General

  • Target

    49dbcda7d6fcbbf6189fbf9b8a441102526d7c13303cbe294d9e1139483d0fe4

  • Size

    176KB

  • Sample

    241112-1pzrlascjb

  • MD5

    329d51ce48abe9006f3aed05d2d1f5ea

  • SHA1

    a21a73ef306a0091257d9a03bdb9c07e5879a4da

  • SHA256

    49dbcda7d6fcbbf6189fbf9b8a441102526d7c13303cbe294d9e1139483d0fe4

  • SHA512

    3d80ad00979e17dfdb8599d4dceae5d05365a0034d5226e387dae600c4ac8a948f7740f6e387faac3045d917ca86d1a4d97efcd66f850928cace73b95853a62a

  • SSDEEP

    3072:8DKW1LgppLRHMY0TBfJvjcTp5XEP1eNVETJ2K:8DKW1Lgbdl0TBBvjc/MT

Malware Config

Targets

    • Target

      49dbcda7d6fcbbf6189fbf9b8a441102526d7c13303cbe294d9e1139483d0fe4

    • Size

      176KB

    • MD5

      329d51ce48abe9006f3aed05d2d1f5ea

    • SHA1

      a21a73ef306a0091257d9a03bdb9c07e5879a4da

    • SHA256

      49dbcda7d6fcbbf6189fbf9b8a441102526d7c13303cbe294d9e1139483d0fe4

    • SHA512

      3d80ad00979e17dfdb8599d4dceae5d05365a0034d5226e387dae600c4ac8a948f7740f6e387faac3045d917ca86d1a4d97efcd66f850928cace73b95853a62a

    • SSDEEP

      3072:8DKW1LgppLRHMY0TBfJvjcTp5XEP1eNVETJ2K:8DKW1Lgbdl0TBBvjc/MT

    • Detects Healer an antivirus disabler dropper

    • Healer

      Healer an antivirus disabler dropper.

    • Healer family

    • Modifies Windows Defender Real-time Protection settings

    • Windows security modification

MITRE ATT&CK Enterprise v15

Tasks