SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 043a68f048e8ce7470ae58860c58d25879668c91.

Database Entry


SHA1 Fingerprint:043a68f048e8ce7470ae58860c58d25879668c91
Certificate Common Name (CN):www.newdomaininfo.ru
Issuer Distinguished Name (DN):EssentialSSL CA
TLS Version:SSLv3
First seen:2014-04-27 14:08:58 UTC
Last seen:2014-05-07 21:06:39 UTC
Status:Blacklisted
Listing reason:KINS C&C
Listing date:2014-05-04 09:51:14
Malware samples:4
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2014-05-07 21:06:391b6b0b0012e5ffaffebda198cc21a5b4Virustotal results 25/52 (48.08%) ZeuS 95.181.178.177:443
2014-05-06 16:25:272d2e7f2edf4e520e8ed460c77336e1bcVirustotal results 23/52 (44.23%) ZeuS 95.181.178.177:443
2014-04-29 07:10:09b189c8d47666ccd9773a59db1e4a78a9Virustotal results 31/51 (60.78%) ZeuS 95.181.178.177:443
2014-04-27 14:08:587cee43050cb15e8c681fcaf4f20d6763Virustotal results 26/51 (50.98%) ZeuS 95.181.178.177:443

# of entries: 4 (max: 100)