Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2d5d8d55e461986b5f3245d0a73a6643.bin

  • Size

    212KB

  • Sample

    231011-t98fxaae6w

  • MD5

    861dccd579b623de67bc03b599d9fb43

  • SHA1

    ada1e1799f34915bc2a0688d9b02619c7dc3dd1a

  • SHA256

    25a6b5b6fc67ddb1838c50cd0146ac845f5a86e3620e7c463361f355d90dc4a8

  • SHA512

    af4b1fdcd5a445f662cb50b13447df7875cf496e3654702ad41814a3d4877f482027a56a8aaa757b4a5c6881bd9a50fe154d602dd857a8c54119f2d5e0508d3d

  • SSDEEP

    6144:ZaLV8/cxZf6CXPckbX6d7ooEZHGAIcPuCAgm:ZaLy6pdDXmSGAIcGYm

Score
10/10

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      b82895964dcd2bc25bd94d15882e352369d4a2e326dabccce89571f7a9c76cd6.exe

    • Size

      372KB

    • MD5

      2d5d8d55e461986b5f3245d0a73a6643

    • SHA1

      755070b71b3fa2a8446256d0c0dac54be95b63fb

    • SHA256

      b82895964dcd2bc25bd94d15882e352369d4a2e326dabccce89571f7a9c76cd6

    • SHA512

      6f2948c711f63409ade4ced1512618c91e8a92972de39861642cb72aac19e944ac2adb7a0f46ab8a9e663da0702a8e70747eb5e3ded8b51b344a8e73cefafce0

    • SSDEEP

      6144:Pq46fuYXChoQTjlFgLuCY1dRuAO3xkqJkcEsu1OGxkE7VRw8y0M:PPYzXChdTbv1buUqJMsXGyEVRw8yr

    Score
    10/10
    • Mystic

      Mystic is an infostealer written in C++.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks