General
-
Target
ce0e54f147b546c803f3017153bdffcc_JaffaCakes118
-
Size
1.0MB
-
Sample
240905-18w5ta1gkn
-
MD5
ce0e54f147b546c803f3017153bdffcc
-
SHA1
bbac444980e83452974e03c2dae0bfb73457b836
-
SHA256
c9f509cb0446c7ff968451c1891e7ee076e7dc9c9c3bbad51dcd1fab4cfe34fb
-
SHA512
5df914c06cbe9549c87d1e35197c66f3547f01d54b91a905b5c8807a1c863fafbe0f7b89edb1840429e48d2f5048ea5bbe9f9f1f6b55cfbb98f2b2704abf3db0
-
SSDEEP
24576:MHLACbW3NCpiI3Z/3MvbG2ko7rxWFTDVJhwBdxYe7Y:iLAuWix3BebGreKVJhwvxR8
Malware Config
Targets
-
-
Target
Neutron V 1.0/Neutron.exe
-
Size
1.9MB
-
MD5
bb432a82f3a4e7c696c1f5f6c69d0f8e
-
SHA1
13f5be1f77c361b99ac09c3273f7af8c4f3ae5f9
-
SHA256
8ea15dd389b09ad8db639755dbb3ef83ea5f59afc9320002805620b31c95463f
-
SHA512
3aa3a84e747e79865be53d1585b9403c34cb1c69951eac124a2d382a139f33ddb8cb92f6a32b1151459df1397fda9cbbdff8c6375ffe5a89fbf43bbf631631c3
-
SSDEEP
49152:FMBxFoLr3VlCZU036ZBXCvA4L05/Ce0gcObWRUV6:W9o/1BCn0Zv0PVU
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
-
-
Target
Neutron V 1.0/glxpbuttonz.ocx
-
Size
108KB
-
MD5
455812a36b41a4ce537589ebd1410111
-
SHA1
6a7872729d72f4fe8bc979846237d25436deec11
-
SHA256
86711c5044f2659c31cc8455bae9f3f361e821bb97d45cac0c2d880d23c45026
-
SHA512
e2810e09e24564027d1e35a5c5d08b514d914b7e7a3551bc5098bd98e270207d5ab2a162d9dc42fec89809a217d1d35fa724e5668a9fdb45b897d61909df9825
-
SSDEEP
1536:K2x/qNbLCVQxUC/IamOLE5Y5sozwHvjNO:K2ZePMkDm+LqDNO
Score3/10 -