Extracted

• • Target

    3c6cbf57a00893bf5028318965d10c63fc1846b9c5ca84a4110b734eda93548f

  • Size

    2.4MB

  • MD5

    255bfd63416a65de7a4202e03c654a1d

  • SHA1

    71f55b7ed05b4b97c210cfa461db73816e76f623

  • SHA256

    3c6cbf57a00893bf5028318965d10c63fc1846b9c5ca84a4110b734eda93548f

  • SHA512

    eb7bf5ff1128c395cd72456c6b1f5dd4c802ab4a1abb3152e8999148ee2aba20da6de16695ece9d5febf0c78a9feb5ea94c64b496b3c34e26bdb72850ba26dcb

  • SSDEEP

    49152:Z2UCv1eNdZad18sod2siewLdGQDzBKnVNLZS6CSA5hq:MUsS8j8KgQkVNQLJDq

  Score

  10^/10

  gcleanerdiscoveryloader

  • GCleaner

    GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

    loadergcleaner

  • Gcleaner family

    gcleaner

  • Executes dropped EXE

  • Loads dropped DLL

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2