SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 6ece5ece4192683d2d84e25b0ba7e04f9cb7eb7c.
Database Entry
| SHA1 Fingerprint: | 6ece5ece4192683d2d84e25b0ba7e04f9cb7eb7c |
|---|---|
| Certificate Common Name (CN): | |
| Issuer Distinguished Name (DN): | |
| TLS Version: | TLS 1.2 |
| First seen: | 2015-09-21 09:42:47 UTC |
| Last seen: | 2021-08-11 01:01:49 UTC |
| Status: | Blacklisted |
| Listing reason: | AKBuilder C&C |
| Listing date: | 2017-04-04 08:33:21 |
| Malware samples: | 327 |
| Botnet C&Cs: | 245 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2021-08-11 01:01:49 | bbd2e987fe76f370edfb02a0cf824745 |  51 / 69 (73.91%)
| CobaltStrike | 43.224.33.42:8888 |
| 2021-08-11 01:01:49 | bbd2e987fe76f370edfb02a0cf824745 | 51 / 69 (73.91%)
| CobaltStrike | 43.224.33.42:8888 |
| 2021-08-02 12:04:19 | 8cde3e5031f19555aea0c8fffcc3c4c2 | 60 / 70 (85.71%)
| CobaltStrike | 45.140.17.75:10443 |
| 2021-08-02 12:04:19 | 8cde3e5031f19555aea0c8fffcc3c4c2 | 60 / 70 (85.71%)
| CobaltStrike | 45.140.17.75:10443 |
| 2021-07-28 11:58:16 | 6cac30135f4d5639c81e29e7d32d95e0 | 54 / 67 (80.60%)
| CobaltStrike | 45.140.17.74:443 |
| 2021-07-28 11:58:16 | 6cac30135f4d5639c81e29e7d32d95e0 | 54 / 67 (80.60%)
| CobaltStrike | 45.140.17.74:443 |
| 2021-07-21 20:40:25 | 41859b1cd4ab90b581647b97b8babc3b | 24 / 67 (35.82%)
| CobaltStrike | 82.118.22.1:443 |
| 2021-07-21 20:40:25 | 41859b1cd4ab90b581647b97b8babc3b | 24 / 67 (35.82%)
| CobaltStrike | 82.118.22.1:443 |
| 2021-07-19 03:48:02 | d4a8b43f0a149f03c2896efbc4f50e17 | 52 / 69 (75.36%)
| CobaltStrike | 178.79.130.185:443 |
| 2021-07-19 03:48:02 | d4a8b43f0a149f03c2896efbc4f50e17 | 52 / 69 (75.36%)
| CobaltStrike | 178.79.130.185:443 |
| 2021-07-18 14:49:15 | a1742b2d2f3ee699ed80be22f444b9a3 | 53 / 68 (77.94%)
| CobaltStrike | 45.155.205.208:8443 |
| 2021-07-18 14:49:15 | a1742b2d2f3ee699ed80be22f444b9a3 | 53 / 68 (77.94%)
| CobaltStrike | 45.155.205.208:8443 |
| 2021-07-06 07:44:53 | a682c9cfdd26382c0d7c29e7d3d4110d | 34 / 70 (48.57%)
| CobaltStrike | 1.15.227.181:9998 |
| 2021-07-06 07:44:53 | a682c9cfdd26382c0d7c29e7d3d4110d | 34 / 70 (48.57%)
| CobaltStrike | 1.15.227.181:9998 |
| 2021-07-02 07:42:11 | dc9c590e960027da47cc3f77e77afa68 | 51 / 70 (72.86%)
| CobaltStrike | 18.116.230.222:8787 |
| 2021-07-02 07:42:11 | dc9c590e960027da47cc3f77e77afa68 | 51 / 70 (72.86%)
| CobaltStrike | 18.116.230.222:8787 |
| 2021-07-02 03:01:36 | bd1bd48ac45dde8d5be61f80d65ec178 | 17 / 70 (24.29%)
| CobaltStrike | 39.108.60.64:4443 |
| 2021-07-02 03:01:36 | bd1bd48ac45dde8d5be61f80d65ec178 | 17 / 70 (24.29%)
| CobaltStrike | 39.108.60.64:4443 |
| 2021-07-01 16:09:46 | 84caf3588cf3d0d0e57a546569c4e5fd | 52 / 70 (74.29%)
| CobaltStrike | 1.117.154.185:443 |
| 2021-07-01 16:09:46 | 84caf3588cf3d0d0e57a546569c4e5fd | 52 / 70 (74.29%)
| CobaltStrike | 1.117.154.185:443 |
| 2021-06-29 02:36:39 | a5ad3213b05774d4992d844c0cc41e48 | 26 / 70 (37.14%)
| CobaltStrike | 8.140.7.162:48081 |
| 2021-06-29 02:36:39 | a5ad3213b05774d4992d844c0cc41e48 | 26 / 70 (37.14%)
| CobaltStrike | 8.140.7.162:48081 |
| 2021-06-29 01:34:27 | a48cc324194abe41876fe217bcafd4fd | 15 / 70 (21.43%)
| CobaltStrike | 218.253.251.89:443 |
| 2021-06-29 01:34:27 | a48cc324194abe41876fe217bcafd4fd | 15 / 70 (21.43%)
| CobaltStrike | 218.253.251.89:443 |
| 2021-06-28 23:08:23 | 7d0944e9d0a244c06de83ea81d799dba | 51 / 70 (72.86%)
| CobaltStrike | 185.193.126.226:8088 |
| 2021-06-28 23:08:23 | 7d0944e9d0a244c06de83ea81d799dba | 51 / 70 (72.86%)
| CobaltStrike | 185.193.126.226:8088 |
| 2021-06-25 17:24:03 | 1af112db1ce194de43d9ccf4a04a047a | 16 / 70 (22.86%)
| CobaltStrike | 124.70.89.118:443 |
| 2021-06-25 17:24:03 | 1af112db1ce194de43d9ccf4a04a047a | 16 / 70 (22.86%)
| CobaltStrike | 124.70.89.118:443 |
| 2021-06-24 08:49:38 | 254a83dec82335daf2ca5eea7ea3fa9a | 51 / 70 (72.86%)
| CobaltStrike | 34.238.192.43:443 |
| 2021-06-24 08:49:38 | 254a83dec82335daf2ca5eea7ea3fa9a | 51 / 70 (72.86%)
| CobaltStrike | 34.238.192.43:443 |
| 2021-06-24 07:00:36 | 6e48e3484cf73623e072462cd2d733c3 | 44 / 69 (63.77%)
| CobaltStrike | 34.238.192.43:443 |
| 2021-06-24 07:00:36 | 6e48e3484cf73623e072462cd2d733c3 | 44 / 69 (63.77%)
| CobaltStrike | 34.238.192.43:443 |
| 2021-06-22 00:37:11 | 5cbf6f1e444b81bcdc997634c1258bf3 | n/a | CobaltStrike | 103.234.72.237:10920 |
| 2021-06-22 00:37:11 | 5cbf6f1e444b81bcdc997634c1258bf3 | n/a | CobaltStrike | 103.234.72.237:10920 |
| 2021-06-20 05:12:23 | abd0875f32f14df93294bece75efa8b6 | 52 / 70 (74.29%)
| CobaltStrike | 47.102.37.135:443 |
| 2021-06-20 05:12:23 | abd0875f32f14df93294bece75efa8b6 | 52 / 70 (74.29%)
| CobaltStrike | 47.102.37.135:443 |
| 2021-06-15 18:31:50 | 854dc9cd9714a977023c458e3dc8504a | 50 / 70 (71.43%)
