gcleaner | 3a2d68aa79103015eb0bcb538e90d5713d0b5fa59974938263d11f4262932c00 | Triage

Sharing

General

Target

7f1d43e14d007e3ed12654b288bc740c.exe
Size

432KB
Sample

230413-ddvxyagg95
MD5

7f1d43e14d007e3ed12654b288bc740c
SHA1

45d61405ccdf7779b7d887d6e5bfdaed601e99b8
SHA256

3a2d68aa79103015eb0bcb538e90d5713d0b5fa59974938263d11f4262932c00
SHA512

3b9a0c5388284050f0bcc5b2ec544120669e4af08e0ecdc608928c3a726e89759186b8c8436e5ba2b4fa3fafe9bd384c051945eaf757dce606a3bc78535f0789
SSDEEP

6144:kkRmGj3blrr18ogycmU2D65vQhrr/L/W+YseGLWSV+khCV+4:kkX71r183yc5sbeWeGLQ6CVH

Score

10^/10

gcleaner loader

Malware Config

Extracted

Family

gcleaner

C2

45.12.253.56

45.12.253.72

45.12.253.98

45.12.253.75

Targets

- Target
  
  7f1d43e14d007e3ed12654b288bc740c.exe
- Size
  
  432KB
- MD5
  
  7f1d43e14d007e3ed12654b288bc740c
- SHA1
  
  45d61405ccdf7779b7d887d6e5bfdaed601e99b8
- SHA256
  
  3a2d68aa79103015eb0bcb538e90d5713d0b5fa59974938263d11f4262932c00
- SHA512
  
  3b9a0c5388284050f0bcc5b2ec544120669e4af08e0ecdc608928c3a726e89759186b8c8436e5ba2b4fa3fafe9bd384c051945eaf757dce606a3bc78535f0789
- SSDEEP
  
  6144:kkRmGj3blrr18ogycmU2D65vQhrr/L/W+YseGLWSV+khCV+4:kkX71r183yc5sbeWeGLQ6CVH
Score

10^/10

gcleaner loader
- GCleaner
  GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.
  loader gcleaner
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2