Extracted

• • Target

    b2a7101f02840111a72d070f68470577aee62b37b3c35ff4993f28ab419c0eef

  • Size

    296KB

  • MD5

    f7d2ce8ab86d84eb5f87f0d86fb063fa

  • SHA1

    f9c142749b6581116e4676391b30815d4a98181c

  • SHA256

    b2a7101f02840111a72d070f68470577aee62b37b3c35ff4993f28ab419c0eef

  • SHA512

    10881fadd22757f4e90da3e0ced380450f3e689bb2fd4bc9281c3ee280e383ca876c137d4267a8536083a74fdb6620e4dab812a6297c9534fa4066b574dff9b2

  • SSDEEP

    3072:B9LIa8DW0cO1L75Gi4ivyLOla1aEYAbsmuMe2mvzu0SpK5uobh4araQeeb:LLZH0cYLsreeaEdgmozws4RE

  Score

  10^/10

  gcleanerloader

  • GCleaner

    GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

    loadergcleaner

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  behavioral1behavioral2