| CobaltStrike | 106.15.50.19:443 |
| 2021-06-15 18:31:50 | 854dc9cd9714a977023c458e3dc8504a | 50 / 70 (71.43%)
| CobaltStrike | 106.15.50.19:443 |
| 2021-06-14 22:15:40 | 7b766951efc8c25f9b5ea0548de929f2 | n/a | CobaltStrike | 47.111.13.98:443 |
| 2021-06-14 22:15:40 | 7b766951efc8c25f9b5ea0548de929f2 | n/a | CobaltStrike | 47.111.13.98:443 |
| 2021-06-14 19:39:31 | 4d6655327c04cdfb9356974db6c49fdb | n/a | CobaltStrike | 47.111.13.98:443 |
| 2021-06-14 19:39:31 | 4d6655327c04cdfb9356974db6c49fdb | n/a | CobaltStrike | 47.111.13.98:443 |
| 2021-06-13 10:44:27 | 4da9eff3a95a5a313218c1a0a4055647 | n/a | CobaltStrike | 103.234.72.237:10920 |
| 2021-06-13 10:44:27 | 4da9eff3a95a5a313218c1a0a4055647 | n/a | CobaltStrike | 103.234.72.237:10920 |
| 2021-06-07 20:35:50 | 038200f2f866cbb184cedda02a2ada52 | 22 / 69 (31.88%)
| CobaltStrike | 106.55.51.55:5443 |
| 2021-06-07 20:35:50 | 038200f2f866cbb184cedda02a2ada52 | 22 / 69 (31.88%)
| CobaltStrike | 106.55.51.55:5443 |
| 2021-06-02 10:33:16 | ab8828df8a55e471c30570813b2ca919 | 47 / 68 (69.12%)
| CobaltStrike | 18.162.200.0:443 |
| 2021-06-02 10:33:16 | ab8828df8a55e471c30570813b2ca919 | 47 / 68 (69.12%)
| CobaltStrike | 18.162.200.0:443 |
| 2021-05-30 21:07:44 | 821d385e2619903ef4d31fa982e60d16 | 36 / 69 (52.17%)
| CobaltStrike | 185.22.172.34:443 |
| 2021-05-30 21:07:44 | 821d385e2619903ef4d31fa982e60d16 | 36 / 69 (52.17%)
| CobaltStrike | 185.22.172.34:443 |
| 2021-05-29 20:24:46 | bd998dcf8fce0b6d6a9e5279701b579c | 50 / 70 (71.43%)
| CobaltStrike | 156.247.13.254:443 |
| 2021-05-29 20:24:46 | bd998dcf8fce0b6d6a9e5279701b579c | 50 / 70 (71.43%)
| CobaltStrike | 156.247.13.254:443 |
| 2021-05-29 20:17:19 | c02a4733b0a54901d21a86a571695aa9 | 44 / 70 (62.86%)
| CobaltStrike | 103.234.72.237:10920 |
| 2021-05-29 20:17:19 | c02a4733b0a54901d21a86a571695aa9 | 44 / 70 (62.86%)
| CobaltStrike | 103.234.72.237:10920 |
| 2021-05-29 19:09:02 | aa3513c1a9e65c8e0b854b38f8cd8e91 | 31 / 68 (45.59%)
| CobaltStrike | 45.113.1.17:4435 |
| 2021-05-29 19:09:02 | aa3513c1a9e65c8e0b854b38f8cd8e91 | 31 / 68 (45.59%)
| CobaltStrike | 45.113.1.17:4435 |
| 2021-05-22 21:31:38 | 212a31c8092b4fb48b65695eb3620c3b | n/a | CobaltStrike | 103.234.72.237:10920 |
| 2021-05-22 21:31:38 | 212a31c8092b4fb48b65695eb3620c3b | n/a | CobaltStrike | 103.234.72.237:10920 |
| 2021-05-22 19:46:02 | aa7614260ed3047f8a909b34c0271208 | 41 / 56 (73.21%)
