Overview

overview

10

Static

static

10

BumbleBeeL...in.dll

windows7-x64

5

BumbleBeeL...in.dll

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    BumbleBeeLoader.bin.exe

  • Size

    1.4MB

  • Sample

    230304-k41z7sch2z

  • MD5

    d5917b4035dabf4e1df81fd79c4d2313

  • SHA1

    458057cfa84c793a18f436b38d996c8e766516d2

  • SHA256

    4a5d5e6537044cdbf8de9960d79c85b15997784ba1b74659dbfcb248ccc94f59

  • SHA512

    56cb5b8a41d986946cd67960a54a3a2c2c1e88676a4f45c019eca2528c7bd4e027bfd40797213b0af65c141d2fd18383c0ee9260639d6617aea157acbde92fda

  • SSDEEP

    24576:UJAx41SXU4LG5Vlcz8PBhNbJgwm9CEl9DAvOBddLfl93pb3:20bG5Vyz8B9gwm95AAdhfD3

Score
10/10
bumblebee202lg

Malware Config

Extracted

Family

bumblebee

Botnet

202lg

C2

104.168.157.253:443

209.141.40.19:443

107.189.5.17:443

23.254.167.63:443

91.206.178.234:443

146.19.173.86:443

103.175.16.104:443

194.135.33.85:443

173.234.155.246:443

51.68.144.43:443

172.86.120.111:443

160.20.147.242:443

51.75.62.204:443

205.185.113.34:443

194.135.33.184:443

23.82.140.155:443

185.173.34.35:443
rc4.plain

Targets

    • Target

      BumbleBeeLoader.bin.exe

    • Size

      1.4MB

    • MD5

      d5917b4035dabf4e1df81fd79c4d2313

    • SHA1

      458057cfa84c793a18f436b38d996c8e766516d2

    • SHA256

      4a5d5e6537044cdbf8de9960d79c85b15997784ba1b74659dbfcb248ccc94f59

    • SHA512

      56cb5b8a41d986946cd67960a54a3a2c2c1e88676a4f45c019eca2528c7bd4e027bfd40797213b0af65c141d2fd18383c0ee9260639d6617aea157acbde92fda

    • SSDEEP

      24576:UJAx41SXU4LG5Vlcz8PBhNbJgwm9CEl9DAvOBddLfl93pb3:20bG5Vyz8B9gwm95AAdhfD3

    Score
    5/10

    • Suspicious use of NtCreateThreadExHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks