General

  • Target

    356ffa37886ed2c5f4f6178c36364450a41b480c8fd21011299cbbfa09d8aa8e

  • Size

    299KB

  • Sample

    241112-zxkf7s1fpl

  • MD5

    d5e1b8c3768603f68b5b59306292a178

  • SHA1

    0fe57d0655cc8dc94784f078612af608168a9d92

  • SHA256

    356ffa37886ed2c5f4f6178c36364450a41b480c8fd21011299cbbfa09d8aa8e

  • SHA512

    b302c130577cf8b9bb1fdd8ab84a9a149c83110490fed124914aa580a3f4934002269d856bc9766a885079128d79ae9295f2f05bb363713f5c451d151bda44ad

  • SSDEEP

    6144:Cjgb6jJIzYKJbwm33RLJIsX5mDV9VxJNnruY2:Ig0I1J0mH7IsX4R9Npr32

Malware Config

Targets

    • Target

      356ffa37886ed2c5f4f6178c36364450a41b480c8fd21011299cbbfa09d8aa8e

    • Size

      299KB

    • MD5

      d5e1b8c3768603f68b5b59306292a178

    • SHA1

      0fe57d0655cc8dc94784f078612af608168a9d92

    • SHA256

      356ffa37886ed2c5f4f6178c36364450a41b480c8fd21011299cbbfa09d8aa8e

    • SHA512

      b302c130577cf8b9bb1fdd8ab84a9a149c83110490fed124914aa580a3f4934002269d856bc9766a885079128d79ae9295f2f05bb363713f5c451d151bda44ad

    • SSDEEP

      6144:Cjgb6jJIzYKJbwm33RLJIsX5mDV9VxJNnruY2:Ig0I1J0mH7IsX4R9Npr32

    • Detects Healer an antivirus disabler dropper

    • Healer

      Healer an antivirus disabler dropper.

    • Healer family

    • Modifies Windows Defender Real-time Protection settings

    • Windows security modification

MITRE ATT&CK Enterprise v15

Tasks