gcleaner | f211d8be8001df12bba948be8bdb8db9c938a518052a50d358d02a04396c2dd5 | Triage

Submit
Reports

Overview

overview

Static

static

3

e7670118fd...18.exe

windows7-x64

e7670118fd...18.exe

windows10-2004-x64

Sharing

General

Target

e7670118fd4bd720b70a799bc68860b9_JaffaCakes118
Size

281KB
Sample

240408-n15qrsge34
MD5

e7670118fd4bd720b70a799bc68860b9
SHA1

5bc054649f120473e2e022ba0e628c20649724e8
SHA256

f211d8be8001df12bba948be8bdb8db9c938a518052a50d358d02a04396c2dd5
SHA512

9f2edecedf05e2d0dc83e1932910bca94bf1878643719aacfc1e04d96b6702a12400b0f9259db01c46e920963293907edab12e575476f06f459c965ce8292e1c
SSDEEP

6144:6dk2Sqt6RT2VN8ODCQKvZLBAyPEhUad4eGsU9eR:v2d6R6VN8ODqBLS+9ad4egeR

Score

10^/10

gcleaner onlylogger loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e7670118fd4bd720b70a799bc68860b9_JaffaCakes118.exe

Resource

win7-20240221-en

gcleaner onlylogger loader

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

e7670118fd4bd720b70a799bc68860b9_JaffaCakes118.exe

Resource

win10v2004-20231215-en

gcleaner onlylogger loader

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

gcleaner

C2

gc-prtnrs.top

gcc-prtnrs.top

Targets

- Target
  
  e7670118fd4bd720b70a799bc68860b9_JaffaCakes118
- Size
  
  281KB
- MD5
  
  e7670118fd4bd720b70a799bc68860b9
- SHA1
  
  5bc054649f120473e2e022ba0e628c20649724e8
- SHA256
  
  f211d8be8001df12bba948be8bdb8db9c938a518052a50d358d02a04396c2dd5
- SHA512
  
  9f2edecedf05e2d0dc83e1932910bca94bf1878643719aacfc1e04d96b6702a12400b0f9259db01c46e920963293907edab12e575476f06f459c965ce8292e1c
- SSDEEP
  
  6144:6dk2Sqt6RT2VN8ODCQKvZLBAyPEhUad4eGsU9eR:v2d6R6VN8ODqBLS+9ad4egeR
Score

10^/10

gcleaner onlylogger loader
- GCleaner
  GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.
  loader gcleaner
- OnlyLogger
  A tiny loader that uses IPLogger to get its payload.
  loader onlylogger
- OnlyLogger payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

gcleaneronlyloggerloader

behavioral2

gcleaneronlyloggerloader

© 2018-2024

Terms | Privacy