General

  • Target

    c54699a313556a143ce76e644f372233268433fb999f0176e37f610c15259bab.exe

  • Size

    313KB

  • Sample

    241207-dwq2pstkez

  • MD5

    eb9bccc442d6b508d152d65a450f9b7e

  • SHA1

    acd44eae521547d86d06c2da37b49f541f675e9f

  • SHA256

    c54699a313556a143ce76e644f372233268433fb999f0176e37f610c15259bab

  • SHA512

    aa6e51637c766234d14ef37968be40cd957c76857c7531cb04a542743c04866e63604bb033b1d6288aec536a9453d3aeece5a7a6ea5b2087c59b3cacae60cf22

  • SSDEEP

    6144:G66KVFow0i53eNTMEAnT/v3saQQ40r3RQ:7lVwNfArsaQKW

Malware Config

Extracted

Family

gcleaner

C2

92.63.197.221

45.91.200.135

Targets

    • Target

      c54699a313556a143ce76e644f372233268433fb999f0176e37f610c15259bab.exe

    • Size

      313KB

    • MD5

      eb9bccc442d6b508d152d65a450f9b7e

    • SHA1

      acd44eae521547d86d06c2da37b49f541f675e9f

    • SHA256

      c54699a313556a143ce76e644f372233268433fb999f0176e37f610c15259bab

    • SHA512

      aa6e51637c766234d14ef37968be40cd957c76857c7531cb04a542743c04866e63604bb033b1d6288aec536a9453d3aeece5a7a6ea5b2087c59b3cacae60cf22

    • SSDEEP

      6144:G66KVFow0i53eNTMEAnT/v3saQQ40r3RQ:7lVwNfArsaQKW

    • GCleaner

      GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

    • Gcleaner family

MITRE ATT&CK Enterprise v15

Tasks