SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 9d5f4bbd0081770e674331e9a0dbe745c985e850.

Database Entry


SHA1 Fingerprint:9d5f4bbd0081770e674331e9a0dbe745c985e850
Certificate Common Name (CN):server8/emailAddress=root@server8
Issuer Distinguished Name (DN):server8/emailAddress=root@server8
TLS Version:SSLv3
First seen:2014-06-19 17:25:38 UTC
Last seen:2014-11-13 06:55:45 UTC
Status:Blacklisted
Listing reason:KINS C&C
Listing date:2014-06-19 18:20:45
Malware samples:4
Botnet C&Cs:4

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2014-11-13 06:55:45f6c64e6cda885ddbd56e7e5fe1978193Virustotal results 33/54 (61.11%) ZeuS 193.124.94.207:443
2014-11-13 06:55:45f6c64e6cda885ddbd56e7e5fe1978193Virustotal results 33/54 (61.11%) ZeuS 193.124.94.207:443
2014-10-23 09:36:28adcdb66b751bc19074cefa99f8198c9an/aZeuS 91.213.233.198:443
2014-10-23 09:36:28adcdb66b751bc19074cefa99f8198c9an/aZeuS 91.213.233.198:443
2014-08-03 14:23:1222bd4d678ad6c56ac4373364435632a3Virustotal results 29/54 (53.70%) ZeuS 213.183.58.187:443
2014-08-03 14:23:1222bd4d678ad6c56ac4373364435632a3Virustotal results 29/54 (53.70%) ZeuS 213.183.58.187:443
2014-06-19 17:25:38fdb656e20f4566a88e3e05e3d786a72aVirustotal results 8/46 (17.39%) 109.237.109.246:443
2014-06-19 17:25:38fdb656e20f4566a88e3e05e3d786a72aVirustotal results 8/46 (17.39%) 109.237.109.246:443

# of entries: 8 (max: 100)