General
-
Target
file.exe
-
Size
1.1MB
-
Sample
230703-z56dmsbf21
-
MD5
8e19bc61eb1d430e063a1a21263c67d1
-
SHA1
de828e329f0c0719a5c6af15366cbf6ce705a9c3
-
SHA256
fbd4a53ff25b3ce3873554da5ac990a3be12ea699ea064c093a9b69534b04c65
-
SHA512
3900bbdc37ae4a206834e8c45734803f6672c5bc011ee8e8f314e829c85b980474dd5d32e0bccd705c3303daa6972e47ec1e6c46c01aa0837fb46276d2e6defd
-
SSDEEP
24576:VfOy2FsbYcTB9NYaUo0VBhzejLfZpVRR7xyeJmqKsXcboitP/O1:VGJFsv/Si0V76jrVfCGcboi5/O1
Static task
static1
Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20230703-en
Malware Config
Extracted
gcleaner
45.12.253.56
45.12.253.72
45.12.253.98
45.12.253.75
Targets
-
-
Target
file.exe
-
Size
1.1MB
-
MD5
8e19bc61eb1d430e063a1a21263c67d1
-
SHA1
de828e329f0c0719a5c6af15366cbf6ce705a9c3
-
SHA256
fbd4a53ff25b3ce3873554da5ac990a3be12ea699ea064c093a9b69534b04c65
-
SHA512
3900bbdc37ae4a206834e8c45734803f6672c5bc011ee8e8f314e829c85b980474dd5d32e0bccd705c3303daa6972e47ec1e6c46c01aa0837fb46276d2e6defd
-
SSDEEP
24576:VfOy2FsbYcTB9NYaUo0VBhzejLfZpVRR7xyeJmqKsXcboitP/O1:VGJFsv/Si0V76jrVfCGcboi5/O1
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-