BumbleBee a New Modular Backdoor Evolved From BookWorm


Updated on Sep. 2, 2022, at 9:55 p.m. ET to clarify the difference between this Bumblebee malware from the Bumblebee ransomware loader.


In March 2021, we investigated a backdoor with a unique modular architecture and called it BumbleBee due to a string embedded in the malware. Its type of modular framework has made our static analysis more challenging because it required us to first rebuild its structure or use dynamic analysis to understand its functionality and behavior.

Our …

Read More