bumblebee | e714557aa665651045795c747d9b0faec60863c27edd579c7d6ed75bb33b94f1 | Triage

Resubmissions

23-02-2024 09:54

240223-lw8whsfa37 10

18-01-2024 17:02

240118-vj468sedd7 10

17-01-2024 08:56

240117-kv7fmacagr 10

13-09-2023 20:10

230913-yx26ksef8w 10

Sharing

General

Target

name.dll
Size

1.1MB
Sample

240118-vj468sedd7
MD5

ff519023357a9cc5bb731d798de2f6b6
SHA1

c14545a2d261647012a825e77af3a52fbc2cbc4d
SHA256

e714557aa665651045795c747d9b0faec60863c27edd579c7d6ed75bb33b94f1
SHA512

daddc936416b6ff42bdc47ea50b9b7e0acdaa202f46f75e8a14422c5254eb9a23918bd42ea6131503692045cbedf66373429c9c3cd07286c649f2a04801df1c0
SSDEEP

24576:Zf4/h/FsE6r+XMKFo6hFWHWhw7a9LfMtJ3JCI:J4/hNsEiKK

Score

10^/10

bumblebee js1 loader

Malware Config

Extracted

Family

bumblebee

Botnet

js1

Attributes

dga
bslv15nrnyg.life

bnkmm2z9l91.life

zz8ahwmsibn.life

amz1i2a9h5o.life

ixxgx7hdw8x.life

zeyy3v840wv.life

ojdmlrndu1e.life

t9ew3t1yyir.life

4pm7athfzuw.life

gs4qqq5x2js.life

n1q2knstzz7.life

x5puf10ekvs.life

sx9bcrv4w3c.life

1ildkezkqwu.life

ctfblrcygc1.life

5bj7l6w1nwa.life

vwtmveo5l3i.life

isletmctok6.life

t4cb5gz5kob.life

acnzqlmqtcx.life

ioxx4ypvzqe.life

j99zl8nes4g.life

c4yz6e2giei.life

tt7n14xjxav.life

cvwu39g0c5v.life

4035cmp6zch.life

y3gvymljj6l.life

5qe3tr94m43.life

3d0jvphjl90.life

c24tjr7spl6.life

i4htdwr006b.life

wriu4ancywk.life

s0kvhcpo6d5.life

jddh9u8n72f.life

sowwk5ljqck.life

08ny15z7398.life

1hethzm5lwa.life

iwaucrpvryh.life

pi97ny1ehzn.life

ep993ot1cy1.life

eu2dwpmsdcd.life

dmd1v4g69wv.life

ac9qq07dh7u.life

mrg7htkc085.life

xabotl5oeay.life

tw2ir6nasc5.life

n1a7lytepwn.life

ks5epse0tw5.life

s1i8y23z3d0.life

8qyob4qlkif.life

5r2bprlpjhx.life

9cdxg61d9ap.life

dtiav3gh4xu.life

x31dmi7krcl.life

1l73haeiatg.life

x4os3x45cna.life

5zqi8ekuv2k.life

c1955cj0zvy.life

k4xs6pr8fzw.life

yukpo3f90f2.life

5tppo8tndb1.life

io5jr2vvaei.life

1jvsaclvux4.life

lye2diao6t2.life

4rqp9hjjfo3.life

lhxptt57w3o.life

kugpxj11d3n.life

qwbrtxu9pc5.life

egmumueafv3.life

ilmvee8wh95.life

rmfek7jdcbb.life

8hid558oy57.life

upuywbpaew1.life

u72talivehx.life

v0e8x3sf73k.life

ub0ky8dblbt.life

i7r9esedcah.life

169o093c6ks.life

f39e18efyi4.life

xmhc4xhzrza.life

cxe9oo6rzqv.life

jfwjpsiddv5.life

kviuv2l8szu.life

p0x9uzdp0qj.life

8coyhsp62dl.life

ud9wb80m6wi.life

7tj90zlxi4c.life

9t13p1r04or.life

7lio7a4ugiy.life

ehj6mng4sc9.life

cx389aibc7x.life

cjab3lhhfmd.life

u5tdjl7ckgi.life

7iin9mca275.life

aq4xcue7reb.life

f2hbdmo6pa2.life

w3z27as8e13.life

pawj04zjltm.life

41idplv0rci.life

nynmvqnkpzm.life
dga_seed
OKFsgukk
domain_length
11
num_dga_domains
100
port
443

rc4.plain

Targets

- Target
  
  name.dll
- Size
  
  1.1MB
- MD5
  
  ff519023357a9cc5bb731d798de2f6b6
- SHA1
  
  c14545a2d261647012a825e77af3a52fbc2cbc4d
- SHA256
  
  e714557aa665651045795c747d9b0faec60863c27edd579c7d6ed75bb33b94f1
- SHA512
  
  daddc936416b6ff42bdc47ea50b9b7e0acdaa202f46f75e8a14422c5254eb9a23918bd42ea6131503692045cbedf66373429c9c3cd07286c649f2a04801df1c0
- SSDEEP
  
  24576:Zf4/h/FsE6r+XMKFo6hFWHWhw7a9LfMtJ3JCI:J4/hNsEiKK
Score

10^/10

bumblebee js1 loader
- BumbleBee
  BumbleBee is a loader malware written in C++.
  loader bumblebee
- Suspicious use of NtCreateThreadExHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

bumblebeejs1loader

behavioral2

bumblebeejs1loader