bumblebee | bum_0109[.]bin | Triage

Submit
Reports

Overview

overview

Static

static

bum_0109.dll

windows7-x64

bum_0109.dll

windows10-2004-x64

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

bum_0109.dll

Resource

win7-20220901-en

bumblebee 0109 trojan

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

bum_0109.dll

Resource

win10v2004-20220812-en

bumblebee 0109 trojan

windows10-2004-x64

2 signatures

150 seconds

General

Target

bum_0109.bin
Size

1.1MB
MD5

7505f06d4c671c572f550cba3d34e2ea
SHA1

e59a8fd2d359443e11f94417f53cc9333dd8cfc7
SHA256

34781ec029c522322a117d0aee0de90eb6bb9f80f2c640c84f16ec6809f5723a
SHA512

5320d4fcd16088e42950907fa9109d0e7b8472676b8bd080d9e481ba6114c053ccbafa16122b4e6142ea2fe31ef05413f1a4094bb4d31597278ba7c053076e25
SSDEEP

24576:9x2ubccfCEN1Wpv9hOQn7G9Zx/tGggFQhrxtxcZfeoO:RTCyWN9QQnq9Zx/ZgShrxtyfeo

Score

10^/10

bumblebee

Malware Config

Signatures

Bumblebee family
bumblebee

Files

bum_0109.bin
.dll windows x64

83f847006bcd9e79aedb74fc499583c6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

shlwapi

StrToIntA
StrChrA
PathFindFileNameW

kernel32

VirtualFree
lstrcpyA
lstrcmpA
lstrcatA
GetProcAddress
FreeLibrary
VirtualAlloc
GetCurrentThread
GetCurrentThreadId
CloseHandle
GetModuleHandleW
VirtualProtectEx
LoadLibraryA
GetModuleHandleA
VirtualQuery
lstrlenA
VirtualQueryEx
GetCurrentProcess
UnmapViewOfFile

Exports

Exports

LiHPwRPmgYqo
setPath

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 468B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy