gcleaner | 0324ed97cb23b8472d5afe8a05118e7207d492009ddb91329fac80406fcece07 | Triage

Sharing

General

Target

1036-199-0x0000000000400000-0x000000000042F000-memory.dmp
Size

188KB
Sample

250209-pta39a1jep
MD5

a64bd2768db46dc7ce6907c1b2bef3b4
SHA1

d1b179c62f40e9c2764ef9a9e3bbb8b579e95ef7
SHA256

0324ed97cb23b8472d5afe8a05118e7207d492009ddb91329fac80406fcece07
SHA512

65698a64bbc4b12a3cc2db54a9ed83f01aee4328df195eb86c48b5de62351107de9bc3a5937fb88960ecb52f357ef8013b17a06faf857118ad61a8be56a75328
SSDEEP

3072:Jok9o3s4V6lyB2FpacJam0YemgJvICtaB+RTcpSQP+/Y5970/4P+CYpF/PquRq4I:uk9o3sblyB2FpacJam0YemgJvICtaB+E

Score

10^/10

gcleaner discovery

Malware Config

Targets

- Target
  
  1036-199-0x0000000000400000-0x000000000042F000-memory.dmp
- Size
  
  188KB
- MD5
  
  a64bd2768db46dc7ce6907c1b2bef3b4
- SHA1
  
  d1b179c62f40e9c2764ef9a9e3bbb8b579e95ef7
- SHA256
  
  0324ed97cb23b8472d5afe8a05118e7207d492009ddb91329fac80406fcece07
- SHA512
  
  65698a64bbc4b12a3cc2db54a9ed83f01aee4328df195eb86c48b5de62351107de9bc3a5937fb88960ecb52f357ef8013b17a06faf857118ad61a8be56a75328
- SSDEEP
  
  3072:Jok9o3s4V6lyB2FpacJam0YemgJvICtaB+RTcpSQP+/Y5970/4P+CYpF/PquRq4I:uk9o3sblyB2FpacJam0YemgJvICtaB+E
Score

8^/10

discovery
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2