General

  • Target

    78ed1c3c4674c3b479c13bb3fc1ee01e030353a03fdb78f1c91c1a5f4bfed9a9

  • Size

    249KB

  • Sample

    240508-3b14lsfe56

  • MD5

    81a4ad3f2e705b2d262631433c4c004f

  • SHA1

    49017f5dfa907fd30e71d83bb621235849948509

  • SHA256

    78ed1c3c4674c3b479c13bb3fc1ee01e030353a03fdb78f1c91c1a5f4bfed9a9

  • SHA512

    4a93a66a8955f5b176894db4d6fd787ff2edf57e0221eb5b2db246f5be4fb94c74d8b8578c3b74551ea580a754fdf8bb3b9570b5a50611f0b3fc73f80e1862fb

  • SSDEEP

    3072:ZVzSst1FDjl9tnqLyOW+DSpOFuQdhjWdxy9kSIlrETz++RcE7vzkGEeiDvsTS1eQ:jx9eyOWFtQdouPz++mE7vwGEeijsTf

Score
10/10

Malware Config

Extracted

Family

gcleaner

C2

185.172.128.90

5.42.65.64

Attributes
  • url_path

    /advdlc.php

Targets

    • Target

      78ed1c3c4674c3b479c13bb3fc1ee01e030353a03fdb78f1c91c1a5f4bfed9a9

    • Size

      249KB

    • MD5

      81a4ad3f2e705b2d262631433c4c004f

    • SHA1

      49017f5dfa907fd30e71d83bb621235849948509

    • SHA256

      78ed1c3c4674c3b479c13bb3fc1ee01e030353a03fdb78f1c91c1a5f4bfed9a9

    • SHA512

      4a93a66a8955f5b176894db4d6fd787ff2edf57e0221eb5b2db246f5be4fb94c74d8b8578c3b74551ea580a754fdf8bb3b9570b5a50611f0b3fc73f80e1862fb

    • SSDEEP

      3072:ZVzSst1FDjl9tnqLyOW+DSpOFuQdhjWdxy9kSIlrETz++RcE7vzkGEeiDvsTS1eQ:jx9eyOWFtQdouPz++mE7vwGEeijsTf

    Score
    10/10
    • GCleaner

      GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

MITRE ATT&CK Enterprise v15

Tasks