General
-
Target
1e85dc00b32d476b0f48f95c74b4d414a91144f5b181815d55908067ac0f25c0
-
Size
1.9MB
-
Sample
230321-vwfz6seb6v
-
MD5
2cab02f2e9bdffa47eabd1fe499cb659
-
SHA1
dda9070cebb6e9f4cd452ab681815497d590a719
-
SHA256
1e85dc00b32d476b0f48f95c74b4d414a91144f5b181815d55908067ac0f25c0
-
SHA512
2b56cae6faa229365a7b1297ab5078fef485b6084ba5ac699cde93af700f831d92c58f5dcffd08b7ec7187b2b173036b4ddeb197b16f8c429f6e0136cc1b8079
-
SSDEEP
49152:Z4W99T3jU5/iEhr9pk59e0GPkZs9M47Ke2t/vGlcC6H7WCag6lX:Zj/T3IFiA85GNKp5GlGH7W66lX
Malware Config
Extracted
laplas
http://45.87.154.105
-
api_key
1c630872d348a77d04368d542fde4663bc2bcb96f1b909554db3472c08df2767
Targets
-
-
Target
1e85dc00b32d476b0f48f95c74b4d414a91144f5b181815d55908067ac0f25c0
-
Size
1.9MB
-
MD5
2cab02f2e9bdffa47eabd1fe499cb659
-
SHA1
dda9070cebb6e9f4cd452ab681815497d590a719
-
SHA256
1e85dc00b32d476b0f48f95c74b4d414a91144f5b181815d55908067ac0f25c0
-
SHA512
2b56cae6faa229365a7b1297ab5078fef485b6084ba5ac699cde93af700f831d92c58f5dcffd08b7ec7187b2b173036b4ddeb197b16f8c429f6e0136cc1b8079
-
SSDEEP
49152:Z4W99T3jU5/iEhr9pk59e0GPkZs9M47Ke2t/vGlcC6H7WCag6lX:Zj/T3IFiA85GNKp5GlGH7W66lX
Score10/10-
Laplas Clipper
Laplas is a crypto wallet stealer with three variants written in Golang, C#, and C++.
-
Executes dropped EXE
-
Adds Run key to start application
-