gcleaner | 83611467088ec8eb70f5a1194ba7e5de4dc080a14653e4b44ef29b6af0947005 | Triage

Submit
Reports

Overview

overview

Static

static

3

1e1dfd75b1...18.exe

windows7-x64

1e1dfd75b1...18.exe

windows10-2004-x64

Sharing

General

Target

1e1dfd75b188edb3e434a7345419732f_JaffaCakes118
Size

283KB
Sample

241007-1tn6navfmn
MD5

1e1dfd75b188edb3e434a7345419732f
SHA1

2f3cf82c812532fec99ce9a0938c54622c81aa58
SHA256

83611467088ec8eb70f5a1194ba7e5de4dc080a14653e4b44ef29b6af0947005
SHA512

aad4741a29280204035709caf5c9bd17565ae01d066f4c4dfe1959e773882831a8370b706eae73b3a336eaa7d265a630ff8b6c5b49299fa7b39c047d70d5e021
SSDEEP

3072:SV6A8Ct9eaIt5jDTaRO2MyZdckRcifRRJES6fzwjCRd5K1dFnArywoOLi6pW:puSaItBPaRiyfcklvEyq5AnRwoOL3

Score

10^/10

gcleaner onlylogger discovery loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

1e1dfd75b188edb3e434a7345419732f_JaffaCakes118.exe

Resource

win7-20240903-en

gcleaner onlylogger discovery loader

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

1e1dfd75b188edb3e434a7345419732f_JaffaCakes118.exe

Resource

win10v2004-20241007-en

gcleaner onlylogger discovery loader

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

gcleaner

C2

gc-prtnrs.top

gcc-prtnrs.top

Targets

- Target
  
  1e1dfd75b188edb3e434a7345419732f_JaffaCakes118
- Size
  
  283KB
- MD5
  
  1e1dfd75b188edb3e434a7345419732f
- SHA1
  
  2f3cf82c812532fec99ce9a0938c54622c81aa58
- SHA256
  
  83611467088ec8eb70f5a1194ba7e5de4dc080a14653e4b44ef29b6af0947005
- SHA512
  
  aad4741a29280204035709caf5c9bd17565ae01d066f4c4dfe1959e773882831a8370b706eae73b3a336eaa7d265a630ff8b6c5b49299fa7b39c047d70d5e021
- SSDEEP
  
  3072:SV6A8Ct9eaIt5jDTaRO2MyZdckRcifRRJES6fzwjCRd5K1dFnArywoOLi6pW:puSaItBPaRiyfcklvEyq5AnRwoOL3
Score

10^/10

gcleaner onlylogger discovery loader
- GCleaner
  GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.
  loader gcleaner
- OnlyLogger
  A tiny loader that uses IPLogger to get its payload.
  loader onlylogger
- OnlyLogger payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

gcleaneronlyloggerdiscoveryloader

behavioral2

gcleaneronlyloggerdiscoveryloader

© 2018-2024

Terms | Privacy