healer | f22c716fa135bcbc86ab9f900d422858c73d1f29f5f620e5624ef308cb717e3b | Triage

Submit
Reports

Overview

overview

Static

static

3

f22c716fa1...bN.exe

windows7-x64

f22c716fa1...bN.exe

windows10-2004-x64

Sharing

General

Target

f22c716fa135bcbc86ab9f900d422858c73d1f29f5f620e5624ef308cb717e3bN.exe
Size

403KB
Sample

241120-e4frda1hnk
MD5

8c8cd6b7e8bdbb6d1b46f4d0c5636a40
SHA1

b42270ee751fd27eb54a772c92511e040311ce02
SHA256

f22c716fa135bcbc86ab9f900d422858c73d1f29f5f620e5624ef308cb717e3b
SHA512

d03cae51c43b607d5fc9e9106ec76927f17d7eb901829a5f1f20d200867342e12129731263351dd55ffad35c8a5c9285e5d828965846ce59e855bac6455c6a14
SSDEEP

6144:/H8BZ3DqSbyxFdFhpbHTPGwN+kyR+u6G/aUsAdEAkOLK/Iv:/H8BNu2yxFdFhpTTe3uuQDAeB0Lv

Score

10^/10

healer discovery dropper evasion trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f22c716fa135bcbc86ab9f900d422858c73d1f29f5f620e5624ef308cb717e3bN.exe

Resource

win7-20240903-en

healer discovery dropper evasion trojan

windows7-x64

8 signatures

120 seconds

Behavioral task

behavioral2

Sample

f22c716fa135bcbc86ab9f900d422858c73d1f29f5f620e5624ef308cb717e3bN.exe

Resource

win10v2004-20241007-en

healer discovery dropper evasion trojan

windows10-2004-x64

9 signatures

120 seconds

Malware Config

Targets

- Target
  
  f22c716fa135bcbc86ab9f900d422858c73d1f29f5f620e5624ef308cb717e3bN.exe
- Size
  
  403KB
- MD5
  
  8c8cd6b7e8bdbb6d1b46f4d0c5636a40
- SHA1
  
  b42270ee751fd27eb54a772c92511e040311ce02
- SHA256
  
  f22c716fa135bcbc86ab9f900d422858c73d1f29f5f620e5624ef308cb717e3b
- SHA512
  
  d03cae51c43b607d5fc9e9106ec76927f17d7eb901829a5f1f20d200867342e12129731263351dd55ffad35c8a5c9285e5d828965846ce59e855bac6455c6a14
- SSDEEP
  
  6144:/H8BZ3DqSbyxFdFhpbHTPGwN+kyR+u6G/aUsAdEAkOLK/Iv:/H8BNu2yxFdFhpTTe3uuQDAeB0Lv
Score

10^/10

healer discovery dropper evasion trojan
- Detects Healer an antivirus disabler dropper
- Healer
  Healer an antivirus disabler dropper.
  dropper healer
- Healer family
  healer
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Windows security modification
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

healerdiscoverydropperevasiontrojan

behavioral2

healerdiscoverydropperevasiontrojan

© 2018-2025

Terms | Privacy