General

  • Target

    25d5bae445b5819e899661a32aaef48a65ca61ff71b65f3086a6d505818da4a1N

  • Size

    286KB

  • Sample

    241110-eaf52syhkb

  • MD5

    0536b0c4a5390885b2d57d2876c61400

  • SHA1

    4e9830ee21b19b67390396a1acfbcdac026f91dd

  • SHA256

    25d5bae445b5819e899661a32aaef48a65ca61ff71b65f3086a6d505818da4a1

  • SHA512

    7bdaaa17a5b455bd5b20c0429265852f46aab78f86c77b2087ed919b8e0cf93d2fb6e75fd85d6063c6edff421c83e6daa7ae860161113a81531445c04ff011e7

  • SSDEEP

    3072:t6cVGD7YdnzOuuefoqZgpj/7S83MozKYdM2LNqthKck9xAN3a5Zcom4l:UfEqcAqgpj/+88IH5qK/yNSxR

Malware Config

Targets

    • Target

      25d5bae445b5819e899661a32aaef48a65ca61ff71b65f3086a6d505818da4a1N

    • Size

      286KB

    • MD5

      0536b0c4a5390885b2d57d2876c61400

    • SHA1

      4e9830ee21b19b67390396a1acfbcdac026f91dd

    • SHA256

      25d5bae445b5819e899661a32aaef48a65ca61ff71b65f3086a6d505818da4a1

    • SHA512

      7bdaaa17a5b455bd5b20c0429265852f46aab78f86c77b2087ed919b8e0cf93d2fb6e75fd85d6063c6edff421c83e6daa7ae860161113a81531445c04ff011e7

    • SSDEEP

      3072:t6cVGD7YdnzOuuefoqZgpj/7S83MozKYdM2LNqthKck9xAN3a5Zcom4l:UfEqcAqgpj/+88IH5qK/yNSxR

    • Detects Healer an antivirus disabler dropper

    • Healer

      Healer an antivirus disabler dropper.

    • Healer family

    • Modifies Windows Defender Real-time Protection settings

    • Windows security modification

MITRE ATT&CK Enterprise v15

Tasks