Extracted

• • Target

    89933e297e5262f0894784b003f651329b63c93483b7693c409dc6da5800291f

  • Size

    2.4MB

  • MD5

    1f372e54cc90d16790ff3d5da8589eb1

  • SHA1

    549adfb998e6bf227655c4f3528bd6e871598526

  • SHA256

    89933e297e5262f0894784b003f651329b63c93483b7693c409dc6da5800291f

  • SHA512

    12655216ab7409eae10b25330206b6f422dbbd951ae0b99ec13fcbab4def86c4da4d545f35ee8e2bd5b8ef95bb6f0f86c2ff40df33bdb79596275800675aea19

  • SSDEEP

    49152:Z2nlzZ+Ncp4zJSh5G8i954M+GaWhUlrGzR3w9utaHNA5hq:Mnll+Nmh5U/4M+GaWhZnDq

  Score

  10^/10

  gcleanerdiscoveryloader

  • GCleaner

    GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

    loadergcleaner

  • Gcleaner family

    gcleaner

  • Executes dropped EXE

  • Loads dropped DLL

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2