healer | 323eb1057827ba37ad87cfc04a1e4fc4e7b0c9da40bdd9b019ed9689f35430b8 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

dridex

windows10-2004-x64

Sharing

General

Target

323eb1057827ba37ad87cfc04a1e4fc4e7b0c9da40bdd9b019ed9689f35430b8
Size

294KB
Sample

230716-s2bxasfe24
MD5

26df34038a367e3d5f80a629e88fa416
SHA1

56f41716072c1554f95ea23fcc7cc2b5cf35d22e
SHA256

323eb1057827ba37ad87cfc04a1e4fc4e7b0c9da40bdd9b019ed9689f35430b8
SHA512

b4e0c6e05172ea5612b212f4d80f8e4ea347a003f00996e6d3444901b6f61940d0bb774b24242225dca0d9955c0da77e42cbd0ac97f0025c541d64245d7e1fd4
SSDEEP

6144:sJESFxmF6xYbh4r75tln5KhK4W17Ohxp3bO5ZLiAYC7b+D5T:sJESFCEtl5KhK4W16PWTYC7b+D

Score

10^/10

healer dropper evasion trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

323eb1057827ba37ad87cfc04a1e4fc4e7b0c9da40bdd9b019ed9689f35430b8.exe

Resource

win10v2004-20230703-en

healer dropper evasion trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  323eb1057827ba37ad87cfc04a1e4fc4e7b0c9da40bdd9b019ed9689f35430b8
- Size
  
  294KB
- MD5
  
  26df34038a367e3d5f80a629e88fa416
- SHA1
  
  56f41716072c1554f95ea23fcc7cc2b5cf35d22e
- SHA256
  
  323eb1057827ba37ad87cfc04a1e4fc4e7b0c9da40bdd9b019ed9689f35430b8
- SHA512
  
  b4e0c6e05172ea5612b212f4d80f8e4ea347a003f00996e6d3444901b6f61940d0bb774b24242225dca0d9955c0da77e42cbd0ac97f0025c541d64245d7e1fd4
- SSDEEP
  
  6144:sJESFxmF6xYbh4r75tln5KhK4W17Ohxp3bO5ZLiAYC7b+D5T:sJESFCEtl5KhK4W16PWTYC7b+D
Score

10^/10

healer dropper evasion trojan
- Detects Healer an antivirus disabler dropper
- Healer
  Healer an antivirus disabler dropper.
  dropper healer
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Windows security modification
  evasion trojan
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

healerdropperevasiontrojan

© 2018-2025

Terms | Privacy