BumbleBee - это новый вредоносный загрузчик, который используется несколькими IAB для того, чтобы закрепиться в сетях жертв.
BumbleBee Loader
- Bumblebee Loader IOCs
- Bumblebee Malware IOCs - Part 4
- Bumblebee Malware IOCs - Part 3
- Bumblebee Malware IOCs
- BumbleBee Loader IOCs - Part 5
Indicators of Compromise
IPv4 Port Combinations
- 10.28.17.62:401
- 103.25.51.23:388
- 12.75.186.131:263
- 122.50.173.112:157
- 124.79.186.17:245
- 135.36.57.27:157
- 135.79.221.116:303
- 14.155.143.74:191
- 141.69.161.34:281
- 145.250.252.150:418
- 146.19.253.56:443
- 149.197.87.217:409
- 150.37.37.18:112
- 151.233.218.244:192
- 154.171.215.86:169
- 155.180.101.133:318
- 156.151.142.100:123
- 156.165.161.82:298
- 159.117.143.69:265
- 168.113.169.88:428
- 175.90.216.232:197
- 179.4.178.202:339
- 19.32.56.182:487
- 192.119.77.100:443
- 194.120.202.95:468
- 194.129.76.203:490
- 199.61.79.119:346
- 21.21.141.32:133
- 212.107.138.109:287
- 218.122.217.28:234
- 224.110.0.53:105
- 227.12.148.222:270
- 227.233.79.54:327
- 234.248.206.141:176
- 24.4.68.32:418
- 241.0.19.171:313
- 245.245.176.160:137
- 253.13.70.127:340
- 254.230.180.37:486
- 28.107.38.196:269
- 29.122.243.158:226
- 31.228.253.114:427
- 33.93.97.183:112
- 35.120.155.220:262
- 41.28.188.77:212
- 51.199.209.83:290
- 54.37.131.14:443
- 64.157.160.42:207
- 68.121.248.35:464
- 68.14.88.177:143
- 76.81.225.65:337
- 78.24.136.181:493
- 78.74.20.180:433
Emails
- Subima@bronzevillerx.com
MD5
- 5c2aea9772cec74f58c02ccf758fdb27
- 663851b4f1b3ad5acd85c4ab15493e71
- 705f3cf6b883657b9ac6634ec50e841a
- 74b2018cc2a7864ba1a412c603e9268f