healer | 8fe5d0d2cd15fb11a75e742258e77e56a7ff5ee7108571a7ab200bd5e789f13a | Triage

Submit
Reports

Overview

overview

Static

static

3

dridex

windows10-2004-x64

Sharing

General

Target

8fe5d0d2cd15fb11a75e742258e77e56a7ff5ee7108571a7ab200bd5e789f13a
Size

146KB
Sample

230717-fevpnsac55
MD5

d86ecd057cbd9c16498267a01eb4235e
SHA1

c96ffc63540ade4405fa94e9656eb5a76a6b850a
SHA256

8fe5d0d2cd15fb11a75e742258e77e56a7ff5ee7108571a7ab200bd5e789f13a
SHA512

c7dfd693705e0f25e06e1fbe72c10b8e98a638dfb2c73d499f6178161e878c001135dd1dd1617ffa3c524a71f7c88039f7a45a2db5ba4ab316eba5555d22552a
SSDEEP

3072:BO2on4uzz7wjiR6ZwelYpK2+rlENZjLXfHXW:ZpjiRCwz86rPXW

Score

10^/10

healer dropper evasion trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

8fe5d0d2cd15fb11a75e742258e77e56a7ff5ee7108571a7ab200bd5e789f13a.exe

Resource

win10v2004-20230703-en

healer dropper evasion trojan

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  8fe5d0d2cd15fb11a75e742258e77e56a7ff5ee7108571a7ab200bd5e789f13a
- Size
  
  146KB
- MD5
  
  d86ecd057cbd9c16498267a01eb4235e
- SHA1
  
  c96ffc63540ade4405fa94e9656eb5a76a6b850a
- SHA256
  
  8fe5d0d2cd15fb11a75e742258e77e56a7ff5ee7108571a7ab200bd5e789f13a
- SHA512
  
  c7dfd693705e0f25e06e1fbe72c10b8e98a638dfb2c73d499f6178161e878c001135dd1dd1617ffa3c524a71f7c88039f7a45a2db5ba4ab316eba5555d22552a
- SSDEEP
  
  3072:BO2on4uzz7wjiR6ZwelYpK2+rlENZjLXfHXW:ZpjiRCwz86rPXW
Score

10^/10

healer dropper evasion trojan
- Detects Healer an antivirus disabler dropper
- Healer
  Healer an antivirus disabler dropper.
  dropper healer
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Windows security modification
  evasion trojan
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

healerdropperevasiontrojan

© 2018-2024

Terms | Privacy