bumblebee | 7751a09b3c1146b5db72be1218287da6fd4c65813a1eb9ae5e0389db879daaeb | Triage

Submit
Reports

Overview

overview

Static

static

7751a09b3c...eb.dll

windows7-x64

7751a09b3c...eb.dll

windows10-2004-x64

Sharing

Static task

static1

r_traits@_w@std@@@std@@@std@@bumblebee

1 signatures

Behavioral task

behavioral1

Sample

7751a09b3c1146b5db72be1218287da6fd4c65813a1eb9ae5e0389db879daaeb.dll

Resource

win7-20221111-en

bumblebee hsyishsmqu trojan

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

7751a09b3c1146b5db72be1218287da6fd4c65813a1eb9ae5e0389db879daaeb.dll

Resource

win10v2004-20220812-en

bumblebee hsyishsmqu trojan

windows10-2004-x64

2 signatures

150 seconds

General

Target

7751a09b3c1146b5db72be1218287da6fd4c65813a1eb9ae5e0389db879daaeb
Size

1.4MB
MD5

12a99f8ae458862da2eddfb661ae7ced
SHA1

f5f31414a29dac9e35888cd48a980d702f99fe70
SHA256

7751a09b3c1146b5db72be1218287da6fd4c65813a1eb9ae5e0389db879daaeb
SHA512

660032ffdb21aebda0ac30d363b198dab70187c3848c3e9c727f02b00e5ecd351bc85e1bd5b2fb4d568a90c2ce5ad2a058e20b42d0aaff4b12bcb46cfee58526
SSDEEP

24576:g1GayIeFrnKgVGPCXr++xDTku+h5UZasJ2QfeFDXTZ9DztMa:ZQgVsCXfgu+h5UFpGFDN9D6a

Score

10^/10

r_traits@_w@std@@@std@@@std@@bumblebee

Malware Config

Extracted

Family

bumblebee

Botnet

r_traits@_W@std@@@std@@@std@@

rc4.plain

Signatures

Bumblebee family
bumblebee

Files

7751a09b3c1146b5db72be1218287da6fd4c65813a1eb9ae5e0389db879daaeb
.dll windows x64

83f847006bcd9e79aedb74fc499583c6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

shlwapi

StrToIntA
StrChrA
PathFindFileNameW

kernel32

VirtualFree
lstrcpyA
lstrcmpA
lstrcatA
GetProcAddress
FreeLibrary
VirtualAlloc
GetCurrentThread
GetCurrentThreadId
CloseHandle
GetModuleHandleW
VirtualProtectEx
LoadLibraryA
GetModuleHandleA
VirtualQuery
lstrlenA
VirtualQueryEx
GetCurrentProcess
UnmapViewOfFile

Exports

Exports

kDVMjxaxZYsr
setPath

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 468B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy