Overview

overview

10

Static

static

10

winprofile

windows7-x64

10

winprofile

windows10-1703-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    g1085892.exe

  • Size

    15KB

  • MD5

    b086084326f33cb85dc3858f80dbefd8

  • SHA1

    333aea1bde046b0bee767c22281e57a027115c13

  • SHA256

    bbc5c1670c54fa070d83f154aa2dacd014cc9d75983db078886334647f48510f

  • SHA512

    0c5f1bfb7002915be4ea9d8601428b1f3b720c68515b3fe60b52d6085e20c3cbbdd650d4a40a704b44c0b2f29b9c9b4b9656356a68d1ef241ea160a365e30436

  • SSDEEP

    96:yA/vMth9sDLibql3A44P9QL4fwmPImg+A03PvXLOzk+gqWYV4J6oP/zNt:yw+wGWt94+iANiCkc4Jhp

Score
10/10
healer

Malware Config

Signatures

  • Detects Healer an antivirus disabler dropper 1 IoCs
  • Healer family
    healer
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • g1085892.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections