gcleaner | 209fdb1e0d3624b400c9c6d348c05a92062c8cb771d240f1d490a7b1a631b80d | Triage

Sharing

General

Target

cbc42d76c05b9e89b481b7bcbaf259d1.exe
Size

280KB
Sample

230405-n86b9sge5t
MD5

cbc42d76c05b9e89b481b7bcbaf259d1
SHA1

8d1990ca06305c8a4bd206ffd2b1ca75e11b68f7
SHA256

209fdb1e0d3624b400c9c6d348c05a92062c8cb771d240f1d490a7b1a631b80d
SHA512

34f331d9abc5c4df286ecdde9f09447e82344f35efc3a8be2d802805a909ca92a6721f44d5249c631b1d67fcbf093e2f4b71907a33bea9d12ba2e5dc086e50c6
SSDEEP

6144:3c7qjHl2c2Dq4CEKf2wxHe9ExV9uTeNxT:3YqRjVx+EYEgi

Score

10^/10

gcleaner loader

Malware Config

Extracted

Family

gcleaner

C2

45.12.253.56

45.12.253.72

45.12.253.98

45.12.253.75

Targets

- Target
  
  cbc42d76c05b9e89b481b7bcbaf259d1.exe
- Size
  
  280KB
- MD5
  
  cbc42d76c05b9e89b481b7bcbaf259d1
- SHA1
  
  8d1990ca06305c8a4bd206ffd2b1ca75e11b68f7
- SHA256
  
  209fdb1e0d3624b400c9c6d348c05a92062c8cb771d240f1d490a7b1a631b80d
- SHA512
  
  34f331d9abc5c4df286ecdde9f09447e82344f35efc3a8be2d802805a909ca92a6721f44d5249c631b1d67fcbf093e2f4b71907a33bea9d12ba2e5dc086e50c6
- SSDEEP
  
  6144:3c7qjHl2c2Dq4CEKf2wxHe9ExV9uTeNxT:3YqRjVx+EYEgi
Score

10^/10

gcleaner loader
- GCleaner
  GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.
  loader gcleaner
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2