healer | 13918da54a9b6a4f9c2a0a5fa75025c634fd21573023a8ef17fb1283d27ec9c3 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

dridex

windows10-1703-x64

Sharing

General

Target

13918da54a9b6a4f9c2a0a5fa75025c634fd21573023a8ef17fb1283d27ec9c3
Size

295KB
Sample

230716-r3zt3sfd43
MD5

f6490686cf3562cf4f6dc5bc5909203e
SHA1

eba5844c13095430e89a90ce6d973aefdac3ffc0
SHA256

13918da54a9b6a4f9c2a0a5fa75025c634fd21573023a8ef17fb1283d27ec9c3
SHA512

7d5f341021f1708adccc2e56cb2104baff2e6f7aeff21527de1a5f6750f6f0c0d2e51b2550cec5c2ad9f9a2797e1365d0e09d7b5a2aee851c0cf26cfc8440fbe
SSDEEP

6144:J2TtLfFaxmcFpOjW/UPbMDK4+SeNL8aPrnkdcTLYEhEkajn:8Tt5ypkW/UjMDK4+h3aILJhEPn

Score

10^/10

healer dropper evasion trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

13918da54a9b6a4f9c2a0a5fa75025c634fd21573023a8ef17fb1283d27ec9c3.exe

Resource

win10-20230703-en

healer dropper evasion trojan

windows10-1703-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  13918da54a9b6a4f9c2a0a5fa75025c634fd21573023a8ef17fb1283d27ec9c3
- Size
  
  295KB
- MD5
  
  f6490686cf3562cf4f6dc5bc5909203e
- SHA1
  
  eba5844c13095430e89a90ce6d973aefdac3ffc0
- SHA256
  
  13918da54a9b6a4f9c2a0a5fa75025c634fd21573023a8ef17fb1283d27ec9c3
- SHA512
  
  7d5f341021f1708adccc2e56cb2104baff2e6f7aeff21527de1a5f6750f6f0c0d2e51b2550cec5c2ad9f9a2797e1365d0e09d7b5a2aee851c0cf26cfc8440fbe
- SSDEEP
  
  6144:J2TtLfFaxmcFpOjW/UPbMDK4+SeNL8aPrnkdcTLYEhEkajn:8Tt5ypkW/UjMDK4+h3aILJhEPn
Score

10^/10

healer dropper evasion trojan
- Detects Healer an antivirus disabler dropper
- Healer
  Healer an antivirus disabler dropper.
  dropper healer
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Windows security modification
  evasion trojan
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

healerdropperevasiontrojan

© 2018-2025

Terms | Privacy