| CobaltStrike | 1.15.79.166:443 |
| 2021-05-22 19:46:02 | aa7614260ed3047f8a909b34c0271208 | 41 / 56 (73.21%)
| CobaltStrike | 1.15.79.166:443 |
| 2021-05-21 19:06:52 | a9cf24b24b5ac51ea80969ba936a7580 | 40 / 69 (57.97%)
| CobaltStrike | 1.15.128.150:60001 |
| 2021-05-21 19:06:52 | a9cf24b24b5ac51ea80969ba936a7580 | 40 / 69 (57.97%)
| CobaltStrike | 1.15.128.150:60001 |
| 2021-05-20 21:11:41 | 9fd205927683738eccad535840fcd22d | 52 / 69 (75.36%)
| CobaltStrike | 120.78.191.11:443 |
| 2021-05-20 21:11:41 | 9fd205927683738eccad535840fcd22d | 52 / 69 (75.36%)
| CobaltStrike | 120.78.191.11:443 |
| 2021-05-20 20:59:51 | 90b1ce354e3c9c36d320aa0252582727 | 34 / 68 (50.00%)
| CobaltStrike | 103.234.72.237:10920 |
| 2021-05-20 20:59:51 | 90b1ce354e3c9c36d320aa0252582727 | 34 / 68 (50.00%)
| CobaltStrike | 103.234.72.237:10920 |
| 2021-05-20 20:50:36 | 83eb3adb548ac47033d71a15d6098541 | 52 / 69 (75.36%)
| CobaltStrike | 42.194.199.231:443 |
| 2021-05-20 20:50:36 | 83eb3adb548ac47033d71a15d6098541 | 52 / 69 (75.36%)
| CobaltStrike | 42.194.199.231:443 |
| 2021-05-20 20:25:32 | 55b07f7d80ebceea76ddd4515f0bb501 | 51 / 69 (73.91%)
| CobaltStrike | 62.234.134.62:443 |
| 2021-05-20 20:25:32 | 55b07f7d80ebceea76ddd4515f0bb501 | 51 / 69 (73.91%)
| CobaltStrike | 62.234.134.62:443 |
| 2021-05-20 19:56:02 | 20274c30a80052de64250fb1b2a70aaf | 40 / 70 (57.14%)
| CobaltStrike | 103.234.72.237:10920 |
| 2021-05-20 19:56:02 | 20274c30a80052de64250fb1b2a70aaf | 40 / 70 (57.14%)
| CobaltStrike | 103.234.72.237:10920 |
| 2021-05-18 19:42:57 | a3231385d7f858870fc97870b898f0c2 | 38 / 69 (55.07%)
| CobaltStrike | 120.78.191.11:443 |
| 2021-05-18 19:42:57 | a3231385d7f858870fc97870b898f0c2 | 38 / 69 (55.07%)
| CobaltStrike | 120.78.191.11:443 |
| 2021-05-15 12:03:03 | b0f3eec97fc90997de1cb8cac8b69ef2 | 24 / 69 (34.78%)
| CobaltStrike | 47.118.62.39:443 |
| 2021-05-15 12:03:03 | b0f3eec97fc90997de1cb8cac8b69ef2 | 24 / 69 (34.78%)
| CobaltStrike | 47.118.62.39:443 |
| 2021-05-14 08:32:37 | 3f1589d608dc03e309a566211059a1d1 | 45 / 70 (64.29%)
| CobaltStrike | 124.70.89.118:443 |
| 2021-05-14 08:32:37 | 3f1589d608dc03e309a566211059a1d1 | 45 / 70 (64.29%)
| CobaltStrike | 124.70.89.118:443 |
| 2021-05-10 08:30:28 | 0a0b92342eb5933daa937fb9f935ba6c | 36 / 69 (52.17%)
| CobaltStrike | 124.70.89.118:443 |
