General

  • Target

    9282b6398690556156e5e4b23ac88aa9db91bd814b8e4f63758f81eb98fb7fe9

  • Size

    318KB

  • Sample

    241110-awsnrawbka

  • MD5

    ce881dde8ae1d15f9d11c7b4e31b5924

  • SHA1

    15065b5f7637030bd0d8fc9b3adb433d1d887f5c

  • SHA256

    9282b6398690556156e5e4b23ac88aa9db91bd814b8e4f63758f81eb98fb7fe9

  • SHA512

    30f8b789c312a66f2dc58f1a4e8b99a5f6fa9ad7845687edd0769ab3400a4d4fe3a78994fa5705643ceea0c345ceaf595a1e10ae41b93a84da2380a65a675ac6

  • SSDEEP

    3072:bMiRIphv2K8XPY4h6Capod5tTOMsvp3SwuU40VuBXPmoR7S2OkJVPpkBoBvKrYvZ:IdaBL6CRJTOvRuU9QXPB7vOUjBCEqO

Malware Config

Targets

    • Target

      9282b6398690556156e5e4b23ac88aa9db91bd814b8e4f63758f81eb98fb7fe9

    • Size

      318KB

    • MD5

      ce881dde8ae1d15f9d11c7b4e31b5924

    • SHA1

      15065b5f7637030bd0d8fc9b3adb433d1d887f5c

    • SHA256

      9282b6398690556156e5e4b23ac88aa9db91bd814b8e4f63758f81eb98fb7fe9

    • SHA512

      30f8b789c312a66f2dc58f1a4e8b99a5f6fa9ad7845687edd0769ab3400a4d4fe3a78994fa5705643ceea0c345ceaf595a1e10ae41b93a84da2380a65a675ac6

    • SSDEEP

      3072:bMiRIphv2K8XPY4h6Capod5tTOMsvp3SwuU40VuBXPmoR7S2OkJVPpkBoBvKrYvZ:IdaBL6CRJTOvRuU9QXPB7vOUjBCEqO

    • Detects Healer an antivirus disabler dropper

    • Healer

      Healer an antivirus disabler dropper.

    • Healer family

    • Modifies Windows Defender Real-time Protection settings

    • Windows security modification

MITRE ATT&CK Enterprise v15

Tasks