General

  • Target

    1e3c1cc18dbe5fec640ab1bffa43853fd3bffaff33e907ebbda438e229c7ef66N.exe

  • Size

    291KB

  • Sample

    241117-qzc1ga1fjk

  • MD5

    19de3f6506cabcbc26fc76e1da9c45b0

  • SHA1

    65ab5496b998fc7041bfad4ea3c133dcc3b03871

  • SHA256

    1e3c1cc18dbe5fec640ab1bffa43853fd3bffaff33e907ebbda438e229c7ef66

  • SHA512

    d306d9aad5079254ec966798b3e0cabf79dad3879fcc838df3cbc9356c953420ec97cb5cf5a3ddadde1fd0ccce7ee6ea278730b424fb0b7e8f5a648b0fa9d930

  • SSDEEP

    6144:rOyx5TLxuSKjPBByDp65hLNMGHMaCPDxPfpmaw3:iiT9uSK9ByN65hLuGsL2

Malware Config

Targets

    • Target

      1e3c1cc18dbe5fec640ab1bffa43853fd3bffaff33e907ebbda438e229c7ef66N.exe

    • Size

      291KB

    • MD5

      19de3f6506cabcbc26fc76e1da9c45b0

    • SHA1

      65ab5496b998fc7041bfad4ea3c133dcc3b03871

    • SHA256

      1e3c1cc18dbe5fec640ab1bffa43853fd3bffaff33e907ebbda438e229c7ef66

    • SHA512

      d306d9aad5079254ec966798b3e0cabf79dad3879fcc838df3cbc9356c953420ec97cb5cf5a3ddadde1fd0ccce7ee6ea278730b424fb0b7e8f5a648b0fa9d930

    • SSDEEP

      6144:rOyx5TLxuSKjPBByDp65hLNMGHMaCPDxPfpmaw3:iiT9uSK9ByN65hLuGsL2

    • Detects Healer an antivirus disabler dropper

    • Healer

      Healer an antivirus disabler dropper.

    • Healer family

    • Modifies Windows Defender Real-time Protection settings

    • Windows security modification

MITRE ATT&CK Enterprise v15

Tasks