28c1ae412c6434eb0407d7333cc281dabc1d461d4bbb0f9e709780cd37400951

General
Target

28c1ae412c6434eb0407d7333cc281dabc1d461d4bbb0f9e709780cd37400951

Size

6MB

Sample

210405-bbgkbqzyyn

Score
10 /10
MD5

611b27f49da01bbd6b68be24774924ec

SHA1

1e30a84b6e107f87750c996f3353e9d13ae27c62

SHA256

28c1ae412c6434eb0407d7333cc281dabc1d461d4bbb0f9e709780cd37400951

SHA512

ddb08d2b4f0ba7394469321cad4a4f11fd530e17346850808c780812af6494ecac0ecc1522d771230f27573e01c2b35009926f8c4e201ad51d03c7e783dde11f

Malware Config
Targets
Target

28c1ae412c6434eb0407d7333cc281dabc1d461d4bbb0f9e709780cd37400951

MD5

611b27f49da01bbd6b68be24774924ec

Filesize

6MB

Score
10/10
SHA1

1e30a84b6e107f87750c996f3353e9d13ae27c62

SHA256

28c1ae412c6434eb0407d7333cc281dabc1d461d4bbb0f9e709780cd37400951

SHA512

ddb08d2b4f0ba7394469321cad4a4f11fd530e17346850808c780812af6494ecac0ecc1522d771230f27573e01c2b35009926f8c4e201ad51d03c7e783dde11f

Tags

Signatures

  • Beapy

    Description

    Beapy is a python worm with crypto mining capabilities.

    Tags

  • Grants admin privileges

    Description

    Uses net.exe to modify the user's privileges.

    TTPs

    Account Manipulation
  • Loads dropped DLL

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Exfiltration
            Impact
              Initial Access
                Lateral Movement
                  Persistence
                  Privilege Escalation
                    Tasks

                    static1

                    3/10

                    behavioral1

                    10/10

                    behavioral2

                    9/10