Overview

overview

10

Static

static

3

fad0be4aa6...a5.exe

windows7-x64

10

fad0be4aa6...a5.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    fad0be4aa6fb74b5f083a39faa753ca5.exe

  • Size

    361KB

  • Sample

    230528-h3sw4afa21

  • MD5

    fad0be4aa6fb74b5f083a39faa753ca5

  • SHA1

    b1413ed8bee187933ecfa9abb5bc3ba80fe7b8c5

  • SHA256

    04e4112e33bae95be1b7d00d1801772d09dae6ced5b91fd4de03b2929641ba7c

  • SHA512

    7dc54f66e9d216112a54ce88940055e79a0899752f8a6723b88aa522099971497e735989b75665d63c800b0786fd91f9db9f072495d639a4cdd05bca8977469a

  • SSDEEP

    6144:mobJN59AQMjc1EOi/2ZXkL5d6Qx9VZfs2zS2kuYH:mo9FSjc/i/6UL5wMTq7d

Score
10/10
gcleanerloader

Malware Config

Extracted

Family

gcleaner

C2

45.12.253.56

45.12.253.72

45.12.253.98

45.12.253.75

Targets

    • Target

      fad0be4aa6fb74b5f083a39faa753ca5.exe

    • Size

      361KB

    • MD5

      fad0be4aa6fb74b5f083a39faa753ca5

    • SHA1

      b1413ed8bee187933ecfa9abb5bc3ba80fe7b8c5

    • SHA256

      04e4112e33bae95be1b7d00d1801772d09dae6ced5b91fd4de03b2929641ba7c

    • SHA512

      7dc54f66e9d216112a54ce88940055e79a0899752f8a6723b88aa522099971497e735989b75665d63c800b0786fd91f9db9f072495d639a4cdd05bca8977469a

    • SSDEEP

      6144:mobJN59AQMjc1EOi/2ZXkL5d6Qx9VZfs2zS2kuYH:mo9FSjc/i/6UL5wMTq7d

    Score
    10/10
    gcleanerloader

    • GCleaner

      GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

      loadergcleaner

    • Downloads MZ/PE file

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks