gcleaner | 73d52a0e2acc955318c84f67c8f83b04c0e0455031d11e29fabbfd52b09d3771 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c223efc26bfd62aa29bf37b1fcc0387d.exe
Size

282KB
Sample

230418-nq1ztsbb47
MD5

c223efc26bfd62aa29bf37b1fcc0387d
SHA1

f988d6db86c22f7f9f72b727502ff1b153f0ea71
SHA256

73d52a0e2acc955318c84f67c8f83b04c0e0455031d11e29fabbfd52b09d3771
SHA512

285cca6f4a0bd5701eb9c242c98d0f1abf8db349011aaf97c2c2d8ae18d81e4e86a42a79616be4554801b341e40e1b9148dbd4c6a171fa888d7bf23323ab98c0
SSDEEP

6144:AiIpKo4yIWnpHov6O84iQhm+OU1I6zOWA7iMFv:AxpKlSnphO8JQM6zI7z

Score

10^/10

gcleaner loader

Malware Config

Extracted

Family

gcleaner

C2

45.12.253.56

45.12.253.72

45.12.253.98

45.12.253.75

Targets

- Target
  
  c223efc26bfd62aa29bf37b1fcc0387d.exe
- Size
  
  282KB
- MD5
  
  c223efc26bfd62aa29bf37b1fcc0387d
- SHA1
  
  f988d6db86c22f7f9f72b727502ff1b153f0ea71
- SHA256
  
  73d52a0e2acc955318c84f67c8f83b04c0e0455031d11e29fabbfd52b09d3771
- SHA512
  
  285cca6f4a0bd5701eb9c242c98d0f1abf8db349011aaf97c2c2d8ae18d81e4e86a42a79616be4554801b341e40e1b9148dbd4c6a171fa888d7bf23323ab98c0
- SSDEEP
  
  6144:AiIpKo4yIWnpHov6O84iQhm+OU1I6zOWA7iMFv:AxpKlSnphO8JQM6zI7z
Score

10^/10

gcleaner loader
- GCleaner
  GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.
  loader gcleaner
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2