Overview

overview

10

Static

static

3

452bb49772...0b.dll

windows7-x64

10

452bb49772...0b.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    452bb497728f1eb2ccd56b83f7a13e51447bd79852085e68908cb6c47625060b

  • Size

    1.1MB

  • Sample

    231014-b3lz8acb64

  • MD5

    7d2156efddf126dfb4c466da06f15e11

  • SHA1

    cf90131f73f72b7f32bccca438283a04a1001dbe

  • SHA256

    452bb497728f1eb2ccd56b83f7a13e51447bd79852085e68908cb6c47625060b

  • SHA512

    83496c49175e85e627ff320ec954f1e393d1473e17bf098f3dfbb98c09b18da6c1d4258bdcfcecc382a8da91424ff63ad882deb8a9572fecb6c667b131d74fe4

  • SSDEEP

    24576:drD2uxNbJd3BU7XFLH9io8hAGOAHxLrQ+P3U:ZDBxNvR

Score
10/10
bumblebeejs1trojan

Malware Config

Extracted

Family

bumblebee

Botnet

js1

rc4.plain

Targets

    • Target

      452bb497728f1eb2ccd56b83f7a13e51447bd79852085e68908cb6c47625060b

    • Size

      1.1MB

    • MD5

      7d2156efddf126dfb4c466da06f15e11

    • SHA1

      cf90131f73f72b7f32bccca438283a04a1001dbe

    • SHA256

      452bb497728f1eb2ccd56b83f7a13e51447bd79852085e68908cb6c47625060b

    • SHA512

      83496c49175e85e627ff320ec954f1e393d1473e17bf098f3dfbb98c09b18da6c1d4258bdcfcecc382a8da91424ff63ad882deb8a9572fecb6c667b131d74fe4

    • SSDEEP

      24576:drD2uxNbJd3BU7XFLH9io8hAGOAHxLrQ+P3U:ZDBxNvR

    Score
    10/10
    bumblebeejs1trojan

    • BumbleBee

      BumbleBee is a webshell malware written in C++.

      trojanbumblebee

    • Suspicious use of NtCreateThreadExHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks