Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8fa853a4317364c26df409c70b32b37f145bbefc01ca397c2c20504d379a6bfa

  • Size

    246KB

  • Sample

    240626-ylj6mazhlf

  • MD5

    287fb827b00bf73f50f8ccc07543d53f

  • SHA1

    79e561af9a62f13081613ac9cbc1d49b63dac9c3

  • SHA256

    8fa853a4317364c26df409c70b32b37f145bbefc01ca397c2c20504d379a6bfa

  • SHA512

    b949f478958bed777d4de957091dc992a09c7e7e1d560c23c6e2ea9b49162e085b920c38ed33828e753d25d41728fb9125691865582e43397d274aec2c06df8f

  • SSDEEP

    3072:ohvQZELfgN7yzB+lUScQTqJs8Ts0aiWnBbgxFamFre823kh9Ko/KN:ohQELfpzB+WSJpBvZg6mFrex3G9K

Score
10/10
gcleanerloader

Malware Config

Extracted

Family

gcleaner

C2

185.172.128.90

5.42.64.56

185.172.128.69

Targets

    • Target

      8fa853a4317364c26df409c70b32b37f145bbefc01ca397c2c20504d379a6bfa

    • Size

      246KB

    • MD5

      287fb827b00bf73f50f8ccc07543d53f

    • SHA1

      79e561af9a62f13081613ac9cbc1d49b63dac9c3

    • SHA256

      8fa853a4317364c26df409c70b32b37f145bbefc01ca397c2c20504d379a6bfa

    • SHA512

      b949f478958bed777d4de957091dc992a09c7e7e1d560c23c6e2ea9b49162e085b920c38ed33828e753d25d41728fb9125691865582e43397d274aec2c06df8f

    • SSDEEP

      3072:ohvQZELfgN7yzB+lUScQTqJs8Ts0aiWnBbgxFamFre823kh9Ko/KN:ohQELfpzB+WSJpBvZg6mFrex3G9K

    Score
    10/10
    gcleanerloader

    • GCleaner

      GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

      loadergcleaner
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks