beapy | 863853bdbdb6ed3d644305d866286c1fa25255e62851f3d7bee5f3e2bcefaa98 | Triage

Submit
Reports

Overview

overview

Static

static

3

NFgODbNY.exe

windows7_x64

NFgODbNY.exe

windows10_x64

9

Sharing

General

Target

NFgODbNY.exe
Size

6.6MB
Sample

210505-h5wxdl1ltn
MD5

5f6a74e286c98bbe45a6a667026813bc
SHA1

5d17945ebbb46e1f73ce15a8a110e0e1b6c165da
SHA256

863853bdbdb6ed3d644305d866286c1fa25255e62851f3d7bee5f3e2bcefaa98
SHA512

0f1f2e000dc7f0f7fff435fba887c19a9698e7004bea64baddafd17d96e4bbe1266f6ce9a27296d220ef7a6b17fab65e787e01e6a1e2aff4ea0fa1d58f84a701

Score

10^/10

beapy evasion miner pyinstaller worm

Static task

static1

Behavioral task

behavioral1

Sample

NFgODbNY.exe

Resource

win7v20210410

beapy evasion miner worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

NFgODbNY.exe

Resource

win10v20210408

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  NFgODbNY.exe
- Size
  
  6.6MB
- MD5
  
  5f6a74e286c98bbe45a6a667026813bc
- SHA1
  
  5d17945ebbb46e1f73ce15a8a110e0e1b6c165da
- SHA256
  
  863853bdbdb6ed3d644305d866286c1fa25255e62851f3d7bee5f3e2bcefaa98
- SHA512
  
  0f1f2e000dc7f0f7fff435fba887c19a9698e7004bea64baddafd17d96e4bbe1266f6ce9a27296d220ef7a6b17fab65e787e01e6a1e2aff4ea0fa1d58f84a701
Score

10^/10

beapy evasion miner worm
- Beapy
  Beapy is a python worm with crypto mining capabilities.
  miner worm beapy
- Grants admin privileges
  Uses net.exe to modify the user's privileges.
- Modifies Windows Firewall
  evasion
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

Command-Line Interface

Persistence

Account Manipulation

Modify Existing Service

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

beapyevasionminerworm

behavioral2

© 2018-2024

Terms | Privacy