Analysis
-
max time kernel
140s -
max time network
153s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system -
submitted
16-11-2024 22:36
Static task
static1
Behavioral task
behavioral1
Sample
b0968bdb6a175a38ec05efcf605ed61411d16e63e692bc0d7b8f1f747ce3b2e5.exe
Resource
win7-20241010-en
General
-
Target
b0968bdb6a175a38ec05efcf605ed61411d16e63e692bc0d7b8f1f747ce3b2e5.exe
-
Size
335KB
-
MD5
8b7d2590f1fb0dfd81b796f4b4723542
-
SHA1
b492d614f7749220b934127cdfc737426797890c
-
SHA256
b0968bdb6a175a38ec05efcf605ed61411d16e63e692bc0d7b8f1f747ce3b2e5
-
SHA512
5381413edddf5b7ed746fccf00560e0e326cf499b2149c2fe7fadca6511a6008d9ab6521c1bad1ab74c53765c27eed9c27a80879395597d22e2071b98dfd8f38
-
SSDEEP
3072:M4WBLuupGWmJT8kk4nhCvjzgQdeTDKnBmnMPbdyqJD2/OX3kaVw5OvRQ46+a:F4LgWC9k8Cvjz8TDKnBPb0wKWfvRQ4V
Malware Config
Extracted
gcleaner
185.172.128.90
5.42.65.115
Signatures
-
Gcleaner family
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
description ioc Process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language b0968bdb6a175a38ec05efcf605ed61411d16e63e692bc0d7b8f1f747ce3b2e5.exe