Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

0736640fdf...96.exe

windows7-x64

5

0736640fdf...96.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0736640fdff2e7a251c3c3dcf682c72822d760bcbdeac567f0a5a8f73d75ad96

  • Size

    378KB

  • Sample

    231012-eyshzsed7v

  • MD5

    69f7a7cb6c688ef685368e8eaa55df73

  • SHA1

    729969ba1a638c64a0685c479fcb96128190acbd

  • SHA256

    0736640fdff2e7a251c3c3dcf682c72822d760bcbdeac567f0a5a8f73d75ad96

  • SHA512

    4e89b3dae031455b14a61756d4b193b04c839f6d4616b5c18081936c44b9ccd4c9a49b7ad2229fef1ac9917f1fc4c6481bebfa1a39c7280064eaa92182a09c65

  • SSDEEP

    6144:X/5frpxdonyq4zaG2u5AOteKDeVoHMuY5SP1eCSsjjbGDQEHqLp9k+oKwqTBQ8TL:Xprp0/9u5XeORHMuY5SPgCSsjjaHqLLP

Score
10/10
mysticstealer

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      0736640fdff2e7a251c3c3dcf682c72822d760bcbdeac567f0a5a8f73d75ad96

    • Size

      378KB

    • MD5

      69f7a7cb6c688ef685368e8eaa55df73

    • SHA1

      729969ba1a638c64a0685c479fcb96128190acbd

    • SHA256

      0736640fdff2e7a251c3c3dcf682c72822d760bcbdeac567f0a5a8f73d75ad96

    • SHA512

      4e89b3dae031455b14a61756d4b193b04c839f6d4616b5c18081936c44b9ccd4c9a49b7ad2229fef1ac9917f1fc4c6481bebfa1a39c7280064eaa92182a09c65

    • SSDEEP

      6144:X/5frpxdonyq4zaG2u5AOteKDeVoHMuY5SP1eCSsjjbGDQEHqLp9k+oKwqTBQ8TL:Xprp0/9u5XeORHMuY5SPgCSsjjaHqLLP

    Score
    10/10
    mysticstealer

    • Mystic

      Mystic is an infostealer written in C++.

      stealermystic

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks