Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    02f6889d710902d4f374a0bfca0f7bda8922ebc66314a1d2a38ac5013afc9ea8

  • Size

    246KB

  • Sample

    240626-sznhba1bkg

  • MD5

    adfddffea7185b2d5b5419fa3b747bc9

  • SHA1

    e39c6e46ffb3fbd0bf8d9e227b88bfbe80d01667

  • SHA256

    02f6889d710902d4f374a0bfca0f7bda8922ebc66314a1d2a38ac5013afc9ea8

  • SHA512

    fc41444122bbf0e9b50c0c76b97482b1991656bd2390f548e44b8b19de57ab31239f094fefd14fff5dd7915f86ebad768cb76c22b44d7fbda8a0fbe2f657efce

  • SSDEEP

    3072:mdrSjQ55gUZT1FJoGCQn/f0FG1M2zMV8d4Q6v+KwolJSy9hTfU6:mcjQDl1FJoGBsFG1Mn8d4QG+KJt

Score
10/10
gcleanerloader

Malware Config

Extracted

Family

gcleaner

C2

185.172.128.90

5.42.64.56

185.172.128.69

Targets

    • Target

      02f6889d710902d4f374a0bfca0f7bda8922ebc66314a1d2a38ac5013afc9ea8

    • Size

      246KB

    • MD5

      adfddffea7185b2d5b5419fa3b747bc9

    • SHA1

      e39c6e46ffb3fbd0bf8d9e227b88bfbe80d01667

    • SHA256

      02f6889d710902d4f374a0bfca0f7bda8922ebc66314a1d2a38ac5013afc9ea8

    • SHA512

      fc41444122bbf0e9b50c0c76b97482b1991656bd2390f548e44b8b19de57ab31239f094fefd14fff5dd7915f86ebad768cb76c22b44d7fbda8a0fbe2f657efce

    • SSDEEP

      3072:mdrSjQ55gUZT1FJoGCQn/f0FG1M2zMV8d4Q6v+KwolJSy9hTfU6:mcjQDl1FJoGBsFG1Mn8d4QG+KJt

    Score
    10/10
    gcleanerloader

    • GCleaner

      GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

      loadergcleaner
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks