Overview

overview

10

Static

static

3

2025-04-07...er.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-04-07_a92c07feb41da1839b7f6babf89b07f7_black-basta_luca-stealer

  • Size

    6.6MB

  • Sample

    250407-yqj2esttcz

  • MD5

    a92c07feb41da1839b7f6babf89b07f7

  • SHA1

    7beca935da35024a703eb9062470692e96cd931c

  • SHA256

    4f6a279a026a9bfa162b99d3ed9b680e5973a0f5686fb57367f1d52648ff5fd5

  • SHA512

    ec6b9d7a9c27e55c68177af95525554509407c1fc798c58b398ae82a99b1e7c67ac76ac18288a99d05ccaded159795815f1c062e456337a2b601e5ee6ffeb1c6

  • SSDEEP

    196608:eAqjTpnhXlmyWCZNulPKQ8hY/Bkr/fOIT/+VdlBFKazq:kfauN/HYOSIT/EVF9O

Score
10/10
beapydiscoveryminerpyinstallerworm

Malware Config

Targets

    • Target

      2025-04-07_a92c07feb41da1839b7f6babf89b07f7_black-basta_luca-stealer

    • Size

      6.6MB

    • MD5

      a92c07feb41da1839b7f6babf89b07f7

    • SHA1

      7beca935da35024a703eb9062470692e96cd931c

    • SHA256

      4f6a279a026a9bfa162b99d3ed9b680e5973a0f5686fb57367f1d52648ff5fd5

    • SHA512

      ec6b9d7a9c27e55c68177af95525554509407c1fc798c58b398ae82a99b1e7c67ac76ac18288a99d05ccaded159795815f1c062e456337a2b601e5ee6ffeb1c6

    • SSDEEP

      196608:eAqjTpnhXlmyWCZNulPKQ8hY/Bkr/fOIT/+VdlBFKazq:kfauN/HYOSIT/EVF9O

    Score
    10/10
    beapydiscoveryminerworm

    • Beapy

      Beapy is a python worm with crypto mining capabilities.

      minerwormbeapy

    • Beapy family

      beapy

    • Contacts a large (7910) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Grants admin privileges

      Uses net.exe to modify the user's privileges.

    • Loads dropped DLL

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks