Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

319961e3cd...69.exe

windows7-x64

10

319961e3cd...69.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5d593dfd0431dcd1b950267297fcda36.bin

  • Size

    234KB

  • Sample

    230612-b7cbksba81

  • MD5

    3ae583be19a4cc9a0cf76263ca71445a

  • SHA1

    3b904f2c54640937fca12e9cafc18c2d9b0fa6a9

  • SHA256

    fecf6730d79e7486d59c5a2095074a534c912f355867a046e7a52cf4f66cfb51

  • SHA512

    686f094a85082c33a29a15cd2114cdef6d7f7181338175a0399d567cb6ba1d45b4e43b98c162cad4e3a4d177c6e68dc01c06e85991613302171341f1d80a4f15

  • SSDEEP

    6144:LzqmHzktwX1Hu2m8EcJgXo9Pzm/Aaj5luCCwwyqd:LzLzkKXduKENOhU5lGwnI

Score
10/10
gcleanerloader

Malware Config

Extracted

Family

gcleaner

C2

45.12.253.56

45.12.253.72

45.12.253.98

45.12.253.75

Targets

    • Target

      319961e3cd13d871dfff907b115251383fdfe8755978b90ad1522204cf4ccc69.exe

    • Size

      358KB

    • MD5

      5d593dfd0431dcd1b950267297fcda36

    • SHA1

      8d89a5814e421dbae7fc24574900326b62e0492c

    • SHA256

      319961e3cd13d871dfff907b115251383fdfe8755978b90ad1522204cf4ccc69

    • SHA512

      1c8849730ccf659d09ae6a5f5bda27599cf79da6442d77072dfe4b13cab28d46e211ed5377ea2b6aa4cd40c93d16e78efb61dec4848833771774e11338512b36

    • SSDEEP

      6144:5ikN8R3YklacW7ZsJaclczBXola8t97/zEiBpv:5PN8RoUg3FXola497/L

    Score
    10/10
    gcleanerloader

    • GCleaner

      GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

      loadergcleaner

    • Downloads MZ/PE file

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks