gcleaner | ebbddbc283ca755442e0651f50ca542a01b896fb05fa62ad18270f791ecec6bb | Triage

Submit
Reports

Overview

overview

Static

static

3

caf7afab30...92.exe

windows10-2004-x64

Resubmissions

15-03-2024 19:43

240315-yfcvcshd9x 10

15-03-2024 08:54

240315-kt8bjacd41 10

15-03-2024 08:41

240315-klpjfscb9w 10

Sharing

General

Target

caf7afab30b06cd0f7e04e58d74eae92
Size

248KB
Sample

240315-kt8bjacd41
MD5

caf7afab30b06cd0f7e04e58d74eae92
SHA1

d2f660783a60f769a145e6950382ec14aa058604
SHA256

ebbddbc283ca755442e0651f50ca542a01b896fb05fa62ad18270f791ecec6bb
SHA512

deecd35d3f36130e4e6faec6b8f8964399f1e9f4ede11096bf6d0e7ce8036dbe375f8be93cd5a864c1d7e03de2535ec2885413a497a4f0b7775a53035fdaee8b
SSDEEP

3072:Hveff3/WI3G4qvOLOdbR7JCCNxNlZjemWa6hg5GuGUgMdZafD4UA1b:HEJG9mGR8CN3ymWa65uRb4cxb

Score

10^/10

gcleaner onlylogger loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

caf7afab30b06cd0f7e04e58d74eae92.exe

Resource

win10v2004-20240226-en

gcleaner onlylogger loader

windows10-2004-x64

5 signatures

1800 seconds

Malware Config

Extracted

Family

gcleaner

C2

194.145.227.161

Targets

- Target
  
  caf7afab30b06cd0f7e04e58d74eae92
- Size
  
  248KB
- MD5
  
  caf7afab30b06cd0f7e04e58d74eae92
- SHA1
  
  d2f660783a60f769a145e6950382ec14aa058604
- SHA256
  
  ebbddbc283ca755442e0651f50ca542a01b896fb05fa62ad18270f791ecec6bb
- SHA512
  
  deecd35d3f36130e4e6faec6b8f8964399f1e9f4ede11096bf6d0e7ce8036dbe375f8be93cd5a864c1d7e03de2535ec2885413a497a4f0b7775a53035fdaee8b
- SSDEEP
  
  3072:Hveff3/WI3G4qvOLOdbR7JCCNxNlZjemWa6hg5GuGUgMdZafD4UA1b:HEJG9mGR8CN3ymWa65uRb4cxb
Score

10^/10

gcleaner onlylogger loader
- GCleaner
  GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.
  loader gcleaner
- OnlyLogger
  A tiny loader that uses IPLogger to get its payload.
  loader onlylogger
- OnlyLogger payload
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

gcleaneronlyloggerloader

© 2018-2024

Terms | Privacy