General

  • Target

    dbff7036888b5c4c42d13ca204f3e1e7c3863656114058392b3ba02354138f34

  • Size

    1.7MB

  • Sample

    240508-dt46jsae38

  • MD5

    57fd97496edd052df554dc090d64bf9d

  • SHA1

    ca2adfb0260d1da7db6bc83b9093c7a21428bcbe

  • SHA256

    dbff7036888b5c4c42d13ca204f3e1e7c3863656114058392b3ba02354138f34

  • SHA512

    8c06ad4dd2827edac07f5b3c40121be8bdfc8a345c525d531357579b554d3786ff21c1db461981cb7990e89b2970be1daac35e280fe36aa3366e447a14f70a5b

  • SSDEEP

    24576:WTyDD/lEjYi51sZMqEAuGzPRqz+B8jvi5HbCYL1HnUB4DipUTJQlbPm1:sA/mjlfiWv8bCkZUOBTKq

Score
10/10

Malware Config

Extracted

Family

gcleaner

C2

85.208.136.148

85.208.136.56

85.208.136.48

85.208.136.87

Attributes
  • url_path

    /x.php

    /soft.php

    /soft.php

Targets

    • Target

      dbff7036888b5c4c42d13ca204f3e1e7c3863656114058392b3ba02354138f34

    • Size

      1.7MB

    • MD5

      57fd97496edd052df554dc090d64bf9d

    • SHA1

      ca2adfb0260d1da7db6bc83b9093c7a21428bcbe

    • SHA256

      dbff7036888b5c4c42d13ca204f3e1e7c3863656114058392b3ba02354138f34

    • SHA512

      8c06ad4dd2827edac07f5b3c40121be8bdfc8a345c525d531357579b554d3786ff21c1db461981cb7990e89b2970be1daac35e280fe36aa3366e447a14f70a5b

    • SSDEEP

      24576:WTyDD/lEjYi51sZMqEAuGzPRqz+B8jvi5HbCYL1HnUB4DipUTJQlbPm1:sA/mjlfiWv8bCkZUOBTKq

    Score
    10/10
    • GCleaner

      GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

MITRE ATT&CK Matrix

Tasks