gcleaner | 6a4f4fcee06b413caa01c7c151a8f8fa6b6d244af60a2edf3f8dc70d07fa0a93 | Triage

Sharing

General

Target

6a4f4fcee06b413caa01c7c151a8f8fa6b6d244af60a2edf3f8dc70d07fa0a93
Size

290KB
Sample

240327-1q75csfh5y
MD5

e33cad8c67775059139d544c5a8b9c1d
SHA1

b2547c78d22c4974b5dc84479684bae392738294
SHA256

6a4f4fcee06b413caa01c7c151a8f8fa6b6d244af60a2edf3f8dc70d07fa0a93
SHA512

3a0398f1d91399577497adfd21d2ed0da03b5d011861d7a5fc085776346859980afa03ad385b559caba261cffed36663e7323521ca1457eafb4749556eb9cb8a
SSDEEP

6144:s4cpVaPk9r5TiD0dpmWzG709qhXWriXgie53:EpVaPk92oqQIBWife

Score

10^/10

gcleaner loader

Malware Config

Extracted

Family

gcleaner

C2

185.172.128.90

5.42.64.3

5.42.65.115

Targets

- Target
  
  6a4f4fcee06b413caa01c7c151a8f8fa6b6d244af60a2edf3f8dc70d07fa0a93
- Size
  
  290KB
- MD5
  
  e33cad8c67775059139d544c5a8b9c1d
- SHA1
  
  b2547c78d22c4974b5dc84479684bae392738294
- SHA256
  
  6a4f4fcee06b413caa01c7c151a8f8fa6b6d244af60a2edf3f8dc70d07fa0a93
- SHA512
  
  3a0398f1d91399577497adfd21d2ed0da03b5d011861d7a5fc085776346859980afa03ad385b559caba261cffed36663e7323521ca1457eafb4749556eb9cb8a
- SSDEEP
  
  6144:s4cpVaPk9r5TiD0dpmWzG709qhXWriXgie53:EpVaPk92oqQIBWife
Score

10^/10

gcleaner loader
- GCleaner
  GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.
  loader gcleaner
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2