bumblebee | b8fc2474a801ea4b51df01d869c192cf430d72763758d8ca68cc43e318fdc7a0 | Triage

Sharing

General

Target

b8fc2474a801ea4b51df01d869c192cf430d72763758d8ca68cc43e318fdc7a0
Size

1.1MB
Sample

231014-bz9bcaaa7t
MD5

9a05abe3e58b71abd91ba819bbe88846
SHA1

3cf06a801d3b061e6dfd7c0fd257778ce878d4d1
SHA256

b8fc2474a801ea4b51df01d869c192cf430d72763758d8ca68cc43e318fdc7a0
SHA512

c4a2a544527cf6d0fb909bdc8cf58eb3e4f3741ecba2578f0ec11ef69a4ca1713110ca1b3c8dc1f02c35ed4a241247abe042e725080dd0945cca3ba4c124a392
SSDEEP

24576:Vi1XU5dnViuxKLDjpZkECM513RshB80lPW6XmA:01cdnVkjq

Score

10^/10

bumblebee js1 trojan

Malware Config

Extracted

Family

bumblebee

Botnet

js1

rc4.plain

Targets

- Target
  
  b8fc2474a801ea4b51df01d869c192cf430d72763758d8ca68cc43e318fdc7a0
- Size
  
  1.1MB
- MD5
  
  9a05abe3e58b71abd91ba819bbe88846
- SHA1
  
  3cf06a801d3b061e6dfd7c0fd257778ce878d4d1
- SHA256
  
  b8fc2474a801ea4b51df01d869c192cf430d72763758d8ca68cc43e318fdc7a0
- SHA512
  
  c4a2a544527cf6d0fb909bdc8cf58eb3e4f3741ecba2578f0ec11ef69a4ca1713110ca1b3c8dc1f02c35ed4a241247abe042e725080dd0945cca3ba4c124a392
- SSDEEP
  
  24576:Vi1XU5dnViuxKLDjpZkECM513RshB80lPW6XmA:01cdnVkjq
Score

10^/10

bumblebee js1 trojan
- BumbleBee
  BumbleBee is a webshell malware written in C++.
  trojan bumblebee
- Suspicious use of NtCreateThreadExHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

bumblebeejs1trojan

behavioral2

bumblebeejs1trojan