General

  • Target

    0050bd31fc6066a6ad515e7caa3d5e945e645e664890f4be0dc0d09c5675b551.exe

  • Size

    312KB

  • Sample

    241117-q6nqjswjdk

  • MD5

    62e36023fbed6d07d2fa15bfee18eb5b

  • SHA1

    cea58a276aaab91e74eabf1ea16da3e16a1e8b3c

  • SHA256

    0050bd31fc6066a6ad515e7caa3d5e945e645e664890f4be0dc0d09c5675b551

  • SHA512

    117f37b48dfe99ec51c37b1cdb2b46816fb4902a79271e9be230f60befa275987ccd9dcf66c279a8f17d7cba5a1d65a6f91de10a049966a4b7a342fb6401e763

  • SSDEEP

    3072:IPScCAjkfIbUTHN2Pp9wFsQGlqfbowvuH/kt8X1Ad4PpnVB9hV5fICM0z0mNaf+d:8QwXcFkeowvG8t9d4h7nfI4z/xB0KH

Malware Config

Targets

    • Target

      0050bd31fc6066a6ad515e7caa3d5e945e645e664890f4be0dc0d09c5675b551.exe

    • Size

      312KB

    • MD5

      62e36023fbed6d07d2fa15bfee18eb5b

    • SHA1

      cea58a276aaab91e74eabf1ea16da3e16a1e8b3c

    • SHA256

      0050bd31fc6066a6ad515e7caa3d5e945e645e664890f4be0dc0d09c5675b551

    • SHA512

      117f37b48dfe99ec51c37b1cdb2b46816fb4902a79271e9be230f60befa275987ccd9dcf66c279a8f17d7cba5a1d65a6f91de10a049966a4b7a342fb6401e763

    • SSDEEP

      3072:IPScCAjkfIbUTHN2Pp9wFsQGlqfbowvuH/kt8X1Ad4PpnVB9hV5fICM0z0mNaf+d:8QwXcFkeowvG8t9d4h7nfI4z/xB0KH

    • Detects Healer an antivirus disabler dropper

    • Healer

      Healer an antivirus disabler dropper.

    • Healer family

    • Modifies Windows Defender Real-time Protection settings

    • Windows security modification

MITRE ATT&CK Enterprise v15

Tasks