Overview

overview

10

Static

static

1

16a9bd6849...a2.exe

windows7-x64

10

16a9bd6849...a2.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    16a9bd684974d09703804d773e0252a2

  • Size

    433KB

  • Sample

    230412-yhg7vsef39

  • MD5

    16a9bd684974d09703804d773e0252a2

  • SHA1

    6b5d36a88c0a98e0d211f99ef55ca6eb40e9dfb0

  • SHA256

    faeffb395139b51e0c53f62d7103bc8cdda88fcb719b51a83d81efd627a9aca6

  • SHA512

    b8e3feee0db24650a489a4df908ad48c53966da160b4e99124998afced24647793d1ea6fe7a193df4d9673b690eab906347f78852d8f84ef18fbe2b9b4ce0898

  • SSDEEP

    6144:w5TWB/lIhQsQ8BO57QNG4C1FS0WV98NDS96sVo8tGUKuSDCV+E:w5OtvsQ8E576CrrWH4qw5CVr

Score
10/10
gcleanerloader

Malware Config

Extracted

Family

gcleaner

C2

45.12.253.56

45.12.253.72

45.12.253.98

45.12.253.75

Targets

    • Target

      16a9bd684974d09703804d773e0252a2

    • Size

      433KB

    • MD5

      16a9bd684974d09703804d773e0252a2

    • SHA1

      6b5d36a88c0a98e0d211f99ef55ca6eb40e9dfb0

    • SHA256

      faeffb395139b51e0c53f62d7103bc8cdda88fcb719b51a83d81efd627a9aca6

    • SHA512

      b8e3feee0db24650a489a4df908ad48c53966da160b4e99124998afced24647793d1ea6fe7a193df4d9673b690eab906347f78852d8f84ef18fbe2b9b4ce0898

    • SSDEEP

      6144:w5TWB/lIhQsQ8BO57QNG4C1FS0WV98NDS96sVo8tGUKuSDCV+E:w5OtvsQ8E576CrrWH4qw5CVr

    Score
    10/10
    gcleanerloader

    • GCleaner

      GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

      loadergcleaner

    • Downloads MZ/PE file

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks