General

  • Target

    a19a1038d991641634169d6c50f0a4e083b27afc95289f3ee2d3630f25035cc3

  • Size

    254KB

  • Sample

    241117-jwpfrsvjdy

  • MD5

    92f9a3267aff9057e6d7f946f2adbbc1

  • SHA1

    478167cada9d13f9aa1fc745151175f707a4aac0

  • SHA256

    a19a1038d991641634169d6c50f0a4e083b27afc95289f3ee2d3630f25035cc3

  • SHA512

    018b20c1e67761b096976b93c96a51ddab807f68b0d78be76405416311e656f0c389ed63d72337b16de6c49f59c9e3ded10a98dcfb4083072a6828004a346a30

  • SSDEEP

    6144:MYU7SpzjyfM8TFXUUy8c451hvY34dipm8Jb9PgLUTi:iupzefM85XU6c45HY34R83P

Malware Config

Targets

    • Target

      a19a1038d991641634169d6c50f0a4e083b27afc95289f3ee2d3630f25035cc3

    • Size

      254KB

    • MD5

      92f9a3267aff9057e6d7f946f2adbbc1

    • SHA1

      478167cada9d13f9aa1fc745151175f707a4aac0

    • SHA256

      a19a1038d991641634169d6c50f0a4e083b27afc95289f3ee2d3630f25035cc3

    • SHA512

      018b20c1e67761b096976b93c96a51ddab807f68b0d78be76405416311e656f0c389ed63d72337b16de6c49f59c9e3ded10a98dcfb4083072a6828004a346a30

    • SSDEEP

      6144:MYU7SpzjyfM8TFXUUy8c451hvY34dipm8Jb9PgLUTi:iupzefM85XU6c45HY34R83P

    • Detects Healer an antivirus disabler dropper

    • Healer

      Healer an antivirus disabler dropper.

    • Healer family

    • Modifies Windows Defender Real-time Protection settings

    • Windows security modification

MITRE ATT&CK Enterprise v15

Tasks