bumblebee | dfb116f06421117af6c19b05306445187aaa85f3b001b3a0bf2ecf277b8fe5b4 | Triage

Sharing

General

Target

LdrAddx64.dll
Size

2.1MB
Sample

250210-xxdbsatje1
MD5

dbd624af8f34d5e90c72cbb27d362fa2
SHA1

671ede491eacd61bbbd0410886b639a2d889f6cf
SHA256

dfb116f06421117af6c19b05306445187aaa85f3b001b3a0bf2ecf277b8fe5b4
SHA512

1f066b9b0d3701290e22f7aa33edbddcda2635c691959785d76814d8eafd1ce0c7ac8e575602e98b2bc49f5536d5fd0f665cc6e7fa90099ce70b790da68e3a83
SSDEEP

49152:JQjC/Py8joN9Tmk76/l5hZsuF9Zx/NZzRTSNhXvPZzYqq/:J9/69TWlpnZzRKhKq

Score

10^/10

bumblebee 9090 discovery

Malware Config

Extracted

Family

bumblebee

Botnet

9090

Attributes

dga_seed
-5372979216912523469
domain_length
10
num_dga_domains
300
port
443

rc4.plain

Targets

- Target
  
  LdrAddx64.dll
- Size
  
  2.1MB
- MD5
  
  dbd624af8f34d5e90c72cbb27d362fa2
- SHA1
  
  671ede491eacd61bbbd0410886b639a2d889f6cf
- SHA256
  
  dfb116f06421117af6c19b05306445187aaa85f3b001b3a0bf2ecf277b8fe5b4
- SHA512
  
  1f066b9b0d3701290e22f7aa33edbddcda2635c691959785d76814d8eafd1ce0c7ac8e575602e98b2bc49f5536d5fd0f665cc6e7fa90099ce70b790da68e3a83
- SSDEEP
  
  49152:JQjC/Py8joN9Tmk76/l5hZsuF9Zx/NZzRTSNhXvPZzYqq/:J9/69TWlpnZzRKhKq
Score

8^/10

discovery
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2