Extracted

• • Target

    68efb77beeee93575e0fc2a7b7ce84d0bf89b20e88a1246920477ad4e9187302

  • Size

    1.9MB

  • MD5

    ae54e9d3b9909ddb4d6266895f20db06

  • SHA1

    f464501523fa460e6684b5fe3a40c53894de4ceb

  • SHA256

    68efb77beeee93575e0fc2a7b7ce84d0bf89b20e88a1246920477ad4e9187302

  • SHA512

    89d9076e9be36f8f8ce44a3741f3a67526f17470d82d9c396ab248bd967ffc065981c1257d432f5fc41316cdc727ee03a935ff9d7684b224195ad760ae1ffc5d

  • SSDEEP

    49152:q2cC3QPSTvzikJKIhR0QN+HGzAp2I1HxzxhYpyHfRx7Pq2:rMmvukJZhKQN6Gu2IPNhtPD

  Score

  10^/10

  gcleanerdiscoveryloader

  • GCleaner

    GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

    loadergcleaner

  • Gcleaner family

    gcleaner

  • Executes dropped EXE

  • Loads dropped DLL

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2