Resubmissions

29/05/2025, 20:09

250529-yw7pnsxtev 10

29/05/2025, 18:07

250529-wqfb5avyfw 10

29/05/2025, 17:49

250529-wd3a5avwhv 8

General

  • Target

    talon.exe

  • Size

    30.4MB

  • Sample

    250529-wd3a5avwhv

  • MD5

    e132523b5b75c66ed53c591d3c20630b

  • SHA1

    6ddc18983ecc782b9549b14c51f32a4bac24c63a

  • SHA256

    ce9da9cfc45b9243d1ab7d95b4a5dbb8c344087356252db36638dc3d079a6b76

  • SHA512

    b55965d2abd5f28f3cc69de050c792b3a4be216eaef60af6fe37cc01d80bdb41aceb1db1390419d9cbd3442e0f763a959c07666c9b1beeb30f5b0030eb9d7580

  • SSDEEP

    786432:Jaxv+MhO58FkQDxGkViGK48PFqbt7RRvHwO/GCq7T/u5WH:JXMhOMiq8Pobt7j9qX2M

Score
8/10

Malware Config

Targets

    • Target

      talon.exe

    • Size

      30.4MB

    • MD5

      e132523b5b75c66ed53c591d3c20630b

    • SHA1

      6ddc18983ecc782b9549b14c51f32a4bac24c63a

    • SHA256

      ce9da9cfc45b9243d1ab7d95b4a5dbb8c344087356252db36638dc3d079a6b76

    • SHA512

      b55965d2abd5f28f3cc69de050c792b3a4be216eaef60af6fe37cc01d80bdb41aceb1db1390419d9cbd3442e0f763a959c07666c9b1beeb30f5b0030eb9d7580

    • SSDEEP

      786432:Jaxv+MhO58FkQDxGkViGK48PFqbt7RRvHwO/GCq7T/u5WH:JXMhOMiq8Pobt7j9qX2M

    Score
    8/10
    • Command and Scripting Interpreter: PowerShell

      Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v16

Tasks