gcleaner | 32be3ccbd44f3eed0b74fdbbf9d523e3d820586a6735592d5377bd29e82c1b3e | Triage

Sharing

General

Target

002c49e70e8d35672abaa11cea30d2d8.exe
Size

330KB
Sample

250126-rxprxstpdt
MD5

002c49e70e8d35672abaa11cea30d2d8
SHA1

cac3845432b9354c7e60106c2fc4c75d22854c41
SHA256

32be3ccbd44f3eed0b74fdbbf9d523e3d820586a6735592d5377bd29e82c1b3e
SHA512

abefb3422c69c57ecf08d66baa2842c6b7a3e8091e47d985086b07dcf54fc0b77c89f67a6ae86b51dae50fd3a3043904b734dbf4896cc8be99c4d344df15bb86
SSDEEP

3072:8toz1iX/UjIjMV9h6d5rAm8qYs4kXd2fxQq5GoRN3KM/efKHzaXZYk+7K5LAU:L1icJV8CDpkXd2fxZZNAKTqYk+S

Score

10^/10

gcleaner discovery loader

Malware Config

Targets

- Target
  
  002c49e70e8d35672abaa11cea30d2d8.exe
- Size
  
  330KB
- MD5
  
  002c49e70e8d35672abaa11cea30d2d8
- SHA1
  
  cac3845432b9354c7e60106c2fc4c75d22854c41
- SHA256
  
  32be3ccbd44f3eed0b74fdbbf9d523e3d820586a6735592d5377bd29e82c1b3e
- SHA512
  
  abefb3422c69c57ecf08d66baa2842c6b7a3e8091e47d985086b07dcf54fc0b77c89f67a6ae86b51dae50fd3a3043904b734dbf4896cc8be99c4d344df15bb86
- SSDEEP
  
  3072:8toz1iX/UjIjMV9h6d5rAm8qYs4kXd2fxQq5GoRN3KM/efKHzaXZYk+7K5LAU:L1icJV8CDpkXd2fxZZNAKTqYk+S
Score

10^/10

gcleaner discovery loader
- GCleaner
  GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.
  loader gcleaner
- Gcleaner family
  gcleaner
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

gcleanerdiscoveryloader

behavioral2

gcleanerdiscoveryloader