Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

5457285bf5...11.exe

windows7-x64

10

5457285bf5...11.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2e149c2509e751783f67aac9af2e57e5.bin

  • Size

    219KB

  • Sample

    230629-blj5asbe97

  • MD5

    e61bbf9fe0a78323d90a61bf2f1fda07

  • SHA1

    c62ae8978715386ffa5f8d254bf7f4ba89fbe24f

  • SHA256

    37530db64361f15936442e2b1f6dbe3920f096d9ca093c1d012825046f053d24

  • SHA512

    c65a98cdccaad24eaef941c658dda62f532421564c855861e287f385bd6cbbd069177c31c6a28b7139bce41d9ff4d172c825d09e4c2ae7819ec87ab4b6433009

  • SSDEEP

    6144:SqGumShJ+oNLoQN3yue2M4LyimJBAxr4XNpeg/Wa/LKj6dxh:jVoQJyuevKhmJyxsXNj/V/Ln

Score
10/10
gcleanerloader

Malware Config

Extracted

Family

gcleaner

C2

45.12.253.56

45.12.253.72

45.12.253.98

45.12.253.75

Targets

    • Target

      5457285bf50fb555f651ddc0fcd19174bcdef1eb6356ea7c5872dc1a5847dd11.exe

    • Size

      342KB

    • MD5

      2e149c2509e751783f67aac9af2e57e5

    • SHA1

      5b7ff80062d98aa091708ef19bf9c141d09ce258

    • SHA256

      5457285bf50fb555f651ddc0fcd19174bcdef1eb6356ea7c5872dc1a5847dd11

    • SHA512

      f7e934850cad3e89c11527656b02a75f812574f5eb61fc09b196c4456b82b14c480fc4f9f96b250c61b0b52c0af94df74549f5d8a4e64734279312206f88ffed

    • SSDEEP

      6144:jf1xE4cT+KOpHMEH5d6SfjUEV+d1Z8G2lpENA4tWe:jzjcT+KKH54S7+3Z/2nSbt

    Score
    10/10
    gcleanerloader

    • GCleaner

      GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

      loadergcleaner

    • Downloads MZ/PE file

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks