gcleaner | a6bbd4f04b719aea0a53c41904b2e439bffbf0b56608a528ee674a586ab7aaa4 | Triage

Sharing

General

Target

f21efcb5c2715aafd457478084db045f.bin
Size

214KB
Sample

230413-clqgraaa9x
MD5

147e8f30bf8d9279e26d3a17e68e907c
SHA1

f10522ed894f66dc10dea2b015ea7de3c27eab41
SHA256

a6bbd4f04b719aea0a53c41904b2e439bffbf0b56608a528ee674a586ab7aaa4
SHA512

398d93bc61232655a54fdc5ba62a3f820a7018fe0dda48ec2389edb74ce5dc9854a05f4e7310aed86ff50d9e573bd5656b1d0065b3d08fe6cad9f725b5b9247c
SSDEEP

3072:W2o9yt9DCtuQCo/9krCnVyUNE29GiHX1lfsqrExaq4tqKXCBrmcPE0WvCCw83v3N:W1w9DgurrNUNRGi3Mxa3CFpUcsvl

Score

10^/10

gcleaner loader

Malware Config

Extracted

Family

gcleaner

C2

45.12.253.56

45.12.253.72

45.12.253.98

45.12.253.75

Targets

- Target
  
  cc68d405191b4c0ab00b08fd6d113e8868d62a00dc0a885210009d23785969cf.exe
- Size
  
  268KB
- MD5
  
  f21efcb5c2715aafd457478084db045f
- SHA1
  
  b0fb21af51ebff998642d30c1f6e02fce570d61a
- SHA256
  
  cc68d405191b4c0ab00b08fd6d113e8868d62a00dc0a885210009d23785969cf
- SHA512
  
  bea2a02f0206d01cf3e29a69611b16a0797116e0e82f470741d3670d534fddcd584b2d94903d41dba496fa9181b30f892b8b59299b36e62432b4f96176147b60
- SSDEEP
  
  6144:gpThQkai/QNQSiDPf3YqB6RQu9OjYgn1Skhg7yESVESB:gpThQkai/QNQSirf3vByQuexnNtV7B
Score

10^/10

gcleaner loader
- GCleaner
  GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.
  loader gcleaner
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2