General

  • Target

    8ff96a5ba2bfb761f2a15c0e51e6238c4ccdfeb4bd7651fda995be19def78169N.exe

  • Size

    264KB

  • Sample

    241113-v9theszker

  • MD5

    e0ce71d42b1fd8ac21b49420be24f0a0

  • SHA1

    1a12c5f7411d4ae9887011942c18af622b61da46

  • SHA256

    8ff96a5ba2bfb761f2a15c0e51e6238c4ccdfeb4bd7651fda995be19def78169

  • SHA512

    2f0a186e24203b6e7bcc95f22b699db373f70bc24b4858a4357241a7d5a56593848730debea93d07c3c494154cfab982d70ae51d2a873231a1ca99ec4164b589

  • SSDEEP

    6144:O4FSZG68B/AE/N7BN0Hy0RhpqVGN1O9T:OESs62AEFdKrPq0N6

Malware Config

Targets

    • Target

      8ff96a5ba2bfb761f2a15c0e51e6238c4ccdfeb4bd7651fda995be19def78169N.exe

    • Size

      264KB

    • MD5

      e0ce71d42b1fd8ac21b49420be24f0a0

    • SHA1

      1a12c5f7411d4ae9887011942c18af622b61da46

    • SHA256

      8ff96a5ba2bfb761f2a15c0e51e6238c4ccdfeb4bd7651fda995be19def78169

    • SHA512

      2f0a186e24203b6e7bcc95f22b699db373f70bc24b4858a4357241a7d5a56593848730debea93d07c3c494154cfab982d70ae51d2a873231a1ca99ec4164b589

    • SSDEEP

      6144:O4FSZG68B/AE/N7BN0Hy0RhpqVGN1O9T:OESs62AEFdKrPq0N6

    • Detects Healer an antivirus disabler dropper

    • Healer

      Healer an antivirus disabler dropper.

    • Healer family

    • Modifies Windows Defender Real-time Protection settings

    • Windows security modification

MITRE ATT&CK Enterprise v15

Tasks