SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 010a6503f80cc4ae9d2cf4bc58b96754f8979a2b.
Database Entry
| SHA1 Fingerprint: | 010a6503f80cc4ae9d2cf4bc58b96754f8979a2b |
|---|---|
| Certificate Common Name (CN): | powershell-storage.vg |
| Issuer Distinguished Name (DN): | YE2 |
| TLS Version: | TLS 1.2 |
| First seen: | 2026-06-16 15:08:34 UTC |
| Last seen: | 2026-06-17 08:26:29 UTC |
| Status: | Blacklisted |
| Listing reason: | ACRStealer C&C |
| Listing date: | 2026-06-17 09:11:03 |
| Malware samples: | 6 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2026-06-17 08:26:29 | e68dcfb63c23846a0de412d4aeaaa6a8 | n/a | 80.97.160.31:443 | |
| 2026-06-17 03:12:14 | 7383d1dd6686c3e8815f88a56c516695 | n/a | 80.97.160.31:443 | |
| 2026-06-17 03:04:33 | 81c7c5ea8c6b6a05d5f59e12389ad052 | n/a | 80.97.160.31:443 | |
| 2026-06-17 03:03:57 | 6af35f1a2c58ce46519a9459669edd32 | n/a | 80.97.160.31:443 | |
| 2026-06-16 16:04:32 | 7edc55dcd3919246eb77599ef67d3726 | n/a | 80.97.160.31:443 | |
| 2026-06-16 15:08:35 | 9df213cd0290fcf3d8f59ba5ff9e43b9 | n/a | 80.97.160.31:443 |
# of entries: 6 (max: 100)