Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c757aec83a6964e8e7ef2d09e356aa4468b48d65ee478addcbfe94ccb34ac9a5

  • Size

    700KB

  • Sample

    231012-f64rnacb37

  • MD5

    80ec7e8de58d34c4217a06c100577a88

  • SHA1

    f3841eb1d18c1e868186ec2f36d5aa240185ec54

  • SHA256

    c757aec83a6964e8e7ef2d09e356aa4468b48d65ee478addcbfe94ccb34ac9a5

  • SHA512

    6cce9e5db6c5b634771bcf00f5ede69a467946da1cce16ed2bc396a79835797f6fbe1e39806f6a518b2a4e4040516fe4fe62f120a9fcf98ed3651098e5da15b5

  • SSDEEP

    6144:RXSvGAafgBMniUwluzlcy/XVucQ5eJBeluQq0qkIrq/vsxpqJ86DpMM4vfz:wGfg2i8VucQ5mBCuJ0YrmZVMMMz

Score
10/10

Malware Config

Extracted

Family

mystic

C2

http://5.42.92.211/loghub/master

Targets

    • Target

      c757aec83a6964e8e7ef2d09e356aa4468b48d65ee478addcbfe94ccb34ac9a5

    • Size

      700KB

    • MD5

      80ec7e8de58d34c4217a06c100577a88

    • SHA1

      f3841eb1d18c1e868186ec2f36d5aa240185ec54

    • SHA256

      c757aec83a6964e8e7ef2d09e356aa4468b48d65ee478addcbfe94ccb34ac9a5

    • SHA512

      6cce9e5db6c5b634771bcf00f5ede69a467946da1cce16ed2bc396a79835797f6fbe1e39806f6a518b2a4e4040516fe4fe62f120a9fcf98ed3651098e5da15b5

    • SSDEEP

      6144:RXSvGAafgBMniUwluzlcy/XVucQ5eJBeluQq0qkIrq/vsxpqJ86DpMM4vfz:wGfg2i8VucQ5mBCuJ0YrmZVMMMz

    Score
    10/10
    • Mystic

      Mystic is an infostealer written in C++.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks