NFgODbNY.exe

General
Target

NFgODbNY.exe

Size

6MB

Sample

210505-h5wxdl1ltn

Score
10 /10
MD5

5f6a74e286c98bbe45a6a667026813bc

SHA1

5d17945ebbb46e1f73ce15a8a110e0e1b6c165da

SHA256

863853bdbdb6ed3d644305d866286c1fa25255e62851f3d7bee5f3e2bcefaa98

SHA512

0f1f2e000dc7f0f7fff435fba887c19a9698e7004bea64baddafd17d96e4bbe1266f6ce9a27296d220ef7a6b17fab65e787e01e6a1e2aff4ea0fa1d58f84a701

Malware Config
Targets
Target

NFgODbNY.exe

MD5

5f6a74e286c98bbe45a6a667026813bc

Filesize

6MB

Score
10 /10
SHA1

5d17945ebbb46e1f73ce15a8a110e0e1b6c165da

SHA256

863853bdbdb6ed3d644305d866286c1fa25255e62851f3d7bee5f3e2bcefaa98

SHA512

0f1f2e000dc7f0f7fff435fba887c19a9698e7004bea64baddafd17d96e4bbe1266f6ce9a27296d220ef7a6b17fab65e787e01e6a1e2aff4ea0fa1d58f84a701

Tags

Signatures

  • Beapy

    Description

    Beapy is a python worm with crypto mining capabilities.

    Tags

  • Grants admin privileges

    Description

    Uses net.exe to modify the user's privileges.

    TTPs

    Account Manipulation
  • Modifies Windows Firewall

    Tags

    TTPs

    Modify Existing Service
  • Loads dropped DLL

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Exfiltration
            Impact
              Initial Access
                Lateral Movement
                  Privilege Escalation
                    Tasks

                    static1

                    3/10

                    behavioral1

                    10/10

                    behavioral2

                    9/10