Overview

overview

10

Static

static

1

e5af7df286...b6.exe

windows7-x64

10

e5af7df286...b6.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    00f4a1f42c4f14b3abaac3aba9f3e96a.bin

  • Size

    223KB

  • Sample

    230402-bcmttsfb3y

  • MD5

    00fa95cdfc653932bcdff42f6279af8a

  • SHA1

    2125f5b821bfeaf3481a599dc9f43f9015bc45ac

  • SHA256

    af911c18e8db38c977b5c4aa0670dead6974fc2e39ef6203d127d76de607d2a8

  • SHA512

    75bfe8b155d983f6e4f59047288d9fc85eeed70cb026e59e09331e87a2c852638a6f0de7094596e278ca4b08d4e1a4674135df3828ec45bd3278c753d6cb2a2f

  • SSDEEP

    6144:7IRc+aJkrEbb8VdjaGTrw/sDeYGJxmnM1mK47EcL+:8Rc+amw38Hjaayj/meg+

Score
10/10
gcleanerloader

Malware Config

Extracted

Family

gcleaner

C2

45.12.253.56

45.12.253.72

45.12.253.98

45.12.253.75

Targets

    • Target

      e5af7df2863f9e16acab231850b56fb62421fb7f4e25a6fb1d04a25efd302db6.exe

    • Size

      286KB

    • MD5

      00f4a1f42c4f14b3abaac3aba9f3e96a

    • SHA1

      d03c6f1fdd55baf30ef75b388619182e48f0b6f6

    • SHA256

      e5af7df2863f9e16acab231850b56fb62421fb7f4e25a6fb1d04a25efd302db6

    • SHA512

      325e08bba4a5cc0e3100bba6e70e9c192d678b5043084aa85945b62d805623936d3eaf5562c7c19a69ccbb160fd15f43ce21ffd33b15a34289f37ba2fab3ea40

    • SSDEEP

      6144:SEqvWowyGiLdzcDWDYjR6q0u7jij2uBw6aBUqMrGQPA:YPwWdGR6ejij2uyn2

    Score
    10/10
    gcleanerloader

    • GCleaner

      GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

      loadergcleaner

    • Downloads MZ/PE file

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks