healer | aed975094ff3c936ca02e9a038ab9938128bd82b93b3bc49babdd6fbeb9ccfa7 | Triage

Submit
Reports

Overview

overview

Static

static

3

aed975094f...7N.exe

windows7-x64

aed975094f...7N.exe

windows10-2004-x64

Sharing

General

Target

aed975094ff3c936ca02e9a038ab9938128bd82b93b3bc49babdd6fbeb9ccfa7N.exe
Size

404KB
Sample

241119-nl85msvfqd
MD5

99310ccabad71ecb74e5a9ca7ec3dfb0
SHA1

56f989823b48df29a717530b433785fd7d8b9ef0
SHA256

aed975094ff3c936ca02e9a038ab9938128bd82b93b3bc49babdd6fbeb9ccfa7
SHA512

d59d8b57bbf2946a866b2cc4c2725a6a0f0b506a18746ddc862c21b2a0f57a87c88bbb590b953fc242d469d65741c98cb59fc6473a3d4f921ba3ddfc8f04dff9
SSDEEP

6144:dn+4KrnYUfcUFGlQG9vdlK9xoHxYzcrVQnElGmv6aa3JDeURFwOIv:dn0rYjUklt9vyjCxYTnp/RGBv

Score

10^/10

healer discovery dropper evasion trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

aed975094ff3c936ca02e9a038ab9938128bd82b93b3bc49babdd6fbeb9ccfa7N.exe

Resource

win7-20240903-en

healer discovery dropper evasion trojan

windows7-x64

8 signatures

120 seconds

Behavioral task

behavioral2

Sample

aed975094ff3c936ca02e9a038ab9938128bd82b93b3bc49babdd6fbeb9ccfa7N.exe

Resource

win10v2004-20241007-en

healer discovery dropper evasion trojan

windows10-2004-x64

9 signatures

120 seconds

Malware Config

Targets

- Target
  
  aed975094ff3c936ca02e9a038ab9938128bd82b93b3bc49babdd6fbeb9ccfa7N.exe
- Size
  
  404KB
- MD5
  
  99310ccabad71ecb74e5a9ca7ec3dfb0
- SHA1
  
  56f989823b48df29a717530b433785fd7d8b9ef0
- SHA256
  
  aed975094ff3c936ca02e9a038ab9938128bd82b93b3bc49babdd6fbeb9ccfa7
- SHA512
  
  d59d8b57bbf2946a866b2cc4c2725a6a0f0b506a18746ddc862c21b2a0f57a87c88bbb590b953fc242d469d65741c98cb59fc6473a3d4f921ba3ddfc8f04dff9
- SSDEEP
  
  6144:dn+4KrnYUfcUFGlQG9vdlK9xoHxYzcrVQnElGmv6aa3JDeURFwOIv:dn0rYjUklt9vyjCxYTnp/RGBv
Score

10^/10

healer discovery dropper evasion trojan
- Detects Healer an antivirus disabler dropper
- Healer
  Healer an antivirus disabler dropper.
  dropper healer
- Healer family
  healer
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Windows security modification
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

healerdiscoverydropperevasiontrojan

behavioral2

healerdiscoverydropperevasiontrojan

© 2018-2025

Terms | Privacy