gcleaner | 9a01aafc86187e4f8638afb8f0c6c953e334a3dc0d2831027979d2e2acb67d9e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ff4af820ea78f651ac64bf6904d0fce7.exe
Size

345KB
Sample

230530-mes96sha46
MD5

ff4af820ea78f651ac64bf6904d0fce7
SHA1

b89c1d6a6f1a9c2c18556ad0166f5b5f82bc67ad
SHA256

9a01aafc86187e4f8638afb8f0c6c953e334a3dc0d2831027979d2e2acb67d9e
SHA512

3d87e3051c07eda0180b80ba1d7c452c98b70bda9b574b278d729758c2f9b74b872a71ab45af73db47b36cf57d535e59f32d5ff848950e63086bcea99263b92a
SSDEEP

6144:6f9mI2AgskIjRaJr+Si1iG7jSF3HyHPf2P4u9RLx:HI23sDNaJr+SiEG7jpHPePz

Score

10^/10

gcleaner loader

Malware Config

Extracted

Family

gcleaner

C2

45.12.253.56

45.12.253.72

45.12.253.98

45.12.253.75

Targets

- Target
  
  ff4af820ea78f651ac64bf6904d0fce7.exe
- Size
  
  345KB
- MD5
  
  ff4af820ea78f651ac64bf6904d0fce7
- SHA1
  
  b89c1d6a6f1a9c2c18556ad0166f5b5f82bc67ad
- SHA256
  
  9a01aafc86187e4f8638afb8f0c6c953e334a3dc0d2831027979d2e2acb67d9e
- SHA512
  
  3d87e3051c07eda0180b80ba1d7c452c98b70bda9b574b278d729758c2f9b74b872a71ab45af73db47b36cf57d535e59f32d5ff848950e63086bcea99263b92a
- SSDEEP
  
  6144:6f9mI2AgskIjRaJr+Si1iG7jSF3HyHPf2P4u9RLx:HI23sDNaJr+SiEG7jpHPePz
Score

10^/10

gcleaner loader
- GCleaner
  GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.
  loader gcleaner
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2