SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint b604c821ae0f81ab9b0e9fc4318db5e09220204e.
Database Entry
| SHA1 Fingerprint: | b604c821ae0f81ab9b0e9fc4318db5e09220204e |
|---|---|
| Certificate Common Name (CN): | localhost/emailAddress=webmaster@localhost |
| Issuer Distinguished Name (DN): | localhost/emailAddress=webmaster@localhost |
| TLS Version: | TLS 1.2 |
| First seen: | 2016-11-23 12:41:51 UTC |
| Last seen: | 2016-11-24 07:43:54 UTC |
| Status: | Blacklisted |
| Listing reason: | Gootkit C&C |
| Listing date: | 2016-11-23 18:45:55 |
| Malware samples: | 5 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2016-11-24 07:43:54 | 1ec5453a2c1b4aa8b51c8a0767e2cc5e |  31/57 (54.39%)
| Gootkit | 89.46.73.127:80 |
| 2016-11-24 07:43:54 | 1ec5453a2c1b4aa8b51c8a0767e2cc5e | 31/57 (54.39%)
| Gootkit | 89.46.73.127:80 |
| 2016-11-23 21:57:41 | fe11020a4bed5a0b27bdcc1a88f43b03 | n/a | Gootkit | 89.46.73.127:80 |
| 2016-11-23 21:57:41 | fe11020a4bed5a0b27bdcc1a88f43b03 | n/a | Gootkit | 89.46.73.127:80 |
| 2016-11-23 20:38:39 | fa224c69088cc331a6b30bc5069fa9d5 | n/a | Gootkit | 89.46.73.127:80 |
| 2016-11-23 20:38:39 | fa224c69088cc331a6b30bc5069fa9d5 | n/a | Gootkit | 89.46.73.127:80 |
| 2016-11-23 19:03:12 | a44bff4ab079a49698fe4f471a0b4dca | 46/68 (67.65%)
| Gootkit | 89.46.73.127:80 |
| 2016-11-23 19:03:12 | a44bff4ab079a49698fe4f471a0b4dca | 46/68 (67.65%)
| Gootkit | 89.46.73.127:80 |
| 2016-11-23 12:41:51 | d64eb6f46dcbf4555d12d01a47f6f8d0 | 32/57 (56.14%)
| Gootkit | 89.46.73.127:80 |
| 2016-11-23 12:41:51 | d64eb6f46dcbf4555d12d01a47f6f8d0 | 32/57 (56.14%)
| Gootkit | 89.46.73.127:80 |
# of entries: 10 (max: 100)