gcleaner | c5d06fade8619c73307daee19448c563089860df2eb5089a8d2a657db0eb08d4 | Triage

Submit
Reports

Overview

overview

Static

static

c5d06fade8...d4.exe

windows7-x64

c5d06fade8...d4.exe

windows10-2004-x64

Sharing

General

Target

c5d06fade8619c73307daee19448c563089860df2eb5089a8d2a657db0eb08d4
Size

235KB
Sample

230129-z3tl3aee5y
MD5

937e81272e0ab7d2d0eaad884b6ec4d3
SHA1

8de874a12e2bd7173d88b1fb0197466476f6c409
SHA256

c5d06fade8619c73307daee19448c563089860df2eb5089a8d2a657db0eb08d4
SHA512

849cebffe47349d0535345d38574de39c9c833dbdd0e3e2c929bc221e676d8ecd891e2b414a0ff6e8863acb1af82706a484d0f0755afbec5117a172870f9493e
SSDEEP

6144:x1x/wC3MeSieMVchyPaa5FxwwudbZDLr:x1O1eSSbiAFxwFdB/

Score

10^/10

gcleaner onlylogger loader

Static task

static1

Behavioral task

behavioral1

Sample

c5d06fade8619c73307daee19448c563089860df2eb5089a8d2a657db0eb08d4.exe

Resource

win7-20221111-en

gcleaner onlylogger loader

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

c5d06fade8619c73307daee19448c563089860df2eb5089a8d2a657db0eb08d4.exe

Resource

win10v2004-20220812-en

gcleaner onlylogger loader

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

gcleaner

C2

gcleaner.pro

Targets

- Target
  
  c5d06fade8619c73307daee19448c563089860df2eb5089a8d2a657db0eb08d4
- Size
  
  235KB
- MD5
  
  937e81272e0ab7d2d0eaad884b6ec4d3
- SHA1
  
  8de874a12e2bd7173d88b1fb0197466476f6c409
- SHA256
  
  c5d06fade8619c73307daee19448c563089860df2eb5089a8d2a657db0eb08d4
- SHA512
  
  849cebffe47349d0535345d38574de39c9c833dbdd0e3e2c929bc221e676d8ecd891e2b414a0ff6e8863acb1af82706a484d0f0755afbec5117a172870f9493e
- SSDEEP
  
  6144:x1x/wC3MeSieMVchyPaa5FxwwudbZDLr:x1O1eSSbiAFxwFdB/
Score

10^/10

gcleaner onlylogger loader
- GCleaner
  GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.
  loader gcleaner
- OnlyLogger
  A tiny loader that uses IPLogger to get its payload.
  loader onlylogger
- OnlyLogger payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

gcleaneronlyloggerloader

behavioral2

gcleaneronlyloggerloader

© 2018-2024

Terms | Privacy