General

  • Target

    d4d37adf732ce416b662345eacff63f1f242b6b2ad890b4ac785e31370f9c64a

  • Size

    404KB

  • Sample

    241117-lj277swmbw

  • MD5

    0f99c35d07d3d57f45a6ebc8f0b17390

  • SHA1

    7f187862677a49c1704d451289aeeff3103b880e

  • SHA256

    d4d37adf732ce416b662345eacff63f1f242b6b2ad890b4ac785e31370f9c64a

  • SHA512

    5946774f760c74ca166a9d2d31dcdc6da298a29dbea125be6c69a7e771f77efbc2f903af3a651d02dff36324700397ab9ac2a9e102071c87dddbba61c449b199

  • SSDEEP

    6144:9n+4KrnYUfcUFGlQG9vdlK9xoHxYzcrVQnElGmv6aa3JDeURFwOIv:9n0rYjUklt9vyjCxYTnp/RGBv

Malware Config

Targets

    • Target

      d4d37adf732ce416b662345eacff63f1f242b6b2ad890b4ac785e31370f9c64a

    • Size

      404KB

    • MD5

      0f99c35d07d3d57f45a6ebc8f0b17390

    • SHA1

      7f187862677a49c1704d451289aeeff3103b880e

    • SHA256

      d4d37adf732ce416b662345eacff63f1f242b6b2ad890b4ac785e31370f9c64a

    • SHA512

      5946774f760c74ca166a9d2d31dcdc6da298a29dbea125be6c69a7e771f77efbc2f903af3a651d02dff36324700397ab9ac2a9e102071c87dddbba61c449b199

    • SSDEEP

      6144:9n+4KrnYUfcUFGlQG9vdlK9xoHxYzcrVQnElGmv6aa3JDeURFwOIv:9n0rYjUklt9vyjCxYTnp/RGBv

    • Detects Healer an antivirus disabler dropper

    • Healer

      Healer an antivirus disabler dropper.

    • Healer family

    • Modifies Windows Defender Real-time Protection settings

    • Windows security modification

MITRE ATT&CK Enterprise v15

Tasks