gcleaner | 094b7f0625af31d2edeb6803570e92e9a58d0cd2e08974f67b0b03dcf3732ec0 | Triage

Sharing

General

Target

JaffaCakes118_094b7f0625af31d2edeb6803570e92e9a58d0cd2e08974f67b0b03dcf3732ec0
Size

1.6MB
Sample

241226-ysyycsxqcm
MD5

95b94f130a0f60ccc0f5d205c7bc75d6
SHA1

a23238b5c13e6701dcb05bb43945dd58979870a9
SHA256

094b7f0625af31d2edeb6803570e92e9a58d0cd2e08974f67b0b03dcf3732ec0
SHA512

44852a67dac13ae9e005358195978f6dc184d6767f84b43256ad6bb03425078891ddaefc1ab258eacb5835250c40e15a8a8cf034b60d6f64944e87b6211d5d56
SSDEEP

12288:Udt56ehi/H9SDomjDBvMYojCmDu7ehg7:ciXLDu

Score

10^/10

gcleaner

Malware Config

Extracted

Family

gcleaner

C2

208.67.104.97

85.31.46.167

Attributes

url_path
....!..../software.php

....!..../software.php

Targets

- Target
  
  JaffaCakes118_094b7f0625af31d2edeb6803570e92e9a58d0cd2e08974f67b0b03dcf3732ec0
- Size
  
  1.6MB
- MD5
  
  95b94f130a0f60ccc0f5d205c7bc75d6
- SHA1
  
  a23238b5c13e6701dcb05bb43945dd58979870a9
- SHA256
  
  094b7f0625af31d2edeb6803570e92e9a58d0cd2e08974f67b0b03dcf3732ec0
- SHA512
  
  44852a67dac13ae9e005358195978f6dc184d6767f84b43256ad6bb03425078891ddaefc1ab258eacb5835250c40e15a8a8cf034b60d6f64944e87b6211d5d56
- SSDEEP
  
  12288:Udt56ehi/H9SDomjDBvMYojCmDu7ehg7:ciXLDu
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2