laplas | bd7b6f6ef2d0adfb9b2e058fc46ad29ff1edffc648f9d7408745916bb8a2f310 | Triage

Submit
Reports

Overview

overview

Static

static

8

04dec944c7...9d.exe

windows7-x64

04dec944c7...9d.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

04dec944c709765f7a6e83a98a4e8b47f1c7759d
Size

4.5MB
Sample

230113-bdngracf57
MD5

e96fbf2c970cd9a9620f9b3de333ba07
SHA1

04dec944c709765f7a6e83a98a4e8b47f1c7759d
SHA256

bd7b6f6ef2d0adfb9b2e058fc46ad29ff1edffc648f9d7408745916bb8a2f310
SHA512

77b1d831984368ce49e57931f15e43e7dfec34b1edb3931c0309b84642faf8795ea6719f9aa3f852f0af4fbf38278b8a415ecac827a0213595123cb9e85be8ec
SSDEEP

98304:UeCcC0a1BkNYPTTkPxky/H+sKKq3xh43J7P:U1x0Ak2P/2HsK4h+

Score

10^/10

laplas stealer vmprotect

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

04dec944c709765f7a6e83a98a4e8b47f1c7759d.exe

Resource

win7-20221111-en

laplas stealer vmprotect

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

04dec944c709765f7a6e83a98a4e8b47f1c7759d.exe

Resource

win10v2004-20221111-en

laplas stealer vmprotect

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

laplas

C2

45.159.189.105

Attributes

api_key
7ee57b1f6d4aff08f9755119b18cf0754b677addcb6a3063066112b10a357a8e

Targets

- Target
  
  04dec944c709765f7a6e83a98a4e8b47f1c7759d
- Size
  
  4.5MB
- MD5
  
  e96fbf2c970cd9a9620f9b3de333ba07
- SHA1
  
  04dec944c709765f7a6e83a98a4e8b47f1c7759d
- SHA256
  
  bd7b6f6ef2d0adfb9b2e058fc46ad29ff1edffc648f9d7408745916bb8a2f310
- SHA512
  
  77b1d831984368ce49e57931f15e43e7dfec34b1edb3931c0309b84642faf8795ea6719f9aa3f852f0af4fbf38278b8a415ecac827a0213595123cb9e85be8ec
- SSDEEP
  
  98304:UeCcC0a1BkNYPTTkPxky/H+sKKq3xh43J7P:U1x0Ak2P/2HsK4h+
Score

10^/10

laplas stealer vmprotect
- Laplas Clipper
  Laplas is a crypto wallet stealer with two variants written in Golang and C#.
  stealer laplas
- Executes dropped EXE
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

laplasstealervmprotect

behavioral2

laplasstealervmprotect

© 2018-2025

Terms | Privacy