Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

508e67f9f8...e9.exe

windows7-x64

10

508e67f9f8...e9.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ab14cef3319655c02cb796986a104903f2751667845613b206a6c2ca300e5aee

  • Size

    173KB

  • Sample

    240417-qyg8ssbe9v

  • MD5

    12027fc70de394ab79444f1e15c3a069

  • SHA1

    11a673a521a7d8c08660c6dd19b6398c00573828

  • SHA256

    ab14cef3319655c02cb796986a104903f2751667845613b206a6c2ca300e5aee

  • SHA512

    132e56d7c78ddcf545e0ffc345b4b6cd97166eb2ca04b30a2313fc9ec16d854dc6135ac7f3fca4112bf991b9dd1bc7c8de9f45be045121cf5f9a0b347c6372ea

  • SSDEEP

    3072:+yIYQAEk/MgNEf1Wof0zquJHDBmfJf2pyhc8T8ZmkyrPZJV3eNgbx8oDrL4qc:yYQAzjW3MzqWNmgEhPQ+rPdew7g

Score
10/10
gcleanerloader

Malware Config

Extracted

Family

gcleaner

C2

185.172.128.90

5.42.64.3

5.42.65.115

Targets

    • Target

      508e67f9f8ecec59538cd61fc6aaf0c25b4194d6dbd8b830f7b5bb2b8adf5ae9.exe

    • Size

      238KB

    • MD5

      d7a8d0ada2565dbc31293ce1d3a59470

    • SHA1

      a7bc1a8f5975a99949e8fa075221183d464c0714

    • SHA256

      508e67f9f8ecec59538cd61fc6aaf0c25b4194d6dbd8b830f7b5bb2b8adf5ae9

    • SHA512

      e3a8a81026551ab2a4383f4cd95099d6efc7d5710c3e996908fe7d87deaf41a51a9fe7bf8af93e9dc71067776e32d4946c6da4926a3fb81969193cebd3f9b752

    • SSDEEP

      3072:nijYQAMaMbfYAgVotVdHEn4b+4WFIyqxmf2HwUFCJijtzJngkZkDI6ocxf8a02:nijF9BlVdkoEFIy5OJzBgkZk8jcxL

    Score
    10/10
    gcleanerloader

    • GCleaner

      GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

      loadergcleaner

    • Downloads MZ/PE file

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks