General

  • Target

    9ab2417cf513faf0321ad42ca3119429af832262c777fa032d5f30cea4fc4ba4

  • Size

    301KB

  • Sample

    240507-3k1t7shb52

  • MD5

    f9050f067f6edefccfc74b05636e2d4b

  • SHA1

    401fdf44e020961d1c75c2507efa413cf6b84ce6

  • SHA256

    9ab2417cf513faf0321ad42ca3119429af832262c777fa032d5f30cea4fc4ba4

  • SHA512

    948a6c7b77e4dd67c6c71a7b0cd60368deeb018204da1af42547c2538fd11753651b4965134cbce5ef7034d530727f87c546676b576d85a547bef5e9abb279f4

  • SSDEEP

    3072:1ZEnJY5lR/1ZRj5jG4irk6c8MkerObsI7w5jwZ0iK75E:+JuRNJq4Wkdr+Zuwng

Score
10/10

Malware Config

Extracted

Family

gcleaner

C2

185.172.128.90

5.42.65.64

Attributes
  • url_path

    /advdlc.php

Targets

    • Target

      9ab2417cf513faf0321ad42ca3119429af832262c777fa032d5f30cea4fc4ba4

    • Size

      301KB

    • MD5

      f9050f067f6edefccfc74b05636e2d4b

    • SHA1

      401fdf44e020961d1c75c2507efa413cf6b84ce6

    • SHA256

      9ab2417cf513faf0321ad42ca3119429af832262c777fa032d5f30cea4fc4ba4

    • SHA512

      948a6c7b77e4dd67c6c71a7b0cd60368deeb018204da1af42547c2538fd11753651b4965134cbce5ef7034d530727f87c546676b576d85a547bef5e9abb279f4

    • SSDEEP

      3072:1ZEnJY5lR/1ZRj5jG4irk6c8MkerObsI7w5jwZ0iK75E:+JuRNJq4Wkdr+Zuwng

    Score
    10/10
    • GCleaner

      GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

    • Deletes itself

MITRE ATT&CK Enterprise v15

Tasks