General

  • Target

    c8e20ed78ac50143499e7e5bc9d50a7d0832b1677419e97ebfe04ae63a8af80a.exe

  • Size

    289KB

  • Sample

    241113-rktv4swqgr

  • MD5

    25629bd00fcf9b68036c7c6ef4cbf68a

  • SHA1

    3abc328443bc328d93bd5ae991e27564a34cd058

  • SHA256

    c8e20ed78ac50143499e7e5bc9d50a7d0832b1677419e97ebfe04ae63a8af80a

  • SHA512

    cd737a1c650f81de48ce5a2baaeb578466bbbd9e7a0d2ec6c65b45b3e2d5d8ad0e5ec928b8ccd31a361f066e3095651fb2e2140f8e6ee9497af62cf9f79d2d1a

  • SSDEEP

    6144:79cTdzmzpNQSCeNQcGXjvwTyloijPxEql:79cBzmzpKSCeNQJa+Pxt

Malware Config

Targets

    • Target

      c8e20ed78ac50143499e7e5bc9d50a7d0832b1677419e97ebfe04ae63a8af80a.exe

    • Size

      289KB

    • MD5

      25629bd00fcf9b68036c7c6ef4cbf68a

    • SHA1

      3abc328443bc328d93bd5ae991e27564a34cd058

    • SHA256

      c8e20ed78ac50143499e7e5bc9d50a7d0832b1677419e97ebfe04ae63a8af80a

    • SHA512

      cd737a1c650f81de48ce5a2baaeb578466bbbd9e7a0d2ec6c65b45b3e2d5d8ad0e5ec928b8ccd31a361f066e3095651fb2e2140f8e6ee9497af62cf9f79d2d1a

    • SSDEEP

      6144:79cTdzmzpNQSCeNQcGXjvwTyloijPxEql:79cBzmzpKSCeNQJa+Pxt

    • Detects Healer an antivirus disabler dropper

    • Healer

      Healer an antivirus disabler dropper.

    • Healer family

    • Modifies Windows Defender Real-time Protection settings

    • Windows security modification

MITRE ATT&CK Enterprise v15

Tasks