SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 6dde75ca5cfbc0fda3b18579f5d849277432af78.
Database Entry
| SHA1 Fingerprint: | 6dde75ca5cfbc0fda3b18579f5d849277432af78 |
|---|---|
| Certificate Common Name (CN): | letofavintha.kp |
| Issuer Distinguished Name (DN): | letofavintha.kp |
| TLS Version: | TLSv1 |
| First seen: | 2016-02-18 17:02:37 UTC |
| Last seen: | 2016-02-28 19:18:21 UTC |
| Status: | Blacklisted |
| Listing reason: | Dridex C&C |
| Listing date: | 2016-02-19 05:55:21 |
| Malware samples: | 4 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2016-02-28 19:18:21 | 995d881c396c844669481fc824d8d942 |  4/55 (7.27%)
| Dridex | 41.79.173.47:443 |
| 2016-02-28 19:18:21 | 995d881c396c844669481fc824d8d942 | 4/55 (7.27%)
| Dridex | 41.79.173.47:443 |
| 2016-02-19 19:21:32 | 1934a6640841bc2b41bc59ba03699b17 | 8/55 (14.55%)
| Dridex | 41.79.173.47:443 |
| 2016-02-19 19:21:32 | 1934a6640841bc2b41bc59ba03699b17 | 8/55 (14.55%)
| Dridex | 41.79.173.47:443 |
| 2016-02-19 14:08:17 | f1ea59d56ec20758c1315bbae5b26af8 | 5/55 (9.09%)
| Dridex | 41.79.173.47:443 |
| 2016-02-19 14:08:17 | f1ea59d56ec20758c1315bbae5b26af8 | 5/55 (9.09%)
| Dridex | 41.79.173.47:443 |
| 2016-02-18 17:02:37 | 8ff1738486c81edd15cadc2773f31298 | 11/55 (20.00%)
| Dridex | 41.79.173.47:443 |
| 2016-02-18 17:02:37 | 8ff1738486c81edd15cadc2773f31298 | 11/55 (20.00%)
| Dridex | 41.79.173.47:443 |
# of entries: 8 (max: 100)