General

  • Target

    61b37790de3e424c5fdc457f3746cd5068a268dbdfee3b2159fe9643d5c35580N

  • Size

    231KB

  • Sample

    241110-b2d8zswgmr

  • MD5

    8fc9fbe1333f245626222530134b3a30

  • SHA1

    164f848e9c6acf60f76909ddac9543881a071527

  • SHA256

    61b37790de3e424c5fdc457f3746cd5068a268dbdfee3b2159fe9643d5c35580

  • SHA512

    0b0fd9798a18683c9447b0ab4ede32021a64db92d698af9cb04c385be81daf8fb843efc8113b389f95a21687d6cf796b2a2780a56011431c25debab34b634252

  • SSDEEP

    6144:fhWelMxhqLD5BFwn3dnXuo2SuC6UyhXT:ft6hqLVoVh2B

Malware Config

Targets

    • Target

      61b37790de3e424c5fdc457f3746cd5068a268dbdfee3b2159fe9643d5c35580N

    • Size

      231KB

    • MD5

      8fc9fbe1333f245626222530134b3a30

    • SHA1

      164f848e9c6acf60f76909ddac9543881a071527

    • SHA256

      61b37790de3e424c5fdc457f3746cd5068a268dbdfee3b2159fe9643d5c35580

    • SHA512

      0b0fd9798a18683c9447b0ab4ede32021a64db92d698af9cb04c385be81daf8fb843efc8113b389f95a21687d6cf796b2a2780a56011431c25debab34b634252

    • SSDEEP

      6144:fhWelMxhqLD5BFwn3dnXuo2SuC6UyhXT:ft6hqLVoVh2B

    • Detects Healer an antivirus disabler dropper

    • Healer

      Healer an antivirus disabler dropper.

    • Healer family

    • Modifies Windows Defender Real-time Protection settings

    • Windows security modification

MITRE ATT&CK Enterprise v15

Tasks