gcleaner | e28224f0ffce7cf0069c41321c3b162a3c7fe53f4d6875a61ecf846bf30c1ee4 | Triage

Sharing

General

Target

f0db6756a91afe6806b4cc1584cd4004.exe
Size

431KB
Sample

230419-thcvxsbf86
MD5

f0db6756a91afe6806b4cc1584cd4004
SHA1

9dfa636260affbc861b29dc26660e79139e93fe3
SHA256

e28224f0ffce7cf0069c41321c3b162a3c7fe53f4d6875a61ecf846bf30c1ee4
SHA512

05976475713c831c5a60b194dc40cbea842820d53c2c60d18f8b3a71384e8fcb7a4efde772d64bd92c98b45df67dd65f90f69c6952a5c788bfa8bd85840c251d
SSDEEP

6144:uknlApV9Ih4cKppPHE2XldmJuYKQt95O4KIJVvAdSUOQo9zylAeLgZFEIv:ukle9egppPHEOHmAs95O0vECEEF/v

Score

10^/10

gcleaner loader

Malware Config

Extracted

Family

gcleaner

C2

45.12.253.56

45.12.253.72

45.12.253.98

45.12.253.75

Targets

- Target
  
  f0db6756a91afe6806b4cc1584cd4004.exe
- Size
  
  431KB
- MD5
  
  f0db6756a91afe6806b4cc1584cd4004
- SHA1
  
  9dfa636260affbc861b29dc26660e79139e93fe3
- SHA256
  
  e28224f0ffce7cf0069c41321c3b162a3c7fe53f4d6875a61ecf846bf30c1ee4
- SHA512
  
  05976475713c831c5a60b194dc40cbea842820d53c2c60d18f8b3a71384e8fcb7a4efde772d64bd92c98b45df67dd65f90f69c6952a5c788bfa8bd85840c251d
- SSDEEP
  
  6144:uknlApV9Ih4cKppPHE2XldmJuYKQt95O4KIJVvAdSUOQo9zylAeLgZFEIv:ukle9egppPHEOHmAs95O0vECEEF/v
Score

10^/10

gcleaner loader
- GCleaner
  GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.
  loader gcleaner
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2