gcleaner | 882c26437f13e0ac3047c698101b57d9028e4df372715ed0c037d64318235fea | Triage

Sharing

General

Target

d8af9112cb979e7cf803a1130dc21ee5.exe
Size

266KB
Sample

230411-k7xf7abe93
MD5

d8af9112cb979e7cf803a1130dc21ee5
SHA1

5442002b1356a058c8df09ae9a3fe64d5a697e2b
SHA256

882c26437f13e0ac3047c698101b57d9028e4df372715ed0c037d64318235fea
SHA512

c8d16219800e3df028f7449f3fdbc9bf830d3952951f37cabcc11c4695ef7ce095c3a756cc758adc3a168beb07ecf355049d8f9df905360226ea30b4269e5307
SSDEEP

6144:228WoGDd4/d3RP4rZh82exQ4m14jcu7z9ykO:U18sYrXia43IQByk

Score

10^/10

gcleaner loader

Malware Config

Extracted

Family

gcleaner

C2

45.12.253.56

45.12.253.72

45.12.253.98

45.12.253.75

Targets

- Target
  
  d8af9112cb979e7cf803a1130dc21ee5.exe
- Size
  
  266KB
- MD5
  
  d8af9112cb979e7cf803a1130dc21ee5
- SHA1
  
  5442002b1356a058c8df09ae9a3fe64d5a697e2b
- SHA256
  
  882c26437f13e0ac3047c698101b57d9028e4df372715ed0c037d64318235fea
- SHA512
  
  c8d16219800e3df028f7449f3fdbc9bf830d3952951f37cabcc11c4695ef7ce095c3a756cc758adc3a168beb07ecf355049d8f9df905360226ea30b4269e5307
- SSDEEP
  
  6144:228WoGDd4/d3RP4rZh82exQ4m14jcu7z9ykO:U18sYrXia43IQByk
Score

10^/10

gcleaner loader
- GCleaner
  GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.
  loader gcleaner
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2