General

  • Target

    56601f4a094b7fef92dd28702bd887877b65c3711b35cef72590d47a0dababc5N.exe

  • Size

    403KB

  • Sample

    241118-llsrjsynaj

  • MD5

    ee8923bcef526b1dfba0f2b160cb4ee0

  • SHA1

    57b62c9137e60f29f99c358780926c10f6598e40

  • SHA256

    56601f4a094b7fef92dd28702bd887877b65c3711b35cef72590d47a0dababc5

  • SHA512

    1badb633a8c129143328be078bfdafc10a481148060316654de49bc2afb40370fa6c3ad609c49f9f5ec43c3100b93e642f5856461a4ea0e7c2b3b24e675ad1f6

  • SSDEEP

    6144:Ay8qwtZBNRY5F1hYHzd4H+f7eXxSILgbAfmdFP2ptIv:Ay83XLRY5F1hIzaeDAzLr6FPqev

Malware Config

Targets

    • Target

      56601f4a094b7fef92dd28702bd887877b65c3711b35cef72590d47a0dababc5N.exe

    • Size

      403KB

    • MD5

      ee8923bcef526b1dfba0f2b160cb4ee0

    • SHA1

      57b62c9137e60f29f99c358780926c10f6598e40

    • SHA256

      56601f4a094b7fef92dd28702bd887877b65c3711b35cef72590d47a0dababc5

    • SHA512

      1badb633a8c129143328be078bfdafc10a481148060316654de49bc2afb40370fa6c3ad609c49f9f5ec43c3100b93e642f5856461a4ea0e7c2b3b24e675ad1f6

    • SSDEEP

      6144:Ay8qwtZBNRY5F1hYHzd4H+f7eXxSILgbAfmdFP2ptIv:Ay83XLRY5F1hIzaeDAzLr6FPqev

    • Detects Healer an antivirus disabler dropper

    • Healer

      Healer an antivirus disabler dropper.

    • Healer family

    • Modifies Windows Defender Real-time Protection settings

    • Windows security modification

MITRE ATT&CK Enterprise v15

Tasks