gcleaner | f36c64728dbe6bb249cc14ac74d1b0fb0ba27394fe06b2622619413c12634e0c | Triage

Sharing

General

Target

5d97636008c540b5bec52d5b104d8132.exe
Size

359KB
Sample

230522-kkwalsfb24
MD5

5d97636008c540b5bec52d5b104d8132
SHA1

fd93aecf23361963cdb6f9799443ba5f3f381d55
SHA256

f36c64728dbe6bb249cc14ac74d1b0fb0ba27394fe06b2622619413c12634e0c
SHA512

1f64d4be0d26dc9a3b6443532b6e78257817d6978397b73525cbdd694bd4d01021aab2d1e4a272ee92f569e87c1571398621ff1d3a01266301a9f1b6bfbc556b
SSDEEP

6144:HHjjHTDMpwGWcCGBdxO8fukvGkcI5kN0/8uk5gFVJwG4uTK:HTDTdZGfWo20Euk83

Score

10^/10

gcleaner loader

Malware Config

Extracted

Family

gcleaner

C2

45.12.253.56

45.12.253.72

45.12.253.98

45.12.253.75

Targets

- Target
  
  5d97636008c540b5bec52d5b104d8132.exe
- Size
  
  359KB
- MD5
  
  5d97636008c540b5bec52d5b104d8132
- SHA1
  
  fd93aecf23361963cdb6f9799443ba5f3f381d55
- SHA256
  
  f36c64728dbe6bb249cc14ac74d1b0fb0ba27394fe06b2622619413c12634e0c
- SHA512
  
  1f64d4be0d26dc9a3b6443532b6e78257817d6978397b73525cbdd694bd4d01021aab2d1e4a272ee92f569e87c1571398621ff1d3a01266301a9f1b6bfbc556b
- SSDEEP
  
  6144:HHjjHTDMpwGWcCGBdxO8fukvGkcI5kN0/8uk5gFVJwG4uTK:HTDTdZGfWo20Euk83
Score

10^/10

gcleaner loader
- GCleaner
  GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.
  loader gcleaner
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2