Overview

overview

10

Static

static

10

out_jaf.dll

windows7-x64

5

out_jaf.dll

windows10-2004-x64

5

Resubmissions

15-09-2022 15:21

220915-srhxvshbdq 10

08-09-2022 18:20

220908-wysmesfca5 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    out_jaf.dll

  • Size

    1.3MB

  • Sample

    220915-srhxvshbdq

  • MD5

    7e7faedd77c84d1386093be29d262fc9

  • SHA1

    e2ebba4f7eae6fb249a901ed10ef5672932fee87

  • SHA256

    b8b2f800c20f8fc42204b50f8bd173f0d706f874c5a3225dbd8240bb0b28750e

  • SHA512

    10eff3a123ac4efa416eb085f736c5c82fa8e5138676c36dc3875bbacd6d2b5c817e9da2b158bb10f631a4f63d4edca699d2c0e2d5ff8a0cd53160f6df571ea0

  • SSDEEP

    24576:7gQw2TP5IRwHRwK2Lxsdlpr5+kHK9Zx/uqLIRMjI4i3v06HYtvk:v9IROyfGlpRHK9Zx/FaMjIVvQ

Score
10/10
bumblebee0809

Malware Config

Extracted

Family

bumblebee

Botnet

0809

C2

146.59.116.54:443

209.141.57.29:443

154.56.0.101:443
rc4.plain

Targets

    • Target

      out_jaf.dll

    • Size

      1.3MB

    • MD5

      7e7faedd77c84d1386093be29d262fc9

    • SHA1

      e2ebba4f7eae6fb249a901ed10ef5672932fee87

    • SHA256

      b8b2f800c20f8fc42204b50f8bd173f0d706f874c5a3225dbd8240bb0b28750e

    • SHA512

      10eff3a123ac4efa416eb085f736c5c82fa8e5138676c36dc3875bbacd6d2b5c817e9da2b158bb10f631a4f63d4edca699d2c0e2d5ff8a0cd53160f6df571ea0

    • SSDEEP

      24576:7gQw2TP5IRwHRwK2Lxsdlpr5+kHK9Zx/uqLIRMjI4i3v06HYtvk:v9IROyfGlpRHK9Zx/FaMjIVvQ

    Score
    5/10

    • Suspicious use of NtCreateThreadExHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks