Skip to content

Hide Navigation Hide TOC

BumbleBee (6fc4beee-b922-4d25-833d-8fb574a3c56e)

BumbleBee is a modular backdoor that comprises two applications, a server and a client application (a master and slaver application, respectively in the malware’s jargon). Once the client application is deployed on the target computer (these are commonly local government devices), threat actors can control the machine using the server module. Let us take a deeper look into this backdoor.

Cluster A Galaxy A Cluster B Galaxy B Level
BumbleBee (6fc4beee-b922-4d25-833d-8fb574a3c56e) Tool Hunter (96b2b31e-b191-43c4-9929-48ba1cbee62c) Exploit-Kit 1
BumbleBee (6fc4beee-b922-4d25-833d-8fb574a3c56e) Tool BumbleBee (fa47d59d-7251-468f-9d84-6e1ba21887db) Malpedia 1
Tinba (75f53ead-1aee-4f91-8cb9-b4170d747cfc) Tool Hunter (96b2b31e-b191-43c4-9929-48ba1cbee62c) Exploit-Kit 2
Tinba (75f53ead-1aee-4f91-8cb9-b4170d747cfc) Tool Tinba (5594b171-32ec-4145-b712-e7701effffdd) Banker 3
Tinba (75f53ead-1aee-4f91-8cb9-b4170d747cfc) Tool Tinba (5eee35b6-bd21-4b67-b198-e9320fcf2c88) Malpedia 3
Tinba (5594b171-32ec-4145-b712-e7701effffdd) Banker Tinba (5eee35b6-bd21-4b67-b198-e9320fcf2c88) Malpedia 4