gcleaner | 27056b49e0fe09639113c638bacd8773445ce3365b11059a8f66a436ca57c10d | Triage

Submit
Reports

Overview

overview

Static

static

3

c566c71c00...18.exe

windows7-x64

c566c71c00...18.exe

windows10-2004-x64

Sharing

General

Target

c566c71c00095c6246783790cd1556b5_JaffaCakes118
Size

385KB
Sample

241205-clcwnaynep
MD5

c566c71c00095c6246783790cd1556b5
SHA1

767f2b25a2457bd29fd19eb7ad9d09cd9c488ea5
SHA256

27056b49e0fe09639113c638bacd8773445ce3365b11059a8f66a436ca57c10d
SHA512

2f2896416dd757d5202544f4d3dfa688e81ea5289fbbbd4625bce0d74f7ee4faf2ca34e9fa68f702876ad3531836c552e24b9ee94c9d67f646d7acb65f97e748
SSDEEP

6144:yh+APDQ126OvAVJyD1kGmeXC78Ly/zC7j+cyXEDsCN:RAPk126OYVJFGme2rzg+XazN

Score

10^/10

gcleaner onlylogger discovery loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

c566c71c00095c6246783790cd1556b5_JaffaCakes118.exe

Resource

win7-20240708-en

gcleaner onlylogger discovery loader

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

c566c71c00095c6246783790cd1556b5_JaffaCakes118.exe

Resource

win10v2004-20241007-en

gcleaner onlylogger discovery loader

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Extracted

Family

gcleaner

C2

gc-prtnrs.top

gcc-prtnrs.top

Targets

- Target
  
  c566c71c00095c6246783790cd1556b5_JaffaCakes118
- Size
  
  385KB
- MD5
  
  c566c71c00095c6246783790cd1556b5
- SHA1
  
  767f2b25a2457bd29fd19eb7ad9d09cd9c488ea5
- SHA256
  
  27056b49e0fe09639113c638bacd8773445ce3365b11059a8f66a436ca57c10d
- SHA512
  
  2f2896416dd757d5202544f4d3dfa688e81ea5289fbbbd4625bce0d74f7ee4faf2ca34e9fa68f702876ad3531836c552e24b9ee94c9d67f646d7acb65f97e748
- SSDEEP
  
  6144:yh+APDQ126OvAVJyD1kGmeXC78Ly/zC7j+cyXEDsCN:RAPk126OYVJFGme2rzg+XazN
Score

10^/10

gcleaner onlylogger discovery loader
- GCleaner
  GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.
  loader gcleaner
- Gcleaner family
  gcleaner
- OnlyLogger
  A tiny loader that uses IPLogger to get its payload.
  loader onlylogger
- Onlylogger family
  onlylogger
- OnlyLogger payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

gcleaneronlyloggerdiscoveryloader

behavioral2

gcleaneronlyloggerdiscoveryloader

© 2018-2025

Terms | Privacy