Extracted

• • Target

    2aae03be2893a2d742528bbd737b4195d84f6d3663e9eeff8c646c53675d7838_JC.exe

  • Size

    1.1MB

  • MD5

    45f4c6ea59bc7a8c2d20098698104940

  • SHA1

    08b4a0c8d7824a0dbd89680a70f3029355cfafea

  • SHA256

    2aae03be2893a2d742528bbd737b4195d84f6d3663e9eeff8c646c53675d7838

  • SHA512

    ae705022b4599ac0a551df96b9acda5542ef42b331c0cd89e87a71ae6c9e8919e3e2a8368857ba88bca7efb5d3150056f0c335eaaa7472cd8cc7202ecc2fd475

  • SSDEEP

    12288:yh/mUxV9yUJLB9hbJGk01nVJT24GUhKnsHwuDVPVIzI2mxFfokvqRLKAV55PH:yh/nBB9hSZGAwysoxFfooqRLb55P

  Score

  10^/10

  bumblebeejs1trojan

  • BumbleBee

    BumbleBee is a webshell malware written in C++.

    trojanbumblebee

  • Suspicious use of NtCreateThreadExHideFromDebugger

  behavioral1behavioral2