Popup - CCleaner Professional | Try the world’s most trusted PC cleaner, free! (ccieaner.org)
Registered in the Russian Federation via PublicDomainRegistry on January 20, 2022 (updated January 21, 2022) - Whois ccieaner.org
VirusTotal - VirusTotal - File - 3783722b6a3fd6bb586b2cea378eb71fec75ec3c4d552818900fffc1b0291aab
Any.run - CCleaner-setup.zip (MD5: 870D67BF0A1800DA820478D591A2CB7B) - Interactive analysis - ANY.RUN
Associated Facebook Account - Clínica Odontológica Sorriso Plus | Facebook
Associated IP Addresses:
142.132.131.208
91.243.59.167
Program contains the Tiggre trojan and a variant of the RedLine stealer. All the information is sent to the hacker’s Discord server, as the download link is a link to a Discord attachment.