General
-
Target
75710679561bc0d2efd706cfd9f92c00469481463dce3ca8573054fa43f6870c
-
Size
1.0MB
-
Sample
231003-ajfhnahb55
-
MD5
3e5324ee70199903755370097c24015b
-
SHA1
2a676688a770d21bb9c9ca0ae68f1fd59ad553bb
-
SHA256
75710679561bc0d2efd706cfd9f92c00469481463dce3ca8573054fa43f6870c
-
SHA512
870dd1efb90c0e63e351a0d45296d092114421d1af494e503893f8c10945342f6f2ddda73a4b8f3c9d7c4f6541e630214943c8dd442ff5129004a7fc5ef5103b
-
SSDEEP
24576:2yykG1WbAs/9kQXmAGNN3sH7ohLYOw5U9k9x:FJbA2XAOUYOl2
Static task
static1
Behavioral task
behavioral1
Sample
75710679561bc0d2efd706cfd9f92c00469481463dce3ca8573054fa43f6870c.exe
Resource
win10-20230915-en
Malware Config
Targets
-
-
Target
75710679561bc0d2efd706cfd9f92c00469481463dce3ca8573054fa43f6870c
-
Size
1.0MB
-
MD5
3e5324ee70199903755370097c24015b
-
SHA1
2a676688a770d21bb9c9ca0ae68f1fd59ad553bb
-
SHA256
75710679561bc0d2efd706cfd9f92c00469481463dce3ca8573054fa43f6870c
-
SHA512
870dd1efb90c0e63e351a0d45296d092114421d1af494e503893f8c10945342f6f2ddda73a4b8f3c9d7c4f6541e630214943c8dd442ff5129004a7fc5ef5103b
-
SSDEEP
24576:2yykG1WbAs/9kQXmAGNN3sH7ohLYOw5U9k9x:FJbA2XAOUYOl2
Score10/10-
Detects Healer an antivirus disabler dropper
-
Executes dropped EXE
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1