958f0e38137ec6ea72f7c69781ec734ac4a17eae42887d0e2473a

  • SHA512

    20da25736f3088206b5bf0dc9050def2b6c462d2aa092335cfa4aaa677f2fdc4e6fa50987062617ee5efeaf3852723fa1b750405d8616162ff28c344dc3a1dcc

  • SSDEEP

    6144:sJCMljS9PgGzqLHvw1t6mAO+/Tq0BACPoqTBC/Tfi3viKC:sJNS9PgGim4Lq0GYTB84iKC

Score
10/10

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      24fb59ccf89958f0e38137ec6ea72f7c69781ec734ac4a17eae42887d0e2473a

    • Size

      346KB

    • MD5

      225f271d7450f2de6ebd728cc1c9c1be

    • SHA1

      87b164cc4ee58ed97577df65bbfc968f5c6c6c5a

    • SHA256

      24fb59ccf89958f0e38137ec6ea72f7c69781ec734ac4a17eae42887d0e2473a

    • SHA512

      20da25736f3088206b5bf0dc9050def2b6c462d2aa092335cfa4aaa677f2fdc4e6fa50987062617ee5efeaf3852723fa1b750405d8616162ff28c344dc3a1dcc

    • SSDEEP

      6144:sJCMljS9PgGzqLHvw1t6mAO+/Tq0BACPoqTBC/Tfi3viKC:sJNS9PgGim4Lq0GYTB84iKC

    Score
    10/10
    • Detect Mystic stealer payload

    • Mystic

      Mystic is an infostealer written in C++.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks