Extracted

• • Target

    0518341cbc2822c84c73a16a12c6485f8188ad77a3a3e4115cd1b3fa8ff74922

  • Size

    1.1MB

  • MD5

    278cd64ea860cd9f5b5160752f13e97f

  • SHA1

    eccfd704817342c13bc36ddd70bcda17774d1f50

  • SHA256

    0518341cbc2822c84c73a16a12c6485f8188ad77a3a3e4115cd1b3fa8ff74922

  • SHA512

    4683cda552248ab42f3a3a99982df0c5fa5bf5423056c7a93870bf9c4d3e4792937f7b9b24d6c2650e5537af4b9a5c901519af2e587bdd8ee9e38b95bdb5d0ce

  • SSDEEP

    24576:SfOyjmeXOfWz84W4EFbWQktEUR4IfOUDXH+Itsl0zJEHbE8g7q:SGZ2fz84Ekt8IfrDXH+cdEXN

  Score

  10^/10

  gcleanerdiscoveryloader

  • GCleaner

    GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

    loadergcleaner

  • Gcleaner family

    gcleaner

  • Executes dropped EXE

  • Loads dropped DLL

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2