Extracted

• • Target

    13283b116e8bf86c865dc28f08666086ed44d5aa8feb89049ccd7fb02e3c4fac.exe

  • Size

    1.9MB

  • MD5

    79cd20b29db70baaeb0de7a4619cd527

  • SHA1

    404d53dbd6779ec1be46028de45c5f74a62a1fad

  • SHA256

    13283b116e8bf86c865dc28f08666086ed44d5aa8feb89049ccd7fb02e3c4fac

  • SHA512

    61e1a0f82d7a7f78e62ca06d6c92b3ee7d6e5adaceb4035b08411280b741b9c96a123ee30ac4a9d38342c21f8b00c6a3a79b0873ad2ade816bb27921ff5528b8

  • SSDEEP

    49152:dGwFJ+KLcqz5AQAstVprJyp+9uiYovdyVJGb4qP:4wFJpnnzkhi3Jb4qP

  Score

  10^/10

  gcleanerdiscoveryloader

  • GCleaner

    GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

    loadergcleaner

  • Gcleaner family

    gcleaner

  • Executes dropped EXE

  • Loads dropped DLL

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2