SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 0dee2da9fc683090184464da3044ff12969e76d8.

Database Entry


SHA1 Fingerprint:0dee2da9fc683090184464da3044ff12969e76d8
Certificate Common Name (CN):anwanyfactredb.cr
Issuer Distinguished Name (DN):anwanyfactredb.cr
TLS Version:TLS 1.2
First seen:2015-07-23 13:50:35 UTC
Last seen:2015-08-01 03:40:12 UTC
Status:Blacklisted
Listing reason:Dridex C&C
Listing date:2015-07-24 05:04:17
Malware samples:2
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2015-08-01 03:40:12a5f7d314e2b996b69751a4e46503c644Virustotal results 2/55 (3.64%) Dridex 95.163.121.252:443
2015-08-01 03:40:12a5f7d314e2b996b69751a4e46503c644Virustotal results 2/55 (3.64%) Dridex 95.163.121.252:443
2015-07-23 13:50:3574fca464697b5816acfe9140ee387ecdVirustotal results 1/55 (1.82%) Dridex 95.163.121.252:443
2015-07-23 13:50:3574fca464697b5816acfe9140ee387ecdVirustotal results 1/55 (1.82%) Dridex 95.163.121.252:443

# of entries: 4 (max: 100)