General

  • Target

    2a8b4db402b0eb80bcd3b3363a1f52bcca39214c8dbae7752b30dad46142b13d

  • Size

    395KB

  • Sample

    241112-zggqda1cql

  • MD5

    33e4f1c5d0c5d29388e8f5cf9b9b63f7

  • SHA1

    9e444f1d24676e218ff3873862462054d0a150f8

  • SHA256

    2a8b4db402b0eb80bcd3b3363a1f52bcca39214c8dbae7752b30dad46142b13d

  • SHA512

    b2d3694b0749f4f6229f05aa0cdc47232c87a1bb9c3b80dd65ff159c665e9544406b4d624328dd107b07cf634d90dac9c2043833cc4545780fc95c9bb90375f5

  • SSDEEP

    6144:RZfgl2UiPSQBD20YaEeM523wj9zoSLspFy2fq:RZfa2UiP1BDk3eMewjVpgM2

Malware Config

Targets

    • Target

      2a8b4db402b0eb80bcd3b3363a1f52bcca39214c8dbae7752b30dad46142b13d

    • Size

      395KB

    • MD5

      33e4f1c5d0c5d29388e8f5cf9b9b63f7

    • SHA1

      9e444f1d24676e218ff3873862462054d0a150f8

    • SHA256

      2a8b4db402b0eb80bcd3b3363a1f52bcca39214c8dbae7752b30dad46142b13d

    • SHA512

      b2d3694b0749f4f6229f05aa0cdc47232c87a1bb9c3b80dd65ff159c665e9544406b4d624328dd107b07cf634d90dac9c2043833cc4545780fc95c9bb90375f5

    • SSDEEP

      6144:RZfgl2UiPSQBD20YaEeM523wj9zoSLspFy2fq:RZfa2UiP1BDk3eMewjVpgM2

    • Detects Healer an antivirus disabler dropper

    • Healer

      Healer an antivirus disabler dropper.

    • Healer family

    • Modifies Windows Defender Real-time Protection settings

    • Windows security modification

MITRE ATT&CK Enterprise v15

Tasks