General

  • Target

    da8b2ceff64640f1ab5c0acd225762994b9830d50a1db77f7da09ca6f4e33a2e

  • Size

    1.8MB

  • Sample

    230716-jeej8sda53

  • MD5

    d5c139fe384e12358c394790b740a429

  • SHA1

    835188fc822341f9226c13412e00f45d666b85f2

  • SHA256

    da8b2ceff64640f1ab5c0acd225762994b9830d50a1db77f7da09ca6f4e33a2e

  • SHA512

    08c7781bfe816ff698e2b7cde8bf4a7c5581a2c7c372d1dc51375af5625b9b4132b380c2a2bdbc028f3ad3a02574baf312d1249acb26abc4585a3bfecc670506

  • SSDEEP

    49152:c8ePKunHP5Iax4v+f2w0GVbTRvCO75Sc7RMP:cjKuN7vJ75LRs

Malware Config

Extracted

Family

laplas

C2

http://clipper.guru

Attributes
  • api_key

    0be23a6bec914a7d28f1aae995f036fdba93224093ddb48d02fe43e814862f4e

Targets

    • Target

      da8b2ceff64640f1ab5c0acd225762994b9830d50a1db77f7da09ca6f4e33a2e

    • Size

      1.8MB

    • MD5

      d5c139fe384e12358c394790b740a429

    • SHA1

      835188fc822341f9226c13412e00f45d666b85f2

    • SHA256

      da8b2ceff64640f1ab5c0acd225762994b9830d50a1db77f7da09ca6f4e33a2e

    • SHA512

      08c7781bfe816ff698e2b7cde8bf4a7c5581a2c7c372d1dc51375af5625b9b4132b380c2a2bdbc028f3ad3a02574baf312d1249acb26abc4585a3bfecc670506

    • SSDEEP

      49152:c8ePKunHP5Iax4v+f2w0GVbTRvCO75Sc7RMP:cjKuN7vJ75LRs

    • Laplas Clipper

      Laplas is a crypto wallet stealer with three variants written in Golang, C#, and C++.

    • Executes dropped EXE

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks