laplas | 4720-182-0x0000000000790000-0x000000000136A000-memory[.]dmp

General

Target

4720-182-0x0000000000790000-0x000000000136A000-memory.dmp
Size

5.3MB
MD5

93fdc532d8e93f4365acf21ba92443ce
SHA1

baecab852a750f25d7d6ca5b4ff9d285b14ed44f
SHA256

1a9fabda30b0e48c18d8e85021b70fdebc44153fa735310aaba29d4b6116267d
SHA512

5b9096e94cd31798c265bf203caef83bea10df544161570357174eb92d97952f35916e864151eca12282b785f8a534a3f10c4b642eb03355348813c844cf3213
SSDEEP

49152:EnKkCyLb+TXXsZ5vAaE5FKY/t7gogzGo3yanw2350xO39YMGjDJqNsC6LDNiRoRE:EKl6YHsZbogzryar0YK1WW815NZN/

Score

10^/10

laplas

Malware Config

Extracted

Family

laplas

C2

185.223.93.251

Attributes

api_key
f0cd0c3938331a84425c6e784f577ccd87bb667cfdb44cc24f97f402ac5e15b7

Signatures

Laplas family
laplas

Files

4720-182-0x0000000000790000-0x000000000136A000-memory.dmp
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 401KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 988B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp-.!0
Size: - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.symtab
Size: - Virtual size: 4B

IMAGE_SCN_MEM_READ

.vmp-.!1
Size: - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vmp-.!2
Size: 1024B - Virtual size: 580B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp-.!3
Size: 5.2MB - Virtual size: 5.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 174KB - Virtual size: 240KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Extracted

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: - Virtual size: 2.3MB

.rdata Size: - Virtual size: 2.0MB

.data Size: - Virtual size: 401KB

.idata Size: - Virtual size: 988B

.vmp-.!0 Size: - Virtual size: 93KB

.symtab Size: - Virtual size: 4B

.vmp-.!1 Size: - Virtual size: 1.6MB

.vmp-.!2 Size: 1024B - Virtual size: 580B

.vmp-.!3 Size: 5.2MB - Virtual size: 5.2MB

.reloc Size: 1KB - Virtual size: 1KB

.rsrc Size: 174KB - Virtual size: 240KB

.text
Size: - Virtual size: 2.3MB

.rdata
Size: - Virtual size: 2.0MB

.data
Size: - Virtual size: 401KB

.idata
Size: - Virtual size: 988B

.vmp-.!0
Size: - Virtual size: 93KB

.symtab
Size: - Virtual size: 4B

.vmp-.!1
Size: - Virtual size: 1.6MB

.vmp-.!2
Size: 1024B - Virtual size: 580B

.vmp-.!3
Size: 5.2MB - Virtual size: 5.2MB

.reloc
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 174KB - Virtual size: 240KB