bumblebee | e9894d3254f683e578d28e9df0ae2a87bcd4f7b4864c3b2964ecd08c2bfeed35

Analysis

max time kernel
94s
max time network
136s
platform
windows10-2004_x64
resource
win10v2004-20250217-en
resource tags

arch:x64arch:x86image:win10v2004-20250217-enlocale:en-usos:windows10-2004-x64system
submitted
11/03/2025, 12:08

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

7ffb92320000.ZipItNow.dll
Size

2.1MB
MD5

c24b1b0dfffda1000c57c43175d45352
SHA1

6eea78c4654b8b747e1353676bd3ede263d6f45b
SHA256

e9894d3254f683e578d28e9df0ae2a87bcd4f7b4864c3b2964ecd08c2bfeed35
SHA512

7141de5e7404f9f8ea45134b02c38a731c1cb1a1fd309269ddd88708fc5f6e74213b67459e451f95508c3dcb5be5206786896115486f67ff17fe79dea8545f5f
SSDEEP

49152:vC81ZlEREP0PF6vwlSCIuDFdC+ghElLr+StImsY:vNGm0P9SK6bhA

Score

10^/10

bumblebee 10111 loader

Malware Config

Extracted

Family

bumblebee

Botnet

10111

Attributes

dga
vca3utda017.click

knvop5puf3w.click

fuoor4i9488.click

e27y0btovqa.click

4td54jwr0zo.click

8u1tf686x8r.click

7rbvv9nr7ux.click

0qlcz1igan7.click

1ywg4j0oomt.click

uk2cx2bz9oh.click

mmh6zjh9rws.click

tyv7socu189.click

nu1ry3ywid2.click

qbjc9488vee.click

v8tarf4uflp.click

nubhcl6uvd6.click

pj2h7xw21zx.click

n22xrd1xrto.click

1age5rpmnbq.click

s7ebb7t79vn.click

t8vxfebri9r.click

77ch3dlvcuc.click

4k2znm7tg08.click

ie4jzevdaka.click

pweekbw7x9i.click

dg4j9l1r2ay.click

6linr1ga29p.click

ae4fgatomcn.click

i0rwy7k6rh8.click

zrvvmchlzab.click

ld6w0ra2n5v.click

0iy3kqu94si.click

a2h8x65mhmb.click

n8sbjfep5yd.click

mxnz6y6v6it.click

tj17eq1yv9p.click

ih1fzdij3lw.click

trjwgh2g6wj.click

uecqk6x4j8t.click

b2fqqlxq123.click

efu7sqzes6x.click

7avrr81op36.click

yn20wnog91u.click

gypx84c0psc.click

tiitp659yg7.click

xdfbgydlc05.click

zpz5jkazftt.click

w5o0gvbo6gz.click

u4fhmu65x9q.click

mwu8dx0r8l6.click

hwcnz0dhias.click

zj7zlpwpgk2.click

es6fj45yryo.click

vfhfp5pv5jq.click

n6uv59241o8.click

vxg5zt80xk1.click

f8vdyr368rr.click

u0hs21xo0oj.click

lk34zp37aa8.click

qbn8ng1n4y6.click

anwx8vvu2tn.click

amwy9i160dz.click

mhd2v73drk9.click

e64hgph4fpf.click

gisulurnufk.click

wsswivqef2j.click

tay4gok6gyf.click

2wbw7n1xihz.click

otuk9puv3dy.click

8ra21ma0ldn.click

6wo9w60mg4p.click

119qwh18wha.click

88crnaq8rxq.click

l52j1936qx7.click

0ffmtln7j1y.click

c2h9uj4rq5j.click

99e0wxgydv3.click

8x4zwderijh.click

aoh4pifqjfw.click

pfga45i3mid.click

6u8p3dxuusp.click

73wkg93t6yb.click

9d2285jpz2p.click

q8h20fokn7m.click

sjq07uvdff3.click

kmm14f207e0.click

96l0jwdfwsf.click

5t86twnzcmf.click

jgyffzjilwz.click

gb52rzeqsel.click

jsnwvpzo96y.click

5ijbx337vd2.click

e107j7ub2do.click

2plnxces98r.click

6r3ypuoxg63.click

kmmfsxcqiyv.click

2aecwymugah.click

s38tusi2x3c.click

lznvqhcqtqs.click

wnmatvjf2h9.click
dga_seed
7827833623176771557
domain_length
11
num_dga_domains
300
port
443
tld
.click

rc4.plain

Signatures

BumbleBee
BumbleBee is a loader malware written in C++.
loader bumblebee
Bumblebee family
bumblebee

C:\Windows\system32\regsvr32.exe
regsvr32 /s C:\Users\Admin\AppData\Local\Temp\7ffb92320000.ZipItNow.dll
1⤵
PID:1780

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1780-0-0x00007FFA90380000-0x00007FFA905A3000-memory.dmp

Filesize
2.1MB

Download

Analysis

Sharing

General

Malware Config

Extracted

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads