SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 2bb362e2913b9e2c0edbcbdbddaaf2331233a991.

Database Entry


SHA1 Fingerprint:2bb362e2913b9e2c0edbcbdbddaaf2331233a991
Certificate Common Name (CN):3sanedchef.ms
Issuer Distinguished Name (DN):3sanedchef.ms
TLS Version:TLS 1.2
First seen:2017-03-24 11:09:29 UTC
Last seen:2017-03-24 11:09:39 UTC
Status:Blacklisted
Listing reason:Dridex C&C
Listing date:2017-03-24 11:13:11
Malware samples:2
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2017-03-24 11:09:391f0c227abe77b4fd3f04bae18f3f742eVirustotal results 17/62 (27.42%) Dridex 178.62.65.89:4143
2017-03-24 11:09:391f0c227abe77b4fd3f04bae18f3f742eVirustotal results 17/62 (27.42%) Dridex 178.62.65.89:4143
2017-03-24 11:09:294fb8f6c69418e7a442927a9d5bdbde4eVirustotal results 10/61 (16.39%) Dridex 178.62.65.89:4143
2017-03-24 11:09:294fb8f6c69418e7a442927a9d5bdbde4eVirustotal results 10/61 (16.39%) Dridex 178.62.65.89:4143

# of entries: 4 (max: 100)