gcleaner | c1464be28feee46f92b6f7a31840a6eddadb8e8cb0af3104055f92eb63f3b21b | Triage

Sharing

General

Target

c1464be28feee46f92b6f7a31840a6eddadb8e8cb0af3104055f92eb63f3b21b.exe
Size

262KB
Sample

241226-gkpahsykgr
MD5

d790c94022ca1572cbc71b3fe1d78ced
SHA1

651832a42eeb51a9a28136b3be64f81b99905dd2
SHA256

c1464be28feee46f92b6f7a31840a6eddadb8e8cb0af3104055f92eb63f3b21b
SHA512

67cc80a390d25090e3837d446ce54020e5a102af76d7424140b97b89d7c04453d60507c262b38bf3628313d0ae008d3b0f37d413e8f609a4367072068c86462b
SSDEEP

3072:MsmZffApueDAyi6hWZLc6OHYbSSx9MKZRwM/J9XK9KVP5AKRr/bGTr6RCD:MsYfjeDA+cc6ulO9MFg9XOwp/C6RE

Score

10^/10

gcleaner discovery loader

Malware Config

Targets

- Target
  
  c1464be28feee46f92b6f7a31840a6eddadb8e8cb0af3104055f92eb63f3b21b.exe
- Size
  
  262KB
- MD5
  
  d790c94022ca1572cbc71b3fe1d78ced
- SHA1
  
  651832a42eeb51a9a28136b3be64f81b99905dd2
- SHA256
  
  c1464be28feee46f92b6f7a31840a6eddadb8e8cb0af3104055f92eb63f3b21b
- SHA512
  
  67cc80a390d25090e3837d446ce54020e5a102af76d7424140b97b89d7c04453d60507c262b38bf3628313d0ae008d3b0f37d413e8f609a4367072068c86462b
- SSDEEP
  
  3072:MsmZffApueDAyi6hWZLc6OHYbSSx9MKZRwM/J9XK9KVP5AKRr/bGTr6RCD:MsYfjeDA+cc6ulO9MFg9XOwp/C6RE
Score

10^/10

gcleaner discovery loader
- GCleaner
  GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.
  loader gcleaner
- Gcleaner family
  gcleaner
- Downloads MZ/PE file
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

gcleanerdiscoveryloader

behavioral2

gcleanerdiscoveryloader