Resubmissions

24-11-2022 16:31

221124-t1lwjsae9x 10

25-10-2022 09:21

221025-lbcbtacbd5 8

General

  • Target

    b491f711272344f719ee13d98ff337bf.exe

  • Size

    7KB

  • Sample

    221124-t1lwjsae9x

  • MD5

    b491f711272344f719ee13d98ff337bf

  • SHA1

    f6f621d78adba380fd5da1e5b20e51b10e072d5f

  • SHA256

    453755b23c6df8cb1b2955135fe5aa8295eb0ce984f946967847b59cd87239e2

  • SHA512

    fe2be4e97f5d20d155bf30c2a5399923c20509fc096dd5abc38d32a08db627f0fdc78bde6699f0c01e50d3aa56b83c88f0b565c68b50e014e91ba4f92e30cc1f

  • SSDEEP

    96:J0yVUrfA9pHTz6mOZDmuitgWeBksyixDIWlVOZBPTRsP0M:ZVz9JDOZadaWeuli95iTu

Score
10/10

Malware Config

Extracted

Family

laplas

C2

clipper.guru

Attributes
api_key
79af1e5a26dc8ad71542cfa94bd6c11764fd9f9531b1e509278be5b87528ae46

Targets

    • Target

      b491f711272344f719ee13d98ff337bf.exe

    • Size

      7KB

    • MD5

      b491f711272344f719ee13d98ff337bf

    • SHA1

      f6f621d78adba380fd5da1e5b20e51b10e072d5f

    • SHA256

      453755b23c6df8cb1b2955135fe5aa8295eb0ce984f946967847b59cd87239e2

    • SHA512

      fe2be4e97f5d20d155bf30c2a5399923c20509fc096dd5abc38d32a08db627f0fdc78bde6699f0c01e50d3aa56b83c88f0b565c68b50e014e91ba4f92e30cc1f

    • SSDEEP

      96:J0yVUrfA9pHTz6mOZDmuitgWeBksyixDIWlVOZBPTRsP0M:ZVz9JDOZadaWeuli95iTu

    Score
    10/10
    • Laplas Clipper

      Laplas is a crypto wallet stealer with two variants written in Golang and C#.

    • Executes dropped EXE

MITRE ATT&CK Matrix

Collection

    Command and Control

      Credential Access

        Defense Evasion

          Discovery

            Execution

              Exfiltration

                Impact

                  Initial Access

                    Lateral Movement

                      Persistence

                      Privilege Escalation

                        Tasks