Malware Signature

The following table shows a list of malware samples and the corresponding botnet C&C (ip:port) associated with Neutrino

Database Entry


Malware:Neutrino -
First seen:2016-02-18 22:10:28 UTC
Last seen:2021-08-11 09:46:53 UTC

Malware Samples


The table below documents all malware samples associated with this malware family.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2021-08-11 09:46:530c127cb98bf5d52927f5e90dd920113cVirustotal results 32 / 70 (45.71%) Neutrino74.201.28.134:3601
2021-08-11 09:46:530c127cb98bf5d52927f5e90dd920113cVirustotal results 32 / 70 (45.71%) Neutrino74.201.28.134:3601
2021-08-11 09:39:359e27047cd95f8f185513333c8ac87309Virustotal results 34 / 70 (48.57%) Neutrino74.201.28.134:3601
2021-08-11 09:39:359e27047cd95f8f185513333c8ac87309Virustotal results 34 / 70 (48.57%) Neutrino74.201.28.134:3601
2018-09-08 02:02:136308334b154963daa681c8f6fd56dd2dVirustotal results 32/68 (47.06%) Neutrino140.82.24.184:443
2018-09-08 02:02:136308334b154963daa681c8f6fd56dd2dVirustotal results 32/68 (47.06%) Neutrino140.82.24.184:443
2018-06-22 13:37:4526b390850c7207341e4c9183af75fdf7Virustotal results 51/68 (75.00%) Neutrino181.174.165.162:443
2018-06-22 13:37:4526b390850c7207341e4c9183af75fdf7Virustotal results 51/68 (75.00%) Neutrino181.174.165.162:443
2018-06-21 13:37:012afa4fefb32f264331c9bc01d03a4ef6Virustotal results 28/60 (46.67%) Neutrino181.174.165.162:443
2018-06-21 13:37:012afa4fefb32f264331c9bc01d03a4ef6Virustotal results 28/60 (46.67%) Neutrino181.174.165.162:443
2018-05-27 17:53:54bd18433436659a1f73cbeb09533a54a6Virustotal results 9/66 (13.64%) Neutrino144.217.33.200:443
2018-05-27 17:53:54bd18433436659a1f73cbeb09533a54a6Virustotal results 9/66 (13.64%) Neutrino144.217.33.200:443
2017-06-17 04:03:4014332080488598ea800c54cfd861854fVirustotal results 39/61 (63.93%) Neutrino5.101.4.41:443
2017-06-17 04:03:4014332080488598ea800c54cfd861854fVirustotal results 39/61 (63.93%) Neutrino5.101.4.41:443
2017-06-15 18:47:15f0ab3402cb92cf15fa0e2453b4093693Virustotal results 36/61 (59.02%) Neutrino5.101.4.41:443
2017-06-15 18:47:15f0ab3402cb92cf15fa0e2453b4093693Virustotal results 36/61 (59.02%) Neutrino5.101.4.41:443
2017-06-10 15:40:02b65a505141eeb1c754e8f294075a2fb0Virustotal results 9/61 (14.75%) Neutrino5.101.4.41:443
2017-06-10 15:40:02b65a505141eeb1c754e8f294075a2fb0Virustotal results 9/61 (14.75%) Neutrino5.101.4.41:443
2017-06-09 19:13:3168fdd4a005cd4b5b9e5b2929a7c70156Virustotal results 36/60 (60.00%) Neutrino5.101.4.41:443
2017-06-09 19:13:3168fdd4a005cd4b5b9e5b2929a7c70156Virustotal results 36/60 (60.00%) Neutrino5.101.4.41:443
2017-06-07 01:08:2342fbbdda42e2a5b740f554748700df2dVirustotal results 39/61 (63.93%) Neutrino5.101.4.41:443
2017-06-07 01:08:2342fbbdda42e2a5b740f554748700df2dVirustotal results 39/61 (63.93%) Neutrino5.101.4.41:443
2017-06-06 18:52:37a784175b3f775b2e07f28880868aba56Virustotal results 44/61 (72.13%) Neutrino5.101.4.41:443
2017-06-06 18:52:37a784175b3f775b2e07f28880868aba56Virustotal results 44/61 (72.13%) Neutrino5.101.4.41:443
2017-06-06 01:28:516db3927d60cd743a95561e07011f0676Virustotal results 34/60 (56.67%) Neutrino5.101.4.41:443
2017-06-06 01:28:516db3927d60cd743a95561e07011f0676Virustotal results 34/60 (56.67%) Neutrino5.101.4.41:443
2017-06-05 12:00:04853aa53abb2d5098f184cdca4fa6b7f3Virustotal results 12/62 (19.35%) Neutrino5.101.4.41:443
2017-06-05 12:00:04853aa53abb2d5098f184cdca4fa6b7f3Virustotal results 12/62 (19.35%) Neutrino5.101.4.41:443
2017-06-05 04:39:563b6211e898b753805581bb41fb483c48Virustotal results 10/62 (16.13%) Neutrino5.101.4.41:443
2017-06-05 04:39:563b6211e898b753805581bb41fb483c48Virustotal results 10/62 (16.13%) Neutrino5.101.4.41:443
2017-06-03 22:20:437c3eb2d06bd0fdf82e6abf12677f6c2dVirustotal results 9/61 (14.75%) Neutrino5.101.4.41:443
2017-06-03 22:20:437c3eb2d06bd0fdf82e6abf12677f6c2dVirustotal results 9/61 (14.75%) Neutrino5.101.4.41:443
2017-06-03 20:25:34bf208e8e33531fc4a9e8d1e62d2295a7Virustotal results 41/61 (67.21%) Neutrino5.101.4.41:443
2017-06-03 20:25:34bf208e8e33531fc4a9e8d1e62d2295a7Virustotal results 41/61 (67.21%) Neutrino5.101.4.41:443
2017-06-01 13:04:411b61c68c100e8998a112dcf10035fed4Virustotal results 35/61 (57.38%) Neutrino5.101.4.41:443
2017-06-01 13:04:411b61c68c100e8998a112dcf10035fed4Virustotal results 35/61 (57.38%) Neutrino5.101.4.41:443
2017-06-01 13:04:31db4eb79e72c935ac25232cf01dd125c5Virustotal results 26/61 (42.62%) Neutrino5.101.4.41:443
2017-06-01 13:04:31db4eb79e72c935ac25232cf01dd125c5Virustotal results 26/61 (42.62%) Neutrino5.101.4.41:443
2017-06-01 12:38:599b40c06f6bf476d3b5fb4c62c867d13aVirustotal results 31/61 (50.82%) Neutrino5.101.4.41:443
2017-06-01 12:38:599b40c06f6bf476d3b5fb4c62c867d13aVirustotal results 31/61 (50.82%) Neutrino5.101.4.41:443
2017-05-22 00:44:28a5759a4159168b456d8a016fa5265e49Virustotal results 10/61 (16.39%) Neutrino5.101.4.41:443
2017-05-22 00:44:28a5759a4159168b456d8a016fa5265e49Virustotal results 10/61 (16.39%) Neutrino5.101.4.41:443
2017-05-17 18:28:53d796a5461482638c10c631b4312ddeacVirustotal results 32/60 (53.33%) Neutrino5.101.4.41:443
2017-05-17 18:28:53d796a5461482638c10c631b4312ddeacVirustotal results 32/60 (53.33%) Neutrino5.101.4.41:443
2017-05-16 17:05:36420e9873b4f786f33f9e9a13bc42bb14Virustotal results 32/61 (52.46%) Neutrino5.101.4.41:443
2017-05-16 17:05:36420e9873b4f786f33f9e9a13bc42bb14Virustotal results 32/61 (52.46%) Neutrino5.101.4.41:443
2017-05-15 23:46:53ff405e6b5aea4c944bc12afc60128c3bVirustotal results 28/59 (47.46%) Neutrino5.101.4.41:443
2017-05-15 23:46:53ff405e6b5aea4c944bc12afc60128c3bVirustotal results 28/59 (47.46%) Neutrino5.101.4.41:443
2017-05-15 07:55:3337b0b84a832796ace2b3c77fcf0ffb90Virustotal results 8/62 (12.90%) Neutrino5.101.4.41:443
2017-05-15 07:55:3337b0b84a832796ace2b3c77fcf0ffb90Virustotal results 8/62 (12.90%) Neutrino5.101.4.41:443
2017-05-07 19:06:404c061e30099727a04afa70495d73e00eVirustotal results 44/61 (72.13%) Neutrino5.101.4.41:443
2017-05-07 19:06:404c061e30099727a04afa70495d73e00eVirustotal results 44/61 (72.13%) Neutrino5.101.4.41:443
2017-05-07 05:15:02979d9074817824c8c3b0fc3f656c205aVirustotal results 29/62 (46.77%) Neutrino5.101.4.41:443
2017-05-07 05:15:02979d9074817824c8c3b0fc3f656c205aVirustotal results 29/62 (46.77%) Neutrino5.101.4.41:443
2017-05-04 21:55:495eb69881f79a34c453a3d87493baf7f9Virustotal results 12/62 (19.35%) Neutrino5.101.4.41:443
2017-05-04 21:55:495eb69881f79a34c453a3d87493baf7f9Virustotal results 12/62 (19.35%) Neutrino5.101.4.41:443
2017-04-27 22:02:13ef16ca4a7f3935753d1e9ce64f5edc80Virustotal results 21/61 (34.43%) Neutrino5.101.4.41:443
2017-04-27 22:02:13ef16ca4a7f3935753d1e9ce64f5edc80Virustotal results 21/61 (34.43%) Neutrino5.101.4.41:443
2017-04-26 00:08:10a421d20741f4456ace510d3762fbd0f4Virustotal results 4/61 (6.56%) Neutrino5.101.4.41:443
2017-04-26 00:08:10a421d20741f4456ace510d3762fbd0f4Virustotal results 4/61 (6.56%) Neutrino5.101.4.41:443
2017-04-24 16:10:203223ff6e91069df1f038b4ec76e31d03Virustotal results 16/62 (25.81%) Neutrino5.101.4.41:443
2017-04-24 16:10:203223ff6e91069df1f038b4ec76e31d03Virustotal results 16/62 (25.81%) Neutrino5.101.4.41:443
2016-02-18 22:10:28ad86575eb97661d3824a7427dac80c10Virustotal results 6/54 (11.11%) Neutrino23.249.171.33:443
2016-02-18 22:10:28ad86575eb97661d3824a7427dac80c10Virustotal results 6/54 (11.11%) Neutrino23.249.171.33:443