Overview

overview

10

Static

static

e0281b8910...1d.exe

windows7-x64

10

e0281b8910...1d.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e0281b8910b0ad9b66f6fc079fe15733ffc9e62a077b5d81ee7b19c883572a1d

  • Size

    235KB

  • Sample

    230129-z3sd1aee5x

  • MD5

    6482436e59beda262fd220ad9dbcf440

  • SHA1

    0777cf0193299bd1ca60d28c9c6c8ec95e9da486

  • SHA256

    e0281b8910b0ad9b66f6fc079fe15733ffc9e62a077b5d81ee7b19c883572a1d

  • SHA512

    8764d42c767e734c89769b604f00cbdbecc826547fd241b3f6b74640d1f3ecf892cf10eb4477b484d491ddb3c26009528fa0624af42b89f34e79b88784421df4

  • SSDEEP

    3072:90fc1W4Mb8zjmuYg90zH5cr21X1b3wY0zqc6wo7xkISjqHuiYvIFfjL7FT5/FP73:91kb8VY0sJyq+8zSjP0F7

Score
10/10
gcleaneronlyloggerloader

Malware Config

Extracted

Family

gcleaner

C2

gcleaner.pro

Targets

    • Target

      e0281b8910b0ad9b66f6fc079fe15733ffc9e62a077b5d81ee7b19c883572a1d

    • Size

      235KB

    • MD5

      6482436e59beda262fd220ad9dbcf440

    • SHA1

      0777cf0193299bd1ca60d28c9c6c8ec95e9da486

    • SHA256

      e0281b8910b0ad9b66f6fc079fe15733ffc9e62a077b5d81ee7b19c883572a1d

    • SHA512

      8764d42c767e734c89769b604f00cbdbecc826547fd241b3f6b74640d1f3ecf892cf10eb4477b484d491ddb3c26009528fa0624af42b89f34e79b88784421df4

    • SSDEEP

      3072:90fc1W4Mb8zjmuYg90zH5cr21X1b3wY0zqc6wo7xkISjqHuiYvIFfjL7FT5/FP73:91kb8VY0sJyq+8zSjP0F7

    Score
    10/10
    gcleaneronlyloggerloader

    • GCleaner

      GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

      loadergcleaner

    • OnlyLogger

      A tiny loader that uses IPLogger to get its payload.

      loaderonlylogger

    • OnlyLogger payload

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks