gcleaner | 73b29a9667fb1bb87d628cb215482cb1107d3d84da72d303e9bd718006b4546c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

329a4c6086a27e5ee80384bf056a8ba9.bin
Size

222KB
Sample

230421-bp6sgadd44
MD5

9016db950962cd78bfcb649f565e1978
SHA1

0d4727fe8919d8e4849abd1fca1381342da24781
SHA256

73b29a9667fb1bb87d628cb215482cb1107d3d84da72d303e9bd718006b4546c
SHA512

b0939656b16116dc925d6337e231a9a423471c9720df3f899b0a998968b2f69ee865099f6b9a0df8d56e424f3da8449d560ff834f24daad44ed95289369695c5
SSDEEP

6144:mvx/kHWV9jT57QkK6wqUeSokGtDE9Rqrl7HiK:SMWV9jT575ppSXt9R8RCK

Score

10^/10

gcleaner loader

Malware Config

Extracted

Family

gcleaner

C2

45.12.253.56

45.12.253.72

45.12.253.98

45.12.253.75

Targets

- Target
  
  274cb95b917882e4392516f6f78c12bf63eb96de873984d048d79a7a58823348.exe
- Size
  
  304KB
- MD5
  
  329a4c6086a27e5ee80384bf056a8ba9
- SHA1
  
  64ff63b8f53fae46ff2e909566d12a4c82534ae2
- SHA256
  
  274cb95b917882e4392516f6f78c12bf63eb96de873984d048d79a7a58823348
- SHA512
  
  16552c588ac474e2a2fd3f2ee9b1b0fa5be323431c7ea411dfcbec22b971395cab6e85a6f214bf8da58b738f9a145c176eefd51f8294fd27e3d49ecacfd14e9b
- SSDEEP
  
  3072:/au3O9zZqRArzmGzGHaktVpVJBwV8LYDOuVOJTkcgbvP15rXNyMakvwYPDpJKJRf:SUOvqRAPQ60VpyV87QcAvPzXNmYPDWJ
Score

10^/10

gcleaner loader
- GCleaner
  GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.
  loader gcleaner
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2