TLP:WHITE105 IOCs

Malware Analysis — Bumblebee

0xMrMagnezi

Published May 9, 2024Original Report

Malware Families

Diamond Model

Adversary

Infrastructure(6)

Capability(1)

Victim

5W+H Threat Analysis

Analysis unavailable

Indicators of Compromise

Indicators of Compromise105

Type	Indicator	Confidence	Score	First Seen
Domain	3rldogkrx.life intel-blogloadermalware	High	58	Jun 2, 26
Domain	ynnlb3rus.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	d00d7ks32.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	5hsghdbng.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	rm43ln1wn.life intel-blogmalwarenetwork	High	58	Jun 2, 26
MD5	5cbb3f38dd686033f58f2c16f5f9a6d9 aptespionagefile-hash	Medium	53	Jun 2, 26
Domain	11qet4bgg.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	yk37wagdg.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	xky2lv24m.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	z4aarde49.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	upxamcuma.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	x5zxvz2yn.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	arl8xdy0i.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	db9oyi6b2.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	qm4hupdsq.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	yombx43uh.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	9qf9v3tgq.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	cmau5xobd.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	ofav9exew.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	j2hsoa4va.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	wp9wddjn4.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	l9w8yn2fo.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	99t9f8t4c.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	1d98d2w0k.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	49jw256uc.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	9f8srknbf.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	ajl0toabj.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	uvx6qjirx.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	o3f4d47j3.life intel-blogloadermalware	High	58	Jun 2, 26
Domain	y7mmp6opv.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	lcd7igvud.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	tcyvzdeex.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	gaamc74sm.life intel-blogmalwarenetwork	High	58	Jun 2, 26
MD5	fc959011ba6fa9ed33dc38f1d7d7846f file-hashintel-blogmalware	Medium	53	Jun 2, 26
Domain	43dtvcgy6.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	gebj02y46.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	2a6m2wkiq.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	8fqxxf116.life intel-blogmalwarenetwork	High	58	Jun 2, 26
MD5	18c0d4d076dcf852682a1e928ea6fd20 aptespionagefile-hash	Medium	53	Jun 2, 26
Domain	pltfrvss1.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	prl7fpdgq.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	z8g4klplp.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	lnoz4exs6.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	2jlczycvw.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	awjjbslep.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	uaeo95mzk.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	2niq3fv8t.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	2x5cn12li.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	trfy09x33.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	un5nke6rt.life intel-blogmalwarenetwork	High	58	Jun 2, 26
IP	38.180.136.158 intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	23b3imkqh.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	axqje16l4.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	dl23dcg0p.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	qqpjqdylr.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	mei2hlvph.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	8t8g8jquy.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	oqfb13om6.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	x7ir6c3dp.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	497hssmh9.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	wox5mblpd.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	cj87mkoo4.life intel-blogloadermalware	High	58	Jun 2, 26
Domain	pwfkwiup6.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	y0ue7nc4v.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	s7n9pjbnl.life intel-blogloadermalware	High	58	Jun 2, 26
Domain	yg7kcxnie.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	c231spcbk.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	p5zhkxu7x.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	go6nu8hgl.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	m460p6w8i.life intel-blogmalwarenetwork	High	58	Jun 2, 26
MD5	8a9c1c60499f8e8969569202e39a5adc aptespionagefile-hash	Medium	53	Jun 2, 26
Domain	8nrjr6hc4.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	k4ikh1i8s.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	xszhjlyga.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	4hdkyh1ns.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	292edkjz6.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	ezsj23n67.life intel-blogloadermalware	High	58	Jun 2, 26
Domain	8s75cl4j9.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	lgu7drz5a.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	z75717vaj.life intel-blogloadermalware	High	58	Jun 2, 26
Domain	tdyfmnlvv.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	nii34kqrw.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	5yv0b66c5.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	44uegsxdd.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	1wrap3lnr.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	pzhihpnt2.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	4kqz7kqt2.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	gpoxpkoiy.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	z1hf83vee.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	crbk7hduu.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	donkvamcz.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	7clm8w86o.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	p9m9as6rc.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	jzvx353vf.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	f0a3myb17.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	c3x5wqfqd.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	govntutzt.life intel-blogloadermalware	High	58	Jun 2, 26
Domain	ulfv8hiv3.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	v4wlbpzf0.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	gmsjfazpo.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	awmv2d35g.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	jvmzaf24a.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	vjgmo889e.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	8jcl1fkor.life intel-blogmalwarenetwork	High	58	Jun 2, 26
Domain	inekdxiil.life intel-blogmalwarenetwork	High	58	Jun 2, 26

IOC Relationship Graph

IOC Relationship Graph105 total IOCs

DomainMD5IP

scroll to zoom · drag to pan · click IOC to open