General
-
Target
2025-04-07_ffd722200e78a4b61d13e707bf850baf_black-basta_luca-stealer
-
Size
6.6MB
-
Sample
250407-srtpcswnz9
-
MD5
ffd722200e78a4b61d13e707bf850baf
-
SHA1
69f4db2ac3503d11d6808daec6e48ba76cc893bc
-
SHA256
7ffa9964e7802cbfe16569e23327427b4a893f23b8e0a5e7a71dc6979cb76ec6
-
SHA512
7804d970d4d9d7d55ca77ebc4d17824a17820eeae1491dbb386027a9de4a784f81fb65fc16d8b9d49289cf27a0636db01d6991b93a7915f45c0642bbf63b3120
-
SSDEEP
196608:eAqjTpnhXlmyWCZNulPKQ8hY/Bkr/fOIT/+VdlBFKazz:kfauN/HYOSIT/EVF9/
Malware Config
Targets
-
-
Target
2025-04-07_ffd722200e78a4b61d13e707bf850baf_black-basta_luca-stealer
-
Size
6.6MB
-
MD5
ffd722200e78a4b61d13e707bf850baf
-
SHA1
69f4db2ac3503d11d6808daec6e48ba76cc893bc
-
SHA256
7ffa9964e7802cbfe16569e23327427b4a893f23b8e0a5e7a71dc6979cb76ec6
-
SHA512
7804d970d4d9d7d55ca77ebc4d17824a17820eeae1491dbb386027a9de4a784f81fb65fc16d8b9d49289cf27a0636db01d6991b93a7915f45c0642bbf63b3120
-
SSDEEP
196608:eAqjTpnhXlmyWCZNulPKQ8hY/Bkr/fOIT/+VdlBFKazz:kfauN/HYOSIT/EVF9/
Score10/10-
Beapy
Beapy is a python worm with crypto mining capabilities.
-
Beapy family
-
Contacts a large (7369) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Grants admin privileges
Uses net.exe to modify the user's privileges.
-
Loads dropped DLL
-