General

  • Target

    d0cfc76ca0a5e771577608ec6a2ac9e8e2e071381ede4c8c19f89b97ae1a436a

  • Size

    403KB

  • Sample

    241117-lebjpawlcv

  • MD5

    68f39972ccc4d166739cc4022fc99a84

  • SHA1

    91625de5472a449a1cef4c8705c1793971f3c712

  • SHA256

    d0cfc76ca0a5e771577608ec6a2ac9e8e2e071381ede4c8c19f89b97ae1a436a

  • SHA512

    f61323e8567cd877e4bcec28888ac81260696a341c2003c5e3b1e37537b0437e1a65945b01635d2690d21342c84b6ef800e82d1ee15ff07074332b807aebdf0b

  • SSDEEP

    6144:y7w/PZV2ercTNwDTnfXbnPymRg85RuP6uKGdgXWdVXnKZIv:y7iZEeSNaTnPzPs85RGndVXKKv

Malware Config

Targets

    • Target

      d0cfc76ca0a5e771577608ec6a2ac9e8e2e071381ede4c8c19f89b97ae1a436a

    • Size

      403KB

    • MD5

      68f39972ccc4d166739cc4022fc99a84

    • SHA1

      91625de5472a449a1cef4c8705c1793971f3c712

    • SHA256

      d0cfc76ca0a5e771577608ec6a2ac9e8e2e071381ede4c8c19f89b97ae1a436a

    • SHA512

      f61323e8567cd877e4bcec28888ac81260696a341c2003c5e3b1e37537b0437e1a65945b01635d2690d21342c84b6ef800e82d1ee15ff07074332b807aebdf0b

    • SSDEEP

      6144:y7w/PZV2ercTNwDTnfXbnPymRg85RuP6uKGdgXWdVXnKZIv:y7iZEeSNaTnPzPs85RGndVXKKv

    • Detects Healer an antivirus disabler dropper

    • Healer

      Healer an antivirus disabler dropper.

    • Healer family

    • Modifies Windows Defender Real-time Protection settings

    • Windows security modification

MITRE ATT&CK Enterprise v15

Tasks