healer | d493f2779850ee4b508d0d91ff9446406a447bfa325ddea54ad728489241b843 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

dridex

windows10-1703-x64

Sharing

General

Target

d493f2779850ee4b508d0d91ff9446406a447bfa325ddea54ad728489241b843
Size

146KB
Sample

230716-wh26xsgc92
MD5

ba3686fcd353c6ff20b86615ef05dde9
SHA1

cbda4857f125708ce14bc3cf48be549ef2f87c05
SHA256

d493f2779850ee4b508d0d91ff9446406a447bfa325ddea54ad728489241b843
SHA512

e9f552895fae1c03ea0e21def511221880950154e506aa79a8adc51151b3e495bd32d34f9b20beda5b291d6faeda177a1e3d385043a0423a6029b7a7a1a866d2
SSDEEP

3072:/hFA/6ixzzLwjiR7ZwelYpKj/rlxafNoLXfHXW:p8KjiRVwz8UNorPXW

Score

10^/10

healer dropper evasion trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d493f2779850ee4b508d0d91ff9446406a447bfa325ddea54ad728489241b843.exe

Resource

win10-20230703-en

healer dropper evasion trojan

windows10-1703-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  d493f2779850ee4b508d0d91ff9446406a447bfa325ddea54ad728489241b843
- Size
  
  146KB
- MD5
  
  ba3686fcd353c6ff20b86615ef05dde9
- SHA1
  
  cbda4857f125708ce14bc3cf48be549ef2f87c05
- SHA256
  
  d493f2779850ee4b508d0d91ff9446406a447bfa325ddea54ad728489241b843
- SHA512
  
  e9f552895fae1c03ea0e21def511221880950154e506aa79a8adc51151b3e495bd32d34f9b20beda5b291d6faeda177a1e3d385043a0423a6029b7a7a1a866d2
- SSDEEP
  
  3072:/hFA/6ixzzLwjiR7ZwelYpKj/rlxafNoLXfHXW:p8KjiRVwz8UNorPXW
Score

10^/10

healer dropper evasion trojan
- Detects Healer an antivirus disabler dropper
- Healer
  Healer an antivirus disabler dropper.
  dropper healer
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Windows security modification
  evasion trojan
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

healerdropperevasiontrojan

© 2018-2025

Terms | Privacy