healer | d31e37d301eb33fd578e7c65e628b9ff3e5d9fdf16b7d1a9ba860bce4b3b940b | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

dridex

windows10-1703-x64

Sharing

General

Target

d31e37d301eb33fd578e7c65e628b9ff3e5d9fdf16b7d1a9ba860bce4b3b940b
Size

146KB
Sample

230717-bzkmzsae3s
MD5

822d447e868c973ba70f66c9a2881714
SHA1

e123d2f0237bb0bf15774350c238ff858a69c139
SHA256

d31e37d301eb33fd578e7c65e628b9ff3e5d9fdf16b7d1a9ba860bce4b3b940b
SHA512

91652ac24183fb67422185a811418c5338651d4497e0dbfcd23dfbd5d8813f1340036ad7d17f7656bd5c270c349955a17a957bbd9b0cafc29e7e568b2d675041
SSDEEP

3072:omY2iiYOzzf0jiRa5welYpKGerlE+3LXfHXW:rzQBjiRCwz8VrPXW

Score

10^/10

healer dropper evasion trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d31e37d301eb33fd578e7c65e628b9ff3e5d9fdf16b7d1a9ba860bce4b3b940b.exe

Resource

win10-20230703-en

healer dropper evasion trojan

windows10-1703-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  d31e37d301eb33fd578e7c65e628b9ff3e5d9fdf16b7d1a9ba860bce4b3b940b
- Size
  
  146KB
- MD5
  
  822d447e868c973ba70f66c9a2881714
- SHA1
  
  e123d2f0237bb0bf15774350c238ff858a69c139
- SHA256
  
  d31e37d301eb33fd578e7c65e628b9ff3e5d9fdf16b7d1a9ba860bce4b3b940b
- SHA512
  
  91652ac24183fb67422185a811418c5338651d4497e0dbfcd23dfbd5d8813f1340036ad7d17f7656bd5c270c349955a17a957bbd9b0cafc29e7e568b2d675041
- SSDEEP
  
  3072:omY2iiYOzzf0jiRa5welYpKGerlE+3LXfHXW:rzQBjiRCwz8VrPXW
Score

10^/10

healer dropper evasion trojan
- Detects Healer an antivirus disabler dropper
- Healer
  Healer an antivirus disabler dropper.
  dropper healer
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Windows security modification
  evasion trojan
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

healerdropperevasiontrojan

© 2018-2025

Terms | Privacy