gcleaner | 53828b4c45798c42a15c42d20cf65a705ec534e28ec86cc5d6312afb2d0a7e9d | Triage

Submit
Reports

Overview

overview

Static

static

1

lower.exe

windows10-1703-x64

Sharing

General

Target

lower.exe
Size

439KB
Sample

230325-rjc6zafb6s
MD5

aaa7586b2e64363b85571195a01b14e9
SHA1

734ccb31e72b9cb123f78c2ada870a11759e5e12
SHA256

53828b4c45798c42a15c42d20cf65a705ec534e28ec86cc5d6312afb2d0a7e9d
SHA512

bc94a9aea0002e58360278efbffc41d9ec3b99514692a5cdfc6264335efc5a1ab1c9e8fdc24a7dfa050a889427e577abfa7add10fbc319cad04d77604ebeeee8
SSDEEP

3072:QlsbVPQBHdThnjOwNUystMRdFAq6Ujq1fFTbpqdvH3DF/q1RiJCkGKU8x8vOmbwc:qywe3UjQTb4l3xg2CxKU8x8nMeF4SwO

Score

10^/10

gcleaner loader

Static task

static1

Behavioral task

behavioral1

Sample

lower.exe

Resource

win10-20230220-it

gcleaner loader

windows10-1703-x64

6 signatures

300 seconds

Malware Config

Extracted

Family

gcleaner

C2

45.12.253.56

45.12.253.72

45.12.253.98

45.12.253.75

Targets

- Target
  
  lower.exe
- Size
  
  439KB
- MD5
  
  aaa7586b2e64363b85571195a01b14e9
- SHA1
  
  734ccb31e72b9cb123f78c2ada870a11759e5e12
- SHA256
  
  53828b4c45798c42a15c42d20cf65a705ec534e28ec86cc5d6312afb2d0a7e9d
- SHA512
  
  bc94a9aea0002e58360278efbffc41d9ec3b99514692a5cdfc6264335efc5a1ab1c9e8fdc24a7dfa050a889427e577abfa7add10fbc319cad04d77604ebeeee8
- SSDEEP
  
  3072:QlsbVPQBHdThnjOwNUystMRdFAq6Ujq1fFTbpqdvH3DF/q1RiJCkGKU8x8vOmbwc:qywe3UjQTb4l3xg2CxKU8x8nMeF4SwO
Score

10^/10

gcleaner loader
- GCleaner
  GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.
  loader gcleaner
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy