gcleaner | 97b2cf87489857dd47af7dbda3da5edd6e9ddc0c5cecbed9b74105a46cebe7e1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

49ee8deeb69f94cd14a9e69fc1490b81
Size

380KB
Sample

230629-pdndmsch86
MD5

49ee8deeb69f94cd14a9e69fc1490b81
SHA1

40adc0ebaf2137c67392cccb2210c12c2ec24767
SHA256

97b2cf87489857dd47af7dbda3da5edd6e9ddc0c5cecbed9b74105a46cebe7e1
SHA512

21078d70d85a45ad8dfe1220ace9957c64cd9f51dcc51f889d8ecfe21c0d4de6b558c592bc527a23dd3791c54e6c7412c0a557c2045b9f8433d21e2dc11b764c
SSDEEP

6144:us1xjhqbqZlwXv/JdHwBU+EXvB385URXwZH83WxiAG:uW9qbqZcXJL3XN82RXj

Score

10^/10

gcleaner loader

Malware Config

Extracted

Family

gcleaner

C2

45.12.253.56

45.12.253.72

45.12.253.98

45.12.253.75

Targets

- Target
  
  49ee8deeb69f94cd14a9e69fc1490b81
- Size
  
  380KB
- MD5
  
  49ee8deeb69f94cd14a9e69fc1490b81
- SHA1
  
  40adc0ebaf2137c67392cccb2210c12c2ec24767
- SHA256
  
  97b2cf87489857dd47af7dbda3da5edd6e9ddc0c5cecbed9b74105a46cebe7e1
- SHA512
  
  21078d70d85a45ad8dfe1220ace9957c64cd9f51dcc51f889d8ecfe21c0d4de6b558c592bc527a23dd3791c54e6c7412c0a557c2045b9f8433d21e2dc11b764c
- SSDEEP
  
  6144:us1xjhqbqZlwXv/JdHwBU+EXvB385URXwZH83WxiAG:uW9qbqZcXJL3XN82RXj
Score

10^/10

gcleaner loader
- GCleaner
  GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.
  loader gcleaner
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2