General

  • Target

    26751bfbca641e60f2b6ea99f72962687056cb47a62df538615b92e54a61709aN.exe

  • Size

    332KB

  • Sample

    241112-1wep1a1mgt

  • MD5

    24e709757a0ca8eb65fb3e6b0a3be321

  • SHA1

    8afee4ef2bf6a7066e52b41a8ce9c0597867ce3a

  • SHA256

    237b899b5695d2a3c73fa178b1a6a0c686d19e9b166be50ad16acbba967f91c1

  • SHA512

    55d791dbc000db771a76df095d0b363a6f84cbde6a4b3aaf41dab15c2440f32c5af4410c0a067b7a8affdcbd23e1bceeaa46acc9916bb5b93f8d412f83117b35

  • SSDEEP

    6144:iXUVgiZF0aObjpv2XIIx+dd3r3dnTiqedN31G:SMvZ42YPdd3bIdNI

Malware Config

Targets

    • Target

      26751bfbca641e60f2b6ea99f72962687056cb47a62df538615b92e54a61709aN.exe

    • Size

      332KB

    • MD5

      24e709757a0ca8eb65fb3e6b0a3be321

    • SHA1

      8afee4ef2bf6a7066e52b41a8ce9c0597867ce3a

    • SHA256

      237b899b5695d2a3c73fa178b1a6a0c686d19e9b166be50ad16acbba967f91c1

    • SHA512

      55d791dbc000db771a76df095d0b363a6f84cbde6a4b3aaf41dab15c2440f32c5af4410c0a067b7a8affdcbd23e1bceeaa46acc9916bb5b93f8d412f83117b35

    • SSDEEP

      6144:iXUVgiZF0aObjpv2XIIx+dd3r3dnTiqedN31G:SMvZ42YPdd3bIdNI

    • Detects Healer an antivirus disabler dropper

    • Healer

      Healer an antivirus disabler dropper.

    • Healer family

    • Modifies Windows Defender Real-time Protection settings

    • Windows security modification

MITRE ATT&CK Enterprise v15

Tasks