General

  • Target

    ea97447768777fe6698975537dfb2e81626bb74ef66e09267f419e4d9ee90f5e

  • Size

    326KB

  • Sample

    241110-ejy28aymev

  • MD5

    004105d46dc364732c014dc5998cae1c

  • SHA1

    a61bf4c9e26cc8f8360c278e33fa406ba2be30ef

  • SHA256

    ea97447768777fe6698975537dfb2e81626bb74ef66e09267f419e4d9ee90f5e

  • SHA512

    68d91eaf69351690cf661ab953cdff74d7cbcd386c6c529f759a04401935b9a93a0dc5226d87255c5811bf0fcd5570996d8719fb42aff750152375e0d37a2d0a

  • SSDEEP

    6144:5fsNTwc45SeVkdH1yHtSANYC0N/kNN4T:5fsNEc4/V2USkY0N

Malware Config

Targets

    • Target

      ea97447768777fe6698975537dfb2e81626bb74ef66e09267f419e4d9ee90f5e

    • Size

      326KB

    • MD5

      004105d46dc364732c014dc5998cae1c

    • SHA1

      a61bf4c9e26cc8f8360c278e33fa406ba2be30ef

    • SHA256

      ea97447768777fe6698975537dfb2e81626bb74ef66e09267f419e4d9ee90f5e

    • SHA512

      68d91eaf69351690cf661ab953cdff74d7cbcd386c6c529f759a04401935b9a93a0dc5226d87255c5811bf0fcd5570996d8719fb42aff750152375e0d37a2d0a

    • SSDEEP

      6144:5fsNTwc45SeVkdH1yHtSANYC0N/kNN4T:5fsNEc4/V2USkY0N

    • Detects Healer an antivirus disabler dropper

    • Healer

      Healer an antivirus disabler dropper.

    • Healer family

    • Modifies Windows Defender Real-time Protection settings

    • Windows security modification

MITRE ATT&CK Enterprise v15

Tasks