beapy | b336603af24c8f6b0833dd161731cddae3d3daee8703201c630ecfbcb08f8880 | Triage

Submit
Reports

Overview

overview

Static

static

3

b336603af2...80.exe

windows10-2004-x64

Sharing

General

Target

b336603af24c8f6b0833dd161731cddae3d3daee8703201c630ecfbcb08f8880
Size

6.6MB
Sample

250413-c6wjhaxthw
MD5

6b9d09f0bdb6c3e5a7a32c0d09c28bb5
SHA1

a39c4d39472bb894fd2e82a21462e17638af52c8
SHA256

b336603af24c8f6b0833dd161731cddae3d3daee8703201c630ecfbcb08f8880
SHA512

4649665bf1a652637291c10ed002abc5a60a2259586017a1b6dba77e29ac18f9d2277868c5633d8bbafcf7d926c59353a23c19596db14602b557ca9586d34c53
SSDEEP

196608:eAqjTpnhXlmyWCZNulPKQ8hY/Bkr/fOIT/+VdlBFKazP:kfauN/HYOSIT/EVF9r

Score

10^/10

beapy discovery miner pyinstaller worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

b336603af24c8f6b0833dd161731cddae3d3daee8703201c630ecfbcb08f8880.exe

Resource

win10v2004-20250410-en

beapy discovery miner worm

windows10-2004-x64

15 signatures

150 seconds

Malware Config

Targets

- Target
  
  b336603af24c8f6b0833dd161731cddae3d3daee8703201c630ecfbcb08f8880
- Size
  
  6.6MB
- MD5
  
  6b9d09f0bdb6c3e5a7a32c0d09c28bb5
- SHA1
  
  a39c4d39472bb894fd2e82a21462e17638af52c8
- SHA256
  
  b336603af24c8f6b0833dd161731cddae3d3daee8703201c630ecfbcb08f8880
- SHA512
  
  4649665bf1a652637291c10ed002abc5a60a2259586017a1b6dba77e29ac18f9d2277868c5633d8bbafcf7d926c59353a23c19596db14602b557ca9586d34c53
- SSDEEP
  
  196608:eAqjTpnhXlmyWCZNulPKQ8hY/Bkr/fOIT/+VdlBFKazP:kfauN/HYOSIT/EVF9r
Score

10^/10

beapy discovery miner worm
- Beapy
  Beapy is a python worm with crypto mining capabilities.
  miner worm beapy
- Beapy family
  beapy
- Contacts a large (7910) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Grants admin privileges
  Uses net.exe to modify the user's privileges.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

Persistence

Account Manipulation

Privilege Escalation

Account Manipulation

Defense Evasion

Credential Access

Discovery

Domain Trust Discovery

Network Service Discovery

Permission Groups Discovery

Domain Groups

Local Groups

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

beapydiscoveryminerworm

© 2018-2025

Terms | Privacy