gcleaner | 2e245f347f9bac5f12935a24c14c5cda0f2558a90d084118a26c7c7af0ca8f27 | Triage

Sharing

General

Target

JaffaCakes118_2e245f347f9bac5f12935a24c14c5cda0f2558a90d084118a26c7c7af0ca8f27
Size

1.6MB
Sample

241224-qy2bnsypbl
MD5

d5c16b3012e24dee46c5b82988d8f6b5
SHA1

52c8b9a6b176769954511a8e973ec04b8126f923
SHA256

2e245f347f9bac5f12935a24c14c5cda0f2558a90d084118a26c7c7af0ca8f27
SHA512

8d1deccacdb8de008c10ad95a7ec98d6fe0d369e57a1bc6eb3d194eb67af8d0119e47fe5229cb08f2ea44a1f3473c2aa2de9d0acff88eefc6b2e1d5780dddafe
SSDEEP

6144:Udt56eh8ITcleMH9SDomjDBvMYos+CmDyZYIMsCIxl0J8ktMAOZ5g:Udt56ehi/H9SDomjDBvMYojCmDu71Jg

Score

10^/10

gcleaner

Malware Config

Extracted

Family

gcleaner

C2

208.67.104.97

85.31.46.167

Attributes

url_path
....!..../software.php

....!..../software.php

Targets

- Target
  
  JaffaCakes118_2e245f347f9bac5f12935a24c14c5cda0f2558a90d084118a26c7c7af0ca8f27
- Size
  
  1.6MB
- MD5
  
  d5c16b3012e24dee46c5b82988d8f6b5
- SHA1
  
  52c8b9a6b176769954511a8e973ec04b8126f923
- SHA256
  
  2e245f347f9bac5f12935a24c14c5cda0f2558a90d084118a26c7c7af0ca8f27
- SHA512
  
  8d1deccacdb8de008c10ad95a7ec98d6fe0d369e57a1bc6eb3d194eb67af8d0119e47fe5229cb08f2ea44a1f3473c2aa2de9d0acff88eefc6b2e1d5780dddafe
- SSDEEP
  
  6144:Udt56eh8ITcleMH9SDomjDBvMYos+CmDyZYIMsCIxl0J8ktMAOZ5g:Udt56ehi/H9SDomjDBvMYojCmDu71Jg
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2