Desktop[.]zip | Triage

Submit
Reports

Overview

overview

Static

static

RzTgomzVMyYvLc.bat

windows7-x64

RzTgomzVMyYvLc.bat

windows10-2004-x64

nCguwHABqhXZAo.dll

windows7-x64

1

nCguwHABqhXZAo.dll

windows10-2004-x64

3

project details.lnk

windows7-x64

project details.lnk

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

RzTgomzVMyYvLc.bat

Resource

win7-20220812-en

bumblebee 1011 trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

RzTgomzVMyYvLc.bat

Resource

win10v2004-20220812-en

bumblebee 1011 trojan

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral3

Sample

nCguwHABqhXZAo.dll

Resource

win7-20220901-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

nCguwHABqhXZAo.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral5

Sample

project details.lnk

Resource

win7-20220901-en

bumblebee 1011 trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral6

Sample

project details.lnk

Resource

win10v2004-20220812-en

bumblebee 1011 trojan

windows10-2004-x64

6 signatures

150 seconds

General

Target

Desktop.zip
Size

706KB
MD5

26b34435fa570b40c586e98773742eea
SHA1

d44f21e163431cb828fb1e0e54b322ebc91a1b09
SHA256

30e5932e9173ed92579dc6549149d37cf949e3276d6ca33e7c224ae8546098b3
SHA512

5044ecaa02fec86c9a76ae002d3187b2d4ff602004ef2ba669f6e7220c2f7e0446dec7c392d096533c9dc6f49da37bb48d7a3385b7fa2f1202d7a5edfb978e14
SSDEEP

12288:AziN3xYcrpzWHOeG1gsGc6TG3nKQ2N1BsFGsyx8F53aJ03dw:IY3ScJeu1g6+GXKQ2/B6j7KO3dw

Score

N/A

Malware Config

Signatures

Files

Desktop.zip
.zip
RzTgomzVMyYvLc.bat
nCguwHABqhXZAo.dll
.dll windows x64

666955d398c9cd630b3d1a79b16d2ae4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetCurrentDirectoryA
CreateFileA
SetFileTime
CloseHandle
GetLastError
ConnectNamedPipe
DisconnectNamedPipe
VirtualAlloc
GetModuleFileNameA
GetModuleHandleA
SwitchToFiber
CreateFiber
CreateNamedPipeA
CreateActCtxA
ActivateActCtx

Exports

Exports

BNUsa5TT
JArEkuZ
ZxQXS269F
mruAlloc

Sections

.text
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 336KB - Virtual size: 335KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 436KB - Virtual size: 437KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
project details.lnk
.lnk

© 2018-2025

Terms | Privacy