Malware Signature

The following table shows a list of malware samples and the corresponding botnet C&C (ip:port) associated with GCleaner

Database Entry

Malware Samples

The table below documents all malware samples associated with this malware family.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2024-01-07 06:47:25	e9d75f74b01bf25c64ee9624a266e6e1	n/a	GCleaner	5.75.220.180:2024
2022-08-19 15:45:15	5f94efd697df0e7afdbdeb4f55789af1	34 / 68 (50.00%)	GCleaner	18.169.191.45:443
2022-08-13 06:09:37	65c3dba524c72f89b18636c8da76a6b3	51 / 68 (75.00%)	GCleaner	18.169.191.45:443
2022-08-08 05:50:19	d2ee9fe7a5e32b70bb22438049025aa6	38 / 69 (55.07%)	GCleaner	18.169.191.45:443
2021-12-01 19:21:19	3709698dfdf7fa9c2f4a7b41ecad5e13	34 / 67 (50.75%)	GCleaner	95.217.25.51:443
2021-12-01 00:17:28	e6dc17c601029f8009574f5776db1ead	31 / 64 (48.44%)	GCleaner	116.202.14.219:443
2021-12-01 00:16:29	e6dc17c601029f8009574f5776db1ead	31 / 64 (48.44%)	GCleaner	194.104.136.42:443
2021-11-30 23:55:13	e5013b1a7cab7a0d10e305e5f084257b	47 / 68 (69.12%)	GCleaner	116.202.14.219:443
2021-11-30 15:16:38	757f76cf67c1a5f7cfaff302cb09316f	37 / 68 (54.41%)	GCleaner	116.202.14.219:443
2021-11-29 12:20:07	af5c7d8c68b011b93a4bdcef9bd1a84c	38 / 67 (56.72%)	GCleaner	116.202.14.219:443
2021-11-29 11:25:46	af218f4498151f4b4656ff4b8d1c4e3c	30 / 65 (46.15%)	GCleaner	116.202.14.219:443
2021-11-29 02:55:13	ac70b5e9e7aa375f6f506853bb9cfd6c	38 / 65 (58.46%)	GCleaner	116.202.14.219:443
2021-11-28 11:42:07	a924a0452616fa7779fc1d45dbdf1605	31 / 68 (45.59%)	GCleaner	116.202.14.219:443
2021-11-28 09:49:15	a84f54f6918841c6e98375724c80a7d8	38 / 68 (55.88%)	GCleaner	116.202.14.219:443
2021-11-26 22:16:36	55753d4760376f2f5f33e22178cf8dd2	50 / 67 (74.63%)	GCleaner	116.202.14.219:443
2021-11-26 18:14:53	590f1f37bd82f3e99c0fbd0667b07dc6	43 / 68 (63.24%)	GCleaner	116.202.14.219:443
2021-11-26 16:41:09	194020bb0313b3175b0fb2e56d462e3c	38 / 68 (55.88%)	GCleaner	116.202.14.219:443
2021-11-26 14:05:18	9df64048442f3e2359167b4557bef2c8	36 / 64 (56.25%)	GCleaner	116.202.14.219:443
2021-11-26 05:36:52	f834091b4de8d18388584e1498c9ce2b	35 / 68 (51.47%)	GCleaner	116.202.14.219:443
2021-11-26 04:35:50	e2084eb43696aa09bf973398318c2d84	51 / 67 (76.12%)	GCleaner	116.202.14.219:443
2021-11-26 02:28:26	b5d2dba4184fc288fc7597f8141699c2	34 / 65 (52.31%)	GCleaner	95.217.25.51:443
2021-11-25 11:32:10	a3cba29311cb73222d980c05415d11e3	32 / 66 (48.48%)	GCleaner	116.202.14.219:443
2021-11-25 11:32:04	a3cba29311cb73222d980c05415d11e3	32 / 66 (48.48%)	GCleaner	95.217.25.51:443
2021-11-23 23:18:21	4d7d74bab05b2bfda9704f4ad8278de8	46 / 69 (66.67%)	GCleaner	116.202.14.219:443
2021-11-23 22:22:26	09d5cb1ce36967235ccae5c7e5d81ddc	32 / 64 (50.00%)	GCleaner	185.92.74.18:3391
2021-11-23 22:22:08	09d5cb1ce36967235ccae5c7e5d81ddc	32 / 64 (50.00%)	GCleaner	116.202.14.219:443
2021-11-23 16:21:23	f4405d3dd08690d4ce4e9a02d4c641df	38 / 68 (55.88%)	GCleaner	116.202.14.219:443
2021-11-21 13:11:39	b095d0491db2ef0c9687b7c480496090	35 / 68 (51.47%)	GCleaner	95.217.25.51:443
2021-11-20 20:08:48	04c2b2a0502688ae129b7907173783b3	43 / 67 (64.18%)	GCleaner	95.217.25.51:443
2021-11-18 16:54:19	de1bde01da720e04a025f91e06948229	39 / 66 (59.09%)	GCleaner	95.217.25.51:443
2021-11-18 13:53:13	dc099eca424486276efa63f740e84f15	33 / 68 (48.53%)	GCleaner	95.217.25.51:443
2021-11-17 23:20:32	4e752a245df4403ba8b9f12b6e6ae0b1	42 / 68 (61.76%)	GCleaner	95.217.25.51:443
2021-11-15 11:22:42	a963a400a0697abb833b19482962c7a7	36 / 67 (53.73%)	GCleaner	95.217.25.51:443
2021-11-09 11:43:40	7cdd8a8e0fab1b1661cac6b8a442bc6a	54 / 69 (78.26%)	GCleaner	95.217.25.51:443
2021-11-09 11:41:27	7d4ed604a4f010d09afd1b2c396d396f	50 / 67 (74.63%)	GCleaner	95.217.25.51:443
2021-05-24 18:58:45	03cf681e30963db4648810fd680b5b66	16 / 69 (23.19%)	GCleaner	35.197.240.92:443
2021-05-24 18:58:45	03cf681e30963db4648810fd680b5b66	16 / 69 (23.19%)	GCleaner	35.197.240.92:443