Overview

overview

7

Static

static

3

BetaFileEx....0.exe

windows7-x64

7

BetaFileEx....0.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    BetaFileExplorer2.0.exe

  • Size

    6.9MB

  • Sample

    221005-vd8x8sfbfp

  • MD5

    8625337bc45327b4c8a8663173e7fec6

  • SHA1

    1898530aa1b9c9a513a1064bad6274f57738b9d1

  • SHA256

    6f695e38f373a4a2c336d3e3f144a55e26f4c29e1b07f157554b3ea832cc2236

  • SHA512

    a1232d9c3e2275267f987368d1138ae964fab61cb9d9b3727d92f03b36579d7626293d1bdbfa6b2445375c093715c10342c37d58b189744eb3fa759ba29df4ef

  • SSDEEP

    196608:JawZPL2Vmd6+D/Wc/f/+SNEBqglXJH6Q5A4oKU:IIL2Vmd6mOc/eRRdJH67

Score
7/10
pyinstaller

Malware Config

Targets

    • Target

      BetaFileExplorer2.0.exe

    • Size

      6.9MB

    • MD5

      8625337bc45327b4c8a8663173e7fec6

    • SHA1

      1898530aa1b9c9a513a1064bad6274f57738b9d1

    • SHA256

      6f695e38f373a4a2c336d3e3f144a55e26f4c29e1b07f157554b3ea832cc2236

    • SHA512

      a1232d9c3e2275267f987368d1138ae964fab61cb9d9b3727d92f03b36579d7626293d1bdbfa6b2445375c093715c10342c37d58b189744eb3fa759ba29df4ef

    • SSDEEP

      196608:JawZPL2Vmd6+D/Wc/f/+SNEBqglXJH6Q5A4oKU:IIL2Vmd6mOc/eRRdJH67

    Score
    7/10

    • Loads dropped DLL

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

3
T1082

Query Registry

2
T1012

Peripheral Device Discovery

1
T1120

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks