Overview

overview

10

Static

static

3

6b78b5933a...7e.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6b78b5933a36713baeffa59dbc40f73cad60fa40ee5955f531f93aad72b9697e

  • Size

    618KB

  • Sample

    241111-ax29ksyfmg

  • MD5

    af9a2b159b051328fae2d70c23cd233f

  • SHA1

    cc22df6b5780388f149ade486b2e43ca0b251938

  • SHA256

    6b78b5933a36713baeffa59dbc40f73cad60fa40ee5955f531f93aad72b9697e

  • SHA512

    f2570bd18200b4aed01be9b5984fb4730b2a51944390174d99305922a1590067bd93424dfe71649cad40548fc3b0218fe036f5699d4dea13f0322acb4fd4285d

  • SSDEEP

    12288:8y90S9QhTHefVYaDSmWtL2xdmztWORK0kh/ghU:8yRQh6tlWLYEz1K0kKhU

Score
10/10
healerredlinediscoverydropperevasioninfostealerpersistencetrojan

Malware Config

Targets

    • Target

      6b78b5933a36713baeffa59dbc40f73cad60fa40ee5955f531f93aad72b9697e

    • Size

      618KB

    • MD5

      af9a2b159b051328fae2d70c23cd233f

    • SHA1

      cc22df6b5780388f149ade486b2e43ca0b251938

    • SHA256

      6b78b5933a36713baeffa59dbc40f73cad60fa40ee5955f531f93aad72b9697e

    • SHA512

      f2570bd18200b4aed01be9b5984fb4730b2a51944390174d99305922a1590067bd93424dfe71649cad40548fc3b0218fe036f5699d4dea13f0322acb4fd4285d

    • SSDEEP

      12288:8y90S9QhTHefVYaDSmWtL2xdmztWORK0kh/ghU:8yRQh6tlWLYEz1K0kKhU

    Score
    10/10
    healerredlinediscoverydropperevasioninfostealerpersistencetrojan

    • Detects Healer an antivirus disabler dropper

    • Healer

      Healer an antivirus disabler dropper.

      dropperhealer

    • Healer family

      healer

    • Modifies Windows Defender Real-time Protection settings

      evasiontrojan

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline

    • Executes dropped EXE

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks