SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 0291d42dd1d671ae32088b9bcd0655554f9a6b79.

Database Entry


SHA1 Fingerprint:0291d42dd1d671ae32088b9bcd0655554f9a6b79
Certificate Common Name (CN):wiz~pk
Issuer Distinguished Name (DN):wiz~pk
TLS Version:TLS 1.2' NOTBEF
First seen:2020-12-10 14:17:14 UTC
Last seen:2020-12-27 22:52:41 UTC
Status:Blacklisted
Listing reason:BitRAT C&C
Listing date:2020-12-28 07:15:03
Malware samples:2
Botnet C&Cs:2

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2020-12-27 22:52:41892bc20d559c46e8f25f79a9e60d1ddcVirustotal results 32 / 61 (52.46%) BitRAT103.99.1.128:3071
2020-12-27 22:52:41892bc20d559c46e8f25f79a9e60d1ddcVirustotal results 32 / 61 (52.46%) BitRAT103.99.1.128:3071
2020-12-10 14:17:143de436fe3acc3f2c1a69917cad50e647n/aBitRAT23.105.131.129:3071
2020-12-10 14:17:143de436fe3acc3f2c1a69917cad50e647n/aBitRAT23.105.131.129:3071

# of entries: 4 (max: 100)