| 2021-05-10 08:30:28 | 0a0b92342eb5933daa937fb9f935ba6c | 36 / 69 (52.17%)
| CobaltStrike | 124.70.89.118:443 |
| 2021-04-28 22:35:57 | d52f7b130966f534a3d6c53062081373 | 53 / 70 (75.71%)
| CobaltStrike | 34.92.115.71:443 |
| 2021-04-28 22:35:57 | d52f7b130966f534a3d6c53062081373 | 53 / 70 (75.71%)
| CobaltStrike | 34.92.115.71:443 |
| 2021-04-28 05:22:54 | 38d6e112889ed9f6232a8d724e95119f | 21 / 69 (30.43%)
| CobaltStrike | 188.34.142.201:443 |
| 2021-04-28 05:22:54 | 38d6e112889ed9f6232a8d724e95119f | 21 / 69 (30.43%)
| CobaltStrike | 188.34.142.201:443 |
| 2021-04-22 13:25:44 | fabb539c0a3a4df5cc1dfff56020ca72 | 53 / 69 (76.81%)
| CobaltStrike | 167.99.184.82:443 |
| 2021-04-22 13:25:44 | fabb539c0a3a4df5cc1dfff56020ca72 | 53 / 69 (76.81%)
| CobaltStrike | 167.99.184.82:443 |
| 2021-04-20 04:55:55 | a509588dd743445d96dd775348f2e8bd | 50 / 67 (74.63%)
| CobaltStrike | 34.96.156.66:443 |
| 2021-04-20 04:55:55 | a509588dd743445d96dd775348f2e8bd | 50 / 67 (74.63%)
| CobaltStrike | 34.96.156.66:443 |
| 2021-04-19 10:28:38 | b68e4dbf9658ff57910c437ac95934d3 | 43 / 68 (63.24%)
| CobaltStrike | 159.75.110.125:9102 |
| 2021-04-19 10:28:38 | b68e4dbf9658ff57910c437ac95934d3 | 43 / 68 (63.24%)
| CobaltStrike | 159.75.110.125:9102 |
| 2021-04-18 05:39:58 | 4e0a51ee0d3a49b907fc223069c8455b | 53 / 69 (76.81%)
| CobaltStrike | 112.74.182.201:443 |
| 2021-04-18 05:39:58 | 4e0a51ee0d3a49b907fc223069c8455b | 53 / 69 (76.81%)
| CobaltStrike | 112.74.182.201:443 |
| 2021-04-16 03:01:53 | 9e1b7a7dfaded29d1e05c00821f97e67 | 17 / 69 (24.64%)
| CobaltStrike | 8.140.186.40:8888 |
| 2021-04-16 03:01:53 | 9e1b7a7dfaded29d1e05c00821f97e67 | 17 / 69 (24.64%)
| CobaltStrike | 8.140.186.40:8888 |
| 2021-04-13 07:04:48 | dd7880237f83b66a6d755f333fb76c60 | n/a | CobaltStrike | 160.124.49.133:443 |
| 2021-04-13 07:04:48 | dd7880237f83b66a6d755f333fb76c60 | n/a | CobaltStrike | 160.124.49.133:443 |
| 2021-04-13 06:46:10 | db44a815f530bc76f3e0e8da15bf203e | 53 / 70 (75.71%)
| CobaltStrike | 185.141.26.139:443 |
| 2021-04-13 06:46:10 | db44a815f530bc76f3e0e8da15bf203e | 53 / 70 (75.71%)
| CobaltStrike | 185.141.26.139:443 |
| 2021-04-02 09:19:48 | 70a64ff5ca5e3c21d3c2a352e3f2cc9a | 49 / 66 (74.24%)
| CobaltStrike | 141.164.36.203:443 |
| 2021-04-02 09:19:48 | 70a64ff5ca5e3c21d3c2a352e3f2cc9a | 49 / 66 (74.24%)
| CobaltStrike | 141.164.36.203:443 |
# of entries: 100 (max: 100)