gcleaner | 4272379ced0fed89dfc74a080cd17269b34bef293cbfe4bd424abd500bf367fa | Triage

Submit
Reports

Overview

overview

Static

static

3

f8db76628f...18.exe

windows7-x64

f8db76628f...18.exe

windows10-2004-x64

Sharing

General

Target

f8db76628f58ae7d66a95d134c04895f_JaffaCakes118
Size

379KB
Sample

241216-nwg4xayqav
MD5

f8db76628f58ae7d66a95d134c04895f
SHA1

484b08726669838820e166d7621559e1bec8c3a1
SHA256

4272379ced0fed89dfc74a080cd17269b34bef293cbfe4bd424abd500bf367fa
SHA512

77cca8a8565d7e84a2dbc88814eec3f52b2fcce88fcd56f791c25b2fe7bd0e213b7ce0f8cf987fb69306924831b02aa87076656b1845870dfb53c89f2254ffca
SSDEEP

6144:MmgDbiuBekKbKkNas2pevng1KuizqZhaNyG0Sbz:CauBekVkNas2Pgui+hu

Score

10^/10

gcleaner onlylogger discovery loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f8db76628f58ae7d66a95d134c04895f_JaffaCakes118.exe

Resource

win7-20241010-en

gcleaner onlylogger discovery loader

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

f8db76628f58ae7d66a95d134c04895f_JaffaCakes118.exe

Resource

win10v2004-20241007-en

gcleaner onlylogger discovery loader

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Extracted

Family

gcleaner

C2

gc-prtnrs.top

gcc-prtnrs.top

Targets

- Target
  
  f8db76628f58ae7d66a95d134c04895f_JaffaCakes118
- Size
  
  379KB
- MD5
  
  f8db76628f58ae7d66a95d134c04895f
- SHA1
  
  484b08726669838820e166d7621559e1bec8c3a1
- SHA256
  
  4272379ced0fed89dfc74a080cd17269b34bef293cbfe4bd424abd500bf367fa
- SHA512
  
  77cca8a8565d7e84a2dbc88814eec3f52b2fcce88fcd56f791c25b2fe7bd0e213b7ce0f8cf987fb69306924831b02aa87076656b1845870dfb53c89f2254ffca
- SSDEEP
  
  6144:MmgDbiuBekKbKkNas2pevng1KuizqZhaNyG0Sbz:CauBekVkNas2Pgui+hu
Score

10^/10

gcleaner onlylogger discovery loader
- GCleaner
  GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.
  loader gcleaner
- Gcleaner family
  gcleaner
- OnlyLogger
  A tiny loader that uses IPLogger to get its payload.
  loader onlylogger
- Onlylogger family
  onlylogger
- OnlyLogger payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

gcleaneronlyloggerdiscoveryloader

behavioral2

gcleaneronlyloggerdiscoveryloader

© 2018-2024

Terms | Privacy