laplas | bdf326424f960a66d01dd645db9fd335a157ceb86d7f482ff15205fa7d9cc7b0 | Triage

Sharing

General

Target

bdf326424f960a66d01dd645db9fd335a157ceb86d7f482ff15205fa7d9cc7b0
Size

1.8MB
Sample

230817-enkemagh81
MD5

e5cbc0114ff238740e72e907ad20223c
SHA1

98c5d3c714adb3fbef71c19eaaa53cb680dd2d91
SHA256

bdf326424f960a66d01dd645db9fd335a157ceb86d7f482ff15205fa7d9cc7b0
SHA512

7049adad987de004b179198aa72910c9bc47f5f0095032cc44a9c409bc6337150b05a208e47919e276c74bbbb9bfa1bee6b58575b2176083e0210af6ce9c9b92
SSDEEP

49152:bm/7cijxOPr17ocI5ut5TrCEJ5GtFRpr:bm/7cijcPr9ocI5K5NjGnL

Score

10^/10

laplas clipper persistence stealer

Malware Config

Extracted

Family

laplas

C2

http://clipper.guru

Attributes

api_key
0be23a6bec914a7d28f1aae995f036fdba93224093ddb48d02fe43e814862f4e

Extracted

Family

laplas

C2

http://clipper.guru

Attributes

api_key
0be23a6bec914a7d28f1aae995f036fdba93224093ddb48d02fe43e814862f4e

Targets

- Target
  
  bdf326424f960a66d01dd645db9fd335a157ceb86d7f482ff15205fa7d9cc7b0
- Size
  
  1.8MB
- MD5
  
  e5cbc0114ff238740e72e907ad20223c
- SHA1
  
  98c5d3c714adb3fbef71c19eaaa53cb680dd2d91
- SHA256
  
  bdf326424f960a66d01dd645db9fd335a157ceb86d7f482ff15205fa7d9cc7b0
- SHA512
  
  7049adad987de004b179198aa72910c9bc47f5f0095032cc44a9c409bc6337150b05a208e47919e276c74bbbb9bfa1bee6b58575b2176083e0210af6ce9c9b92
- SSDEEP
  
  49152:bm/7cijxOPr17ocI5ut5TrCEJ5GtFRpr:bm/7cijcPr9ocI5K5NjGnL
Score

10^/10

laplas clipper persistence stealer
- Laplas Clipper
  Laplas is a crypto wallet stealer with three variants written in Golang, C#, and C++.
  stealer clipper laplas
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

laplasclipperpersistencestealer

behavioral2

laplasclipperpersistencestealer