Overview

overview

10

Static

static

1

f21efcb5c2...5f.exe

windows7-x64

10

f21efcb5c2...5f.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f21efcb5c2715aafd457478084db045f.exe

  • Size

    268KB

  • Sample

    230411-xhgqnaga7z

  • MD5

    f21efcb5c2715aafd457478084db045f

  • SHA1

    b0fb21af51ebff998642d30c1f6e02fce570d61a

  • SHA256

    cc68d405191b4c0ab00b08fd6d113e8868d62a00dc0a885210009d23785969cf

  • SHA512

    bea2a02f0206d01cf3e29a69611b16a0797116e0e82f470741d3670d534fddcd584b2d94903d41dba496fa9181b30f892b8b59299b36e62432b4f96176147b60

  • SSDEEP

    6144:gpThQkai/QNQSiDPf3YqB6RQu9OjYgn1Skhg7yESVESB:gpThQkai/QNQSirf3vByQuexnNtV7B

Score
10/10
gcleanerloader

Malware Config

Extracted

Family

gcleaner

C2

45.12.253.56

45.12.253.72

45.12.253.98

45.12.253.75

Targets

    • Target

      f21efcb5c2715aafd457478084db045f.exe

    • Size

      268KB

    • MD5

      f21efcb5c2715aafd457478084db045f

    • SHA1

      b0fb21af51ebff998642d30c1f6e02fce570d61a

    • SHA256

      cc68d405191b4c0ab00b08fd6d113e8868d62a00dc0a885210009d23785969cf

    • SHA512

      bea2a02f0206d01cf3e29a69611b16a0797116e0e82f470741d3670d534fddcd584b2d94903d41dba496fa9181b30f892b8b59299b36e62432b4f96176147b60

    • SSDEEP

      6144:gpThQkai/QNQSiDPf3YqB6RQu9OjYgn1Skhg7yESVESB:gpThQkai/QNQSirf3vByQuexnNtV7B

    Score
    10/10
    gcleanerloader

    • GCleaner

      GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

      loadergcleaner

    • Downloads MZ/PE file

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks