General

  • Target

    7454748396e5377bddeac7cdf2ed0012a690105809f19fd725641cec489ca0c3

  • Size

    256KB

  • Sample

    240508-3a1rfsfd77

  • MD5

    1444feb26c268de86897850c58ce6777

  • SHA1

    5c6571dffd8df215f8a7aca554f433eedbbec627

  • SHA256

    7454748396e5377bddeac7cdf2ed0012a690105809f19fd725641cec489ca0c3

  • SHA512

    6272d15a25ecb72ca1a438247511d823fc61ab7925f455f221265b05c0d672dcd5451949943f3e8bf37e9419c6b1a42b89d7a56a255092b10ca1a7cc5593ac65

  • SSDEEP

    3072:+rPalSIeetbeU93m8KEfz47fCHftVajfHzgYc9/jNuh75SMpW6r:ua8FSi02rQwfofavzgnrNuPpW6r

Score
10/10

Malware Config

Extracted

Family

gcleaner

C2

185.172.128.90

5.42.65.64

Attributes
  • url_path

    /advdlc.php

Targets

    • Target

      7454748396e5377bddeac7cdf2ed0012a690105809f19fd725641cec489ca0c3

    • Size

      256KB

    • MD5

      1444feb26c268de86897850c58ce6777

    • SHA1

      5c6571dffd8df215f8a7aca554f433eedbbec627

    • SHA256

      7454748396e5377bddeac7cdf2ed0012a690105809f19fd725641cec489ca0c3

    • SHA512

      6272d15a25ecb72ca1a438247511d823fc61ab7925f455f221265b05c0d672dcd5451949943f3e8bf37e9419c6b1a42b89d7a56a255092b10ca1a7cc5593ac65

    • SSDEEP

      3072:+rPalSIeetbeU93m8KEfz47fCHftVajfHzgYc9/jNuh75SMpW6r:ua8FSi02rQwfofavzgnrNuPpW6r

    Score
    10/10
    • GCleaner

      GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

    • Deletes itself

MITRE ATT&CK Enterprise v15

Tasks