General

  • Target

    6a345ac4726c427e82a2121ae310adce203aa39c1c3d7ce48f5670cb833345a8.zip

  • Size

    180KB

  • Sample

    240402-mm4e4sff88

  • MD5

    e68626d9e17e52f170df1d89d46e37db

  • SHA1

    af0569e94605248e2f28b61874e5652080416aea

  • SHA256

    2b9421b148c42865886eccac365474d76e80f0735e1761f766968acc805cbb18

  • SHA512

    27f353887b849875e77b2edc97d4af4b3f9e3c882cf7b9df68f3237f338ec6666a46360061bb2fe90e9aedf9706ed0a35b43d4da46d71cb1e2b48ffafeea6783

  • SSDEEP

    3072:bgEzdDrnZGQ/oJebff+DPuxozFGxmZvdUPrUVVKrxAt8/xJDlEAG2PqeuQT:0gXnZGLEfmD2xozYAZGrUPcxFnJGf9QT

Score
10/10

Malware Config

Extracted

Family

gcleaner

C2

185.172.128.90

5.42.64.3

5.42.65.115

Targets

    • Target

      6a345ac4726c427e82a2121ae310adce203aa39c1c3d7ce48f5670cb833345a8.exe

    • Size

      256KB

    • MD5

      f17a91a9010cfb0b469d09346f439f06

    • SHA1

      1eea9210f5a75e2d795343a82f606f647d5ee33d

    • SHA256

      6a345ac4726c427e82a2121ae310adce203aa39c1c3d7ce48f5670cb833345a8

    • SHA512

      ddc313ff9391644fbc2dc30bf35805fa8e836fefb567e4aa95c7114eaa52ba451df4dd726d96449adb83b9225f31ca28806fe7d34f020caaebeb5254ef61f3b4

    • SSDEEP

      3072:PX4EcZeKxOVDhbqPz6yTLFd1foSDp8bQjg0TAf5ZJpriMhrC3/7LRGqVg2dv:v4EcZeEOBhquyVPNt1OLGZ3/7EC5d

    Score
    10/10
    • GCleaner

      GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

    • Downloads MZ/PE file

MITRE ATT&CK Matrix

Tasks