Overview

overview

10

Static

static

1

8d1e8eeb17...a9.exe

windows7-x64

10

8d1e8eeb17...a9.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8d1e8eeb17c8e574ba2664946feee2a9.exe

  • Size

    339KB

  • Sample

    230406-mgh7zsee4x

  • MD5

    8d1e8eeb17c8e574ba2664946feee2a9

  • SHA1

    b9e1c453b4bd07752b1b522d8e2d7e81b54cb5b9

  • SHA256

    8ec576ddd5ac76cdc35aeeba67ee062c9ed33eafbbbf97a25a65d4076e99591b

  • SHA512

    453e00f4c5e5e6c07eb028efa20a56b4dc61b49f35d401d23d1f55ce37750874aa53a076c84d026b56c8957c153e47b256216ef902be689ad87873e49d9cf49b

  • SSDEEP

    6144:0D+8a6cEaL3kNUMfITkRpZSEWYPMIukcSWd+1:0D+8ahZL3kNUU1SaTcSH

Score
10/10
gcleanerloader

Malware Config

Extracted

Family

gcleaner

C2

45.12.253.56

45.12.253.72

45.12.253.98

45.12.253.75

Targets

    • Target

      8d1e8eeb17c8e574ba2664946feee2a9.exe

    • Size

      339KB

    • MD5

      8d1e8eeb17c8e574ba2664946feee2a9

    • SHA1

      b9e1c453b4bd07752b1b522d8e2d7e81b54cb5b9

    • SHA256

      8ec576ddd5ac76cdc35aeeba67ee062c9ed33eafbbbf97a25a65d4076e99591b

    • SHA512

      453e00f4c5e5e6c07eb028efa20a56b4dc61b49f35d401d23d1f55ce37750874aa53a076c84d026b56c8957c153e47b256216ef902be689ad87873e49d9cf49b

    • SSDEEP

      6144:0D+8a6cEaL3kNUMfITkRpZSEWYPMIukcSWd+1:0D+8ahZL3kNUU1SaTcSH

    Score
    10/10
    gcleanerloader

    • GCleaner

      GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

      loadergcleaner

    • Downloads MZ/PE file

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks