SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 7ef9fa16b91542f409aa62db1b932ec1325855b1.
Database Entry
| SHA1 Fingerprint: | 7ef9fa16b91542f409aa62db1b932ec1325855b1 |
|---|---|
| Certificate Common Name (CN): | iomiayhainadf.cs |
| Issuer Distinguished Name (DN): | iomiayhainadf.cs |
| TLS Version: | TLSv1 |
| First seen: | 2015-12-10 01:03:15 UTC |
| Last seen: | 2015-12-11 06:24:26 UTC |
| Status: | Blacklisted |
| Listing reason: | Dridex C&C |
| Listing date: | 2015-12-10 06:23:57 |
| Malware samples: | 4 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2015-12-11 06:24:26 | f064e22e6b1ef8eded3a0cf7a8465b0c |  26/55 (47.27%)
| Dridex | 221.132.35.56:8843 |
| 2015-12-11 06:24:26 | f064e22e6b1ef8eded3a0cf7a8465b0c | 26/55 (47.27%)
| Dridex | 221.132.35.56:8843 |
| 2015-12-10 13:54:38 | d141f3b0caef4e69b50fb7ee800564e3 | 5/54 (9.26%)
| Dridex | 221.132.35.56:8843 |
| 2015-12-10 13:54:38 | d141f3b0caef4e69b50fb7ee800564e3 | 5/54 (9.26%)
| Dridex | 221.132.35.56:8843 |
| 2015-12-10 06:01:22 | cd41d3b243fda0adc209590ff012238b | 8/56 (14.29%)
| Dridex | 221.132.35.56:8843 |
| 2015-12-10 06:01:22 | cd41d3b243fda0adc209590ff012238b | 8/56 (14.29%)
| Dridex | 221.132.35.56:8843 |
| 2015-12-10 01:03:15 | caa4d0f751b30b57db9d7f5f862fb5e5 | 2/55 (3.64%)
| Dridex | 221.132.35.56:8843 |
| 2015-12-10 01:03:15 | caa4d0f751b30b57db9d7f5f862fb5e5 | 2/55 (3.64%)
| Dridex | 221.132.35.56:8843 |
# of entries: 8 (max: 100)