gcleaner | 126309b4dfe718dc824c160742c36a02c1d47bc1fbb8e002249fe3a3c64f06f8 | Triage

Sharing

General

Target

1b34dddb3b17173cafc2f89676881afb.exe
Size

269KB
Sample

230627-h7s3nadd59
MD5

1b34dddb3b17173cafc2f89676881afb
SHA1

59184c76af7a99e20628b513fefe01b68156edd3
SHA256

126309b4dfe718dc824c160742c36a02c1d47bc1fbb8e002249fe3a3c64f06f8
SHA512

834e995a951233c93649595c30ea6d09e2899b8dee9e4b553c962c8a53f40bf623d4a180998a64eb775a72697de3f81214f8fad34e8f688f3a16e8e7f1094cbb
SSDEEP

6144:edP0IAnzsLJNks1GGi/DSv++KBbzSwa8ehJR:wP0WpbR2+WoZvR

Score

10^/10

gcleaner loader

Malware Config

Extracted

Family

gcleaner

C2

45.12.253.56

45.12.253.72

45.12.253.98

45.12.253.75

Targets

- Target
  
  1b34dddb3b17173cafc2f89676881afb.exe
- Size
  
  269KB
- MD5
  
  1b34dddb3b17173cafc2f89676881afb
- SHA1
  
  59184c76af7a99e20628b513fefe01b68156edd3
- SHA256
  
  126309b4dfe718dc824c160742c36a02c1d47bc1fbb8e002249fe3a3c64f06f8
- SHA512
  
  834e995a951233c93649595c30ea6d09e2899b8dee9e4b553c962c8a53f40bf623d4a180998a64eb775a72697de3f81214f8fad34e8f688f3a16e8e7f1094cbb
- SSDEEP
  
  6144:edP0IAnzsLJNks1GGi/DSv++KBbzSwa8ehJR:wP0WpbR2+WoZvR
Score

10^/10

gcleaner loader
- GCleaner
  GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.
  loader gcleaner
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2