healer | be50af163cd1b4a8f97ce881f1cdf1a089dce08d4fb4ef5211518604cc51c06a | Triage

Submit
Reports

Overview

overview

Static

static

1

9e444cce33...4d.exe

windows7-x64

9e444cce33...4d.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

Target

9e444cce33400d1a8625ea18256b604d.exe
Size

806KB
Sample

230710-k5hj9ahe57
MD5

9e444cce33400d1a8625ea18256b604d
SHA1

db71bc1e8c9724811f94ab6ea181d969efa19163
SHA256

be50af163cd1b4a8f97ce881f1cdf1a089dce08d4fb4ef5211518604cc51c06a
SHA512

09a67e16a57f88aa09423d66fc0cd7e754343ccb6510bb38c9567df5438c5afe4696847dc304f534aac8f7f46b8eefd3b59f87034eb60bae874aa8db9b3bbe37
SSDEEP

24576:3K47NkaMZE+wS60x/z++fqVwPIryVcSK:3KqSaqE+wP05y+fqV+rb

Score

10^/10

healer dropper persistence

Static task

static1

Behavioral task

behavioral1

Sample

9e444cce33400d1a8625ea18256b604d.exe

Resource

win7-20230703-en

healer dropper persistence

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

9e444cce33400d1a8625ea18256b604d.exe

Resource

win10v2004-20230703-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Targets

- Target
  
  9e444cce33400d1a8625ea18256b604d.exe
- Size
  
  806KB
- MD5
  
  9e444cce33400d1a8625ea18256b604d
- SHA1
  
  db71bc1e8c9724811f94ab6ea181d969efa19163
- SHA256
  
  be50af163cd1b4a8f97ce881f1cdf1a089dce08d4fb4ef5211518604cc51c06a
- SHA512
  
  09a67e16a57f88aa09423d66fc0cd7e754343ccb6510bb38c9567df5438c5afe4696847dc304f534aac8f7f46b8eefd3b59f87034eb60bae874aa8db9b3bbe37
- SSDEEP
  
  24576:3K47NkaMZE+wS60x/z++fqVwPIryVcSK:3KqSaqE+wP05y+fqV+rb
Score

10^/10

healer dropper persistence
- Detects Healer an antivirus disabler dropper
- Healer
  Healer an antivirus disabler dropper.
  dropper healer
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

healerdropperpersistence

behavioral2

© 2018-2025

Terms | Privacy