Extracted

• • Target

    setup.exe

  • Size

    1.9MB

  • MD5

    2cab02f2e9bdffa47eabd1fe499cb659

  • SHA1

    dda9070cebb6e9f4cd452ab681815497d590a719

  • SHA256

    1e85dc00b32d476b0f48f95c74b4d414a91144f5b181815d55908067ac0f25c0

  • SHA512

    2b56cae6faa229365a7b1297ab5078fef485b6084ba5ac699cde93af700f831d92c58f5dcffd08b7ec7187b2b173036b4ddeb197b16f8c429f6e0136cc1b8079

  • SSDEEP

    49152:Z4W99T3jU5/iEhr9pk59e0GPkZs9M47Ke2t/vGlcC6H7WCag6lX:Zj/T3IFiA85GNKp5GlGH7W66lX

  Score

  10^/10

  laplasclipperpersistencestealer

  • Laplas Clipper

    Laplas is a crypto wallet stealer with three variants written in Golang, C#, and C++.

    stealerclipperlaplas

  • Executes dropped EXE

  • Loads dropped DLL

  • Adds Run key to start application

    persistence
  behavioral1behavioral2