General

  • Target

    76cc8757ee316be0f5df4dc50c3a037c80c973010bf14865530c6565ed9dd6cc

  • Size

    1.9MB

  • Sample

    230319-wdvahshd79

  • MD5

    43c579b61538e72afa5307046c2f110d

  • SHA1

    b8c34206cec5c7993ec20c4bf6ce78c024179137

  • SHA256

    76cc8757ee316be0f5df4dc50c3a037c80c973010bf14865530c6565ed9dd6cc

  • SHA512

    3b4dfeea0d5c44bb419eba2a063d4ecee83862b2a06aae446b7a591c60bce93dfcd58c382a72d597a302ea12be3efa6711fb9791b34c85faed5867c3bef59d52

  • SSDEEP

    49152:TWtQzK/HdYuPKuWoUhjlT0O5Ch05Tjij:TLK/HSuPKuWZhjt0OQqJj6

Malware Config

Extracted

Family

laplas

C2

http://45.87.154.105

Attributes
  • api_key

    1c630872d348a77d04368d542fde4663bc2bcb96f1b909554db3472c08df2767

Targets

    • Target

      76cc8757ee316be0f5df4dc50c3a037c80c973010bf14865530c6565ed9dd6cc

    • Size

      1.9MB

    • MD5

      43c579b61538e72afa5307046c2f110d

    • SHA1

      b8c34206cec5c7993ec20c4bf6ce78c024179137

    • SHA256

      76cc8757ee316be0f5df4dc50c3a037c80c973010bf14865530c6565ed9dd6cc

    • SHA512

      3b4dfeea0d5c44bb419eba2a063d4ecee83862b2a06aae446b7a591c60bce93dfcd58c382a72d597a302ea12be3efa6711fb9791b34c85faed5867c3bef59d52

    • SSDEEP

      49152:TWtQzK/HdYuPKuWoUhjlT0O5Ch05Tjij:TLK/HSuPKuWZhjt0OQqJj6

    • Laplas Clipper

      Laplas is a crypto wallet stealer with three variants written in Golang, C#, and C++.

    • Executes dropped EXE

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.