gcleaner | 5adf12fdd3715cad26e68e06892b371a0c9802c5d8d8204075b62d503acc9fd8 | Triage

Sharing

General

Target

5adf12fdd3715cad26e68e06892b371a0c9802c5d8d8204075b62d503acc9fd8
Size

386KB
Sample

240328-y7qwasfg8v
MD5

3bbaaea05207c361ad908cbb5246a734
SHA1

66b3569d15609308aca4fc10170e05ca0aa46840
SHA256

5adf12fdd3715cad26e68e06892b371a0c9802c5d8d8204075b62d503acc9fd8
SHA512

35c490867c4d39ce33ca654f5f4e3b24c8a5111014d70645df32bdb898c46294126ae923a2bb21592a730530c26a098e48bc17dabc26f13af51bab21a17f2ada
SSDEEP

6144:SCcWVCDeWaserbq2DNUx95x6vbbAyLmtjdeC37hASDN8raxW64:gWVCivserrWx9PUvAphdegZN8raxW

Score

10^/10

gcleaner loader

Malware Config

Extracted

Family

gcleaner

C2

185.172.128.90

5.42.64.3

5.42.65.115

Targets

- Target
  
  5adf12fdd3715cad26e68e06892b371a0c9802c5d8d8204075b62d503acc9fd8
- Size
  
  386KB
- MD5
  
  3bbaaea05207c361ad908cbb5246a734
- SHA1
  
  66b3569d15609308aca4fc10170e05ca0aa46840
- SHA256
  
  5adf12fdd3715cad26e68e06892b371a0c9802c5d8d8204075b62d503acc9fd8
- SHA512
  
  35c490867c4d39ce33ca654f5f4e3b24c8a5111014d70645df32bdb898c46294126ae923a2bb21592a730530c26a098e48bc17dabc26f13af51bab21a17f2ada
- SSDEEP
  
  6144:SCcWVCDeWaserbq2DNUx95x6vbbAyLmtjdeC37hASDN8raxW64:gWVCivserrWx9PUvAphdegZN8raxW
Score

10^/10

gcleaner loader
- GCleaner
  GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.
  loader gcleaner
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2