gcleaner | a3a9ff3c83d0f8d62372e771ce86fce67eda5fa527784894442e92d515e5c69a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f89dab152f9dd88ade9196f1c36196b9.exe
Size

273KB
Sample

230614-f1ewcadd3w
MD5

f89dab152f9dd88ade9196f1c36196b9
SHA1

6381fb160544382c0c1d2d38e6d35c38666f1bc2
SHA256

a3a9ff3c83d0f8d62372e771ce86fce67eda5fa527784894442e92d515e5c69a
SHA512

42665a72e76b99ffbaf118040b7a55eb5bab168f94eeb26f4135149fb03359f9b5942f00b35fcb35056695eb978976d4f68b35535f64dac08d1196cffca9b906
SSDEEP

3072:bw9vc6EfH0jiIy9n6mZM3UbahZMDaggjJ6RqTQGNitb07bjZqwuKYc7EcOWwYT+T:ffH0jiI+nJMds6agQTb07RGKA2bN0Qj

Score

10^/10

gcleaner loader

Malware Config

Extracted

Family

gcleaner

C2

45.12.253.56

45.12.253.72

45.12.253.98

45.12.253.75

Targets

- Target
  
  f89dab152f9dd88ade9196f1c36196b9.exe
- Size
  
  273KB
- MD5
  
  f89dab152f9dd88ade9196f1c36196b9
- SHA1
  
  6381fb160544382c0c1d2d38e6d35c38666f1bc2
- SHA256
  
  a3a9ff3c83d0f8d62372e771ce86fce67eda5fa527784894442e92d515e5c69a
- SHA512
  
  42665a72e76b99ffbaf118040b7a55eb5bab168f94eeb26f4135149fb03359f9b5942f00b35fcb35056695eb978976d4f68b35535f64dac08d1196cffca9b906
- SSDEEP
  
  3072:bw9vc6EfH0jiIy9n6mZM3UbahZMDaggjJ6RqTQGNitb07bjZqwuKYc7EcOWwYT+T:ffH0jiI+nJMds6agQTb07RGKA2bN0Qj
Score

10^/10

gcleaner loader
- GCleaner
  GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.
  loader gcleaner
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2