Overview

overview

10

Static

static

3

CZPgtmlLgThm.dll

windows7-x64

10

CZPgtmlLgThm.dll

windows10-2004-x64

10

Resubmissions

25/03/2025, 13:15

250325-qhqv1awybv 10

24/03/2025, 06:27

250324-g72jcs1xcs 10

24/03/2025, 06:07

250324-gvfq5azyb1 10

14/02/2025, 07:59

250214-jvkq7ayley 10

10/02/2025, 18:09

250210-wrfpaa1jdl 10

Analysis

  • max time kernel
    151s
  • max time network
    154s
  • platform
    windows7_x64
  • resource
    win7-20241010-en
  • resource tags

    arch:x64arch:x86image:win7-20241010-enlocale:en-usos:windows7-x64system
  • submitted
    10/02/2025, 18:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    CZPgtmlLgThm.dll

  • Size

    3.2MB

  • MD5

    e102f51b67a248436f9729e410100a13

  • SHA1

    d34e81135fd45258982d56ce66fcb0661daff9de

  • SHA256

    b2bd3a7284b4dddb7412a5a929836200d9ec742af0d1af79de3ad164aceadf1a

  • SHA512

    4ce752d04bbdca4b9f6af961ee473d37b84d9a845dd01afb959a6bd03842858939b0dbb55db859a500362d61a0ac177846911cbcf5de534fadbecedaabc5910a

  • SSDEEP

    49152:6vMLhOv7qLYgOQkv2ldCcCgPqIo9xlf8ZirVq42tmAMK7+slR0+RNW8d:6v+0Yj/7VniJDfQiQVtD68tRNhd

Score
10/10
bumblebee9090loader

Malware Config

Extracted

Family

bumblebee

Botnet

9090

Attributes
  • dga_seed

    -5372979216912523469

  • domain_length

    10

  • num_dga_domains

    300

  • port

    443

rc4.plain

Signatures

Processes

  • C:\Windows\system32\regsvr32.exe
    regsvr32 /s C:\Users\Admin\AppData\Local\Temp\CZPgtmlLgThm.dll
    1⤵
      PID:1832

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1832-8-0x0000000077A90000-0x0000000077C39000-memory.dmp

      Filesize

      1.7MB

      Download

    • memory/1832-9-0x0000000077A90000-0x0000000077C39000-memory.dmp

      Filesize

      1.7MB

      Download

    • memory/1832-7-0x00000000021A0000-0x00000000023B9000-memory.dmp

      Filesize

      2.1MB

      Download

    • memory/1832-6-0x0000000077A90000-0x0000000077C39000-memory.dmp

      Filesize

      1.7MB

      Download

    • memory/1832-4-0x0000000077AE1000-0x0000000077AE2000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1832-3-0x0000000001F70000-0x000000000219B000-memory.dmp

      Filesize

      2.2MB

      Download

    • memory/1832-2-0x00000000021A0000-0x00000000023B9000-memory.dmp

      Filesize

      2.1MB

      Download

    • memory/1832-0-0x00000000021A0000-0x00000000023B9000-memory.dmp

      Filesize

      2.1MB

      Download

    • memory/1832-5-0x0000000077A90000-0x0000000077C39000-memory.dmp

      Filesize

      1.7MB

      Download

    • memory/1832-10-0x00000000021A0000-0x00000000023B9000-memory.dmp

      Filesize

      2.1MB

      Download

    • memory/1832-11-0x0000000077A90000-0x0000000077C39000-memory.dmp

      Filesize

      1.7MB

      Download

    • memory/1832-12-0x0000000001F70000-0x000000000219B000-memory.dmp

      Filesize

      2.2MB

      Download

    • memory/1832-13-0x0000000077A90000-0x0000000077C39000-memory.dmp

      Filesize

      1.7MB

      Download

    • memory/1832-14-0x0000000077AE1000-0x0000000077AE2000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1832-15-0x0000000077A90000-0x0000000077C39000-memory.dmp

      Filesize

      1.7MB

      Download