General

  • Target

    4a0db7af638dba033f0b2e4bde322e8f505b8823f24d9c5655745a6ab438b15d

  • Size

    354KB

  • Sample

    241109-1tmylatbjf

  • MD5

    165d9002b5f866e7edaa3c08d4aa41d3

  • SHA1

    8ec8981604b6e9c7217b764a68800bb92ff29dde

  • SHA256

    4a0db7af638dba033f0b2e4bde322e8f505b8823f24d9c5655745a6ab438b15d

  • SHA512

    649294812767c44cd8193d0e0811cad78a8ad1691411048e81b802bc2f265c2f180e7030aecaca9c22fe40f15a9f8cc9101f626fed0990f7bba4d695d1b86abe

  • SSDEEP

    6144:KRy+bnr+Op0yN90QEdf72J/F0zIaUlgO3Qh46TEvhiQQbNuoY7e:/MrGy90/7w/FqJSI4VYQQJKe

Malware Config

Targets

    • Target

      4a0db7af638dba033f0b2e4bde322e8f505b8823f24d9c5655745a6ab438b15d

    • Size

      354KB

    • MD5

      165d9002b5f866e7edaa3c08d4aa41d3

    • SHA1

      8ec8981604b6e9c7217b764a68800bb92ff29dde

    • SHA256

      4a0db7af638dba033f0b2e4bde322e8f505b8823f24d9c5655745a6ab438b15d

    • SHA512

      649294812767c44cd8193d0e0811cad78a8ad1691411048e81b802bc2f265c2f180e7030aecaca9c22fe40f15a9f8cc9101f626fed0990f7bba4d695d1b86abe

    • SSDEEP

      6144:KRy+bnr+Op0yN90QEdf72J/F0zIaUlgO3Qh46TEvhiQQbNuoY7e:/MrGy90/7w/FqJSI4VYQQJKe

    • Detects Healer an antivirus disabler dropper

    • Healer

      Healer an antivirus disabler dropper.

    • Healer family

    • Modifies Windows Defender Real-time Protection settings

    • Executes dropped EXE

    • Windows security modification

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks