General

  • Target

    ec8fa1c70521e73b51c8316dcfa8b0be_JaffaCakes118

  • Size

    250KB

  • Sample

    241213-vveqqaxkdq

  • MD5

    ec8fa1c70521e73b51c8316dcfa8b0be

  • SHA1

    744280e7416ac94703cadd46a19e06d99e2c7a01

  • SHA256

    d30ebd026461f980294598a71714ca6f67f56952c88ff6e4b44d460b427301e0

  • SHA512

    db74d19dc150c15f2afc22db65d3c746e12d34025140384ba9fb27ccded07571088ad34fa9c4414c6006268147730f9b4867035c42307af3494cd061d4a9479c

  • SSDEEP

    3072:+EZn8hpiHLI2Eb/BUtMFOM7Sfu+llnIkfPWkz4XNxhZKtZFxwl+i55XkazK:rn87ALI2EDatAOez+lOk3w0tql+elO

Malware Config

Extracted

Family

gcleaner

C2

gc-prtnrs.top

gcc-prtnrs.top

Targets

    • Target

      ec8fa1c70521e73b51c8316dcfa8b0be_JaffaCakes118

    • Size

      250KB

    • MD5

      ec8fa1c70521e73b51c8316dcfa8b0be

    • SHA1

      744280e7416ac94703cadd46a19e06d99e2c7a01

    • SHA256

      d30ebd026461f980294598a71714ca6f67f56952c88ff6e4b44d460b427301e0

    • SHA512

      db74d19dc150c15f2afc22db65d3c746e12d34025140384ba9fb27ccded07571088ad34fa9c4414c6006268147730f9b4867035c42307af3494cd061d4a9479c

    • SSDEEP

      3072:+EZn8hpiHLI2Eb/BUtMFOM7Sfu+llnIkfPWkz4XNxhZKtZFxwl+i55XkazK:rn87ALI2EDatAOez+lOk3w0tql+elO

    • GCleaner

      GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

    • Gcleaner family

    • OnlyLogger

      A tiny loader that uses IPLogger to get its payload.

    • Onlylogger family

    • OnlyLogger payload

MITRE ATT&CK Enterprise v15

Tasks