SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 9407c6f02a1b9958fcce892d60a66a2b10ce42cc.
Database Entry
| SHA1 Fingerprint: | 9407c6f02a1b9958fcce892d60a66a2b10ce42cc |
|---|---|
| Certificate Common Name (CN): | onsusofonaitt.ki |
| Issuer Distinguished Name (DN): | onsusofonaitt.ki |
| TLS Version: | TLS 1.2 |
| First seen: | 2015-10-19 11:03:08 UTC |
| Last seen: | 2015-10-20 12:06:11 UTC |
| Status: | Blacklisted |
| Listing reason: | Dridex C&C |
| Listing date: | 2015-10-19 14:04:44 |
| Malware samples: | 2 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2015-10-20 12:06:11 | f2d6dec39daef7ed90aaabb725590b02 |  9/56 (16.07%)
| Dridex | 157.252.245.49:473 |
| 2015-10-20 12:06:11 | f2d6dec39daef7ed90aaabb725590b02 | 9/56 (16.07%)
| Dridex | 157.252.245.49:473 |
| 2015-10-19 11:03:08 | 1de3889fde95e695adf6eadcb4829c6d | 3/56 (5.36%)
| Dridex | 157.252.245.49:473 |
| 2015-10-19 11:03:08 | 1de3889fde95e695adf6eadcb4829c6d | 3/56 (5.36%)
| Dridex | 157.252.245.49:473 |
# of entries: 4 (max: 100)