General

  • Target

    7f39a8bed98a60afd57f0f4d8f022b808e7146a12bf3fb12c989e0f414f24169N

  • Size

    294KB

  • Sample

    241110-ekgjkayhkn

  • MD5

    66b8db502468ed7896a9464e48133310

  • SHA1

    ff0f3bcfee61b05abe2837f98aee10cac179ee27

  • SHA256

    7f39a8bed98a60afd57f0f4d8f022b808e7146a12bf3fb12c989e0f414f24169

  • SHA512

    2825185dfddb4ac70f50c937682c12d48675a245829bfb5c693362e6494887f0d05290b5f1be2877f951a079ec7835618f1334c2911baf3d7d7a403467e8d2fe

  • SSDEEP

    3072:RoJoGSqpH7kuA6G+hD2RuoIpZJsSBr1fWgEeWIlBgS7NzXzUexpwVy44Bop30qjz:rMpLA6GgVr1fBlBPjlxmsCH3OaZtkjt

Malware Config

Targets

    • Target

      7f39a8bed98a60afd57f0f4d8f022b808e7146a12bf3fb12c989e0f414f24169N

    • Size

      294KB

    • MD5

      66b8db502468ed7896a9464e48133310

    • SHA1

      ff0f3bcfee61b05abe2837f98aee10cac179ee27

    • SHA256

      7f39a8bed98a60afd57f0f4d8f022b808e7146a12bf3fb12c989e0f414f24169

    • SHA512

      2825185dfddb4ac70f50c937682c12d48675a245829bfb5c693362e6494887f0d05290b5f1be2877f951a079ec7835618f1334c2911baf3d7d7a403467e8d2fe

    • SSDEEP

      3072:RoJoGSqpH7kuA6G+hD2RuoIpZJsSBr1fWgEeWIlBgS7NzXzUexpwVy44Bop30qjz:rMpLA6GgVr1fBlBPjlxmsCH3OaZtkjt

    • Detects Healer an antivirus disabler dropper

    • Healer

      Healer an antivirus disabler dropper.

    • Healer family

    • Modifies Windows Defender Real-time Protection settings

    • Windows security modification

MITRE ATT&CK Enterprise v15

Tasks