Overview

overview

10

Static

static

1

606acab2c3...5e.exe

windows7-x64

10

606acab2c3...5e.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    606acab2c3f915e853caa66e73128c5e.exe

  • Size

    262KB

  • Sample

    230410-m84yrsaf8t

  • MD5

    606acab2c3f915e853caa66e73128c5e

  • SHA1

    379c6c81fdd96f31f688c4aa33f61d0d7235d42a

  • SHA256

    221bcbb6f1e707ecaa125418195255611c4cdc8617c1df7b3733b4173d7ec2ed

  • SHA512

    42b065852f9f7225209604e02df0637caf5c5ba5799d4fe3bd728f795e660a5dbc371518cf4644d2cfe949aa9febce63c00ec652312efd848fa55174f55790c3

  • SSDEEP

    6144:0g4wHoniMob+GbB3lV/0lxvJ8ZzxF115eiQc:0gRH3Rbb6xvJ8XFhei9

Score
10/10
gcleanerloader

Malware Config

Extracted

Family

gcleaner

C2

45.12.253.56

45.12.253.72

45.12.253.98

45.12.253.75

Targets

    • Target

      606acab2c3f915e853caa66e73128c5e.exe

    • Size

      262KB

    • MD5

      606acab2c3f915e853caa66e73128c5e

    • SHA1

      379c6c81fdd96f31f688c4aa33f61d0d7235d42a

    • SHA256

      221bcbb6f1e707ecaa125418195255611c4cdc8617c1df7b3733b4173d7ec2ed

    • SHA512

      42b065852f9f7225209604e02df0637caf5c5ba5799d4fe3bd728f795e660a5dbc371518cf4644d2cfe949aa9febce63c00ec652312efd848fa55174f55790c3

    • SSDEEP

      6144:0g4wHoniMob+GbB3lV/0lxvJ8ZzxF115eiQc:0gRH3Rbb6xvJ8XFhei9

    Score
    10/10
    gcleanerloader

    • GCleaner

      GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

      loadergcleaner

    • Downloads MZ/PE file

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks