General

  • Target

    00efc6f7f740e5423da1a6817a21f5cdcfaa6366e57413cc55dc255f81962d82.zip

  • Size

    218KB

  • Sample

    240402-mmwehaff77

  • MD5

    1e21a42acea50ff088664cefa710995b

  • SHA1

    49d2c20821b1062f7dbd0adabb030e335a89f0b4

  • SHA256

    e941ad646ddfe22c806229fb818b678cd47df3a5f061ee35716f6cbb43bc6c6e

  • SHA512

    05eb05539fa74227605febf1c96dc28147e92878487c4e50609c426b3c32569a71d37d50daf93755685a90ad5571d1f300587e3eea6c667abebc1f170ca0f5cb

  • SSDEEP

    3072:7usicZ+pXOYgTfleTEeMyPtlhWZ9vx/wwA81VWKxqn5Zx9xiVrJZfUxqAt7g84mf:7uYsOdlcEiPLWNx/w9cWlitJ1UdahNg

Score
10/10

Malware Config

Extracted

Family

gcleaner

C2

185.172.128.90

5.42.64.3

5.42.65.115

Targets

    • Target

      00efc6f7f740e5423da1a6817a21f5cdcfaa6366e57413cc55dc255f81962d82.exe

    • Size

      371KB

    • MD5

      f1dd2c73ae8ae93e7c7046a9d3ef2845

    • SHA1

      1376c1ae93c9b69789b5744610fc25878362a4db

    • SHA256

      00efc6f7f740e5423da1a6817a21f5cdcfaa6366e57413cc55dc255f81962d82

    • SHA512

      7dfd0bc3e83f80819014b63b8c9e10e1726a6eb31179842b12658ec8fbb464143c49279a065c579b7944a77fcfe897486e83812b3bbf93aa71d2e4e662ef0b57

    • SSDEEP

      3072:Ogpubbw1Tk/+BYYmEXf997X7deuDvFp+l3edTq0KjbMIFhbhf//kMutW7yIb2S/a:fCT/mt1tXZhvbqedG0KHxDbpiOdbBUJ

    Score
    10/10
    • GCleaner

      GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

    • Downloads MZ/PE file

MITRE ATT&CK Matrix

Tasks