gcleaner | d60e0e8b2261c2e7f926b9c3ba901bfab250d86b383833a987efcd53fe69104a | Triage

Sharing

General

Target

a778ddf54c4fb228dd1f0f532555abf4.exe
Size

341KB
Sample

230404-ss225agc33
MD5

a778ddf54c4fb228dd1f0f532555abf4
SHA1

c1c5c8e2df03f3ea7b6aba0a3eb5627442192c55
SHA256

d60e0e8b2261c2e7f926b9c3ba901bfab250d86b383833a987efcd53fe69104a
SHA512

e07bc96f8130998c6dcb114c459b636dc92b6ca46cb794c6c4d4a16964ce4f07b454a13fcd7fd852aad56ead22ae7e6e2b167e04771a1ec9e206f671b5f7439d
SSDEEP

6144:cpy/mfgx6w/n3dtOhMRxF+yjPbxMtgMVHzol3aW:cpy/mfg4w/N0+d+yjPOugT03

Score

10^/10

gcleaner loader

Malware Config

Extracted

Family

gcleaner

C2

45.12.253.56

45.12.253.72

45.12.253.98

45.12.253.75

Targets

- Target
  
  a778ddf54c4fb228dd1f0f532555abf4.exe
- Size
  
  341KB
- MD5
  
  a778ddf54c4fb228dd1f0f532555abf4
- SHA1
  
  c1c5c8e2df03f3ea7b6aba0a3eb5627442192c55
- SHA256
  
  d60e0e8b2261c2e7f926b9c3ba901bfab250d86b383833a987efcd53fe69104a
- SHA512
  
  e07bc96f8130998c6dcb114c459b636dc92b6ca46cb794c6c4d4a16964ce4f07b454a13fcd7fd852aad56ead22ae7e6e2b167e04771a1ec9e206f671b5f7439d
- SSDEEP
  
  6144:cpy/mfgx6w/n3dtOhMRxF+yjPbxMtgMVHzol3aW:cpy/mfg4w/N0+d+yjPOugT03
Score

10^/10

gcleaner loader
- GCleaner
  GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.
  loader gcleaner
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2