Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    a77a497f68f991f18240a4968f3b8521.bin

  • Size

    205KB

  • Sample

    231011-zj9h6sed69

  • MD5

    e214159eb36f9d4cafa6c6bf70732b4f

  • SHA1

    7cc7ede9bb0f6f966fee0549e3f38e9c26232c26

  • SHA256

    6c4ec069a59f67ce0be56cf42c22795daac99bea9f24a8eb529e815dd71130c1

  • SHA512

    2d10a7389fd91e5476f8a394fc25300f285f21fb27287c2a96a487ea737d3465cb13edb6ebcf685cda46dd323d7363fbfcd472227caecd5f90f5cc1ea28cc597

  • SSDEEP

    6144:giIAdHN/PsufN/btEJBjZmytBv8TQNzd+Zb:giHjcuF/btEJBMxFZb

Score
10/10

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      1319d7501351f1023273cda386fbde4dea62cb7de9b3a2a5b38f5e7f51407191.exe

    • Size

      364KB

    • MD5

      a77a497f68f991f18240a4968f3b8521

    • SHA1

      9bf8b5803f7224a3d66d904d205c18ac64aa7cf6

    • SHA256

      1319d7501351f1023273cda386fbde4dea62cb7de9b3a2a5b38f5e7f51407191

    • SHA512

      50e4f3d68b48e975fcc0d63997cea85b3287a279becc35bf4244744f5f9ec51bed9c85f8b7a6b23a51dbeca41969558e87d3d8bd2954568d82cfb5ee0a232cd6

    • SSDEEP

      6144:iy46fuYXChoQTjlFgLuCY1dRuAOCHuH2yiZwyZwZxhXmXXXXXXXR59yw8y0:iXYzXChdTbv1buNiZwDZ7XOnnnRnyw8y

    Score
    10/10
    • Mystic

      Mystic is an infostealer written in C++.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks