General

  • Target

    f18a3548dc81b3a8fda328030841ca6603d714c944d1020737b01fa58fbdada8

  • Size

    389KB

  • Sample

    241109-fxtkbsycma

  • MD5

    af80115718a77edec5e51df8972c24bc

  • SHA1

    4389b3519dfc18c4d332b40c199e6c7788042d16

  • SHA256

    f18a3548dc81b3a8fda328030841ca6603d714c944d1020737b01fa58fbdada8

  • SHA512

    5ed339d24ec41b5bb6a7e340a0f946064f7f050fef92676d34cf7d83cef5a45886309659ebebe2d8b1177cfa971ee0b09d3daeb27da2f725b82c8652474240fc

  • SSDEEP

    6144:oigbTmfTgUD8LHBlcEl/p9idpCWRiPC4MMPb4CSgAozS:AbSfT3D8LHzc+/g8QiPBmn

Malware Config

Targets

    • Target

      f18a3548dc81b3a8fda328030841ca6603d714c944d1020737b01fa58fbdada8

    • Size

      389KB

    • MD5

      af80115718a77edec5e51df8972c24bc

    • SHA1

      4389b3519dfc18c4d332b40c199e6c7788042d16

    • SHA256

      f18a3548dc81b3a8fda328030841ca6603d714c944d1020737b01fa58fbdada8

    • SHA512

      5ed339d24ec41b5bb6a7e340a0f946064f7f050fef92676d34cf7d83cef5a45886309659ebebe2d8b1177cfa971ee0b09d3daeb27da2f725b82c8652474240fc

    • SSDEEP

      6144:oigbTmfTgUD8LHBlcEl/p9idpCWRiPC4MMPb4CSgAozS:AbSfT3D8LHzc+/g8QiPBmn

    • Detects Healer an antivirus disabler dropper

    • Healer

      Healer an antivirus disabler dropper.

    • Healer family

    • Modifies Windows Defender Real-time Protection settings

    • Windows security modification

MITRE ATT&CK Enterprise v15

Tasks