SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 079249326fa6fe9fd6066b7b00b51ea658ccc453.

Database Entry


SHA1 Fingerprint:079249326fa6fe9fd6066b7b00b51ea658ccc453
Certificate Common Name (CN):www.LwXag5GI.com/O=KOc9M7D8iSOIRfAa./C=US
Issuer Distinguished Name (DN):www.LwXag5GI.com/O=KOc9M7D8iSOIRfAa./C=US
TLS Version:TLSv1
First seen:2015-11-09 20:20:23 UTC
Last seen:2016-01-08 22:58:36 UTC
Status:Blacklisted
Listing reason:Gootkit C&C
Listing date:2015-11-10 10:02:07
Malware samples:46
Botnet C&Cs:6

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2016-01-08 22:58:36aaac73a7fdef22b56038e222d241c764Virustotal results 26/56 (46.43%) Gootkit 185.58.225.193:443
2016-01-08 21:21:04aa5a1d987d1160f858b0331aa776ca3eVirustotal results 6/54 (11.11%) Gootkit 185.58.225.193:443
2015-11-26 10:22:5674521c8c58d7f60d2452915c80487658Virustotal results 12/56 (21.43%) Gootkit 87.249.215.214:443
2015-11-26 10:10:311f30e45d42cb4cb9093272050da4dfb9Virustotal results 13/55 (23.64%) Gootkit 87.249.215.214:443
2015-11-26 07:55:1793cd71ddbec22d547beb764ceed79988Virustotal results 13/56 (23.21%) Gootkit 87.249.215.214:443
2015-11-26 06:30:2252f0a7222b3680c38c7d1b8c36bf749en/a87.249.215.214:443
2015-11-24 23:26:03d614b2c8aa6b0b2a224ee6200a34db62Virustotal results 22/56 (39.29%) Gootkit 163.53.247.37:443
2015-11-24 21:53:4259949084a04bec5aed0ed67c27e25d65n/aGootkit 163.53.247.37:443
2015-11-23 11:10:20cb573124e8051e54716cfc4856edb2cen/aGootkit 163.53.247.37:443
2015-11-23 10:00:38990db5869717ffe4dd38c79f636741a6Virustotal results 16/55 (29.09%) Gootkit 163.53.247.37:443
2015-11-22 23:17:54ea02b6cb71eb7d97e82ce68abd5196e3Virustotal results 22/56 (39.29%) Gootkit 163.53.247.37:443
2015-11-22 22:33:30ca09f5a4a6dffb5d6d6db6dadae5745fVirustotal results 18/56 (32.14%) Gootkit 163.53.247.37:443
2015-11-22 18:16:29e035474dcbea1bee9775c8754a8b1a8fn/aGootkit 163.53.247.37:443
2015-11-22 10:56:33cc62ef50625037bc5b6e7874ea1666c3n/aGootkit 163.53.247.37:443
2015-11-22 00:44:3923f07f80827749d47186de348cb95170Virustotal results 23/56 (41.07%) Gootkit 185.58.225.193:443
2015-11-21 10:02:05b834fabe6f0abb95c8a567483135aab0n/aGootkit 185.58.225.193:443
2015-11-21 07:34:32132de657f95db10b895569514f091e4eVirustotal results 15/55 (27.27%) Gootkit 185.58.225.193:443
2015-11-21 07:32:470aeb0106c1180d61839cee0b52808b6bVirustotal results 17/56 (30.36%) Gootkit 185.58.225.193:443
2015-11-20 19:42:43b305c523df2d1837fe21b63245213a96Virustotal results 2/54 (3.70%) Gootkit 163.53.247.37:443
2015-11-20 17:47:00ba9c24d717adf866bb37d7890930f724Virustotal results 23/53 (43.40%) Gootkit 163.53.247.37:443
2015-11-20 14:13:0666ad6bbb4d8b69590059a5e149341503Virustotal results 3/54 (5.56%) Gootkit 163.53.247.37:443
2015-11-19 23:03:27ed952c752dfbbf7d048ef979e1e4baa7Virustotal results 27/56 (48.21%) Gootkit 163.53.247.37:443
2015-11-19 14:57:159167c8f5ec2c48625ba313de4fef3990Virustotal results 29/55 (52.73%) Gootkit 163.53.247.37:443
2015-11-19 14:01:4734b7851b032759bfd19ba0cca5bbc0a9Virustotal results 9/54 (16.67%) Gootkit 163.53.247.37:443
2015-11-19 11:25:45cd2fabb84f00aafac6d5e8d9c879c63bVirustotal results 27/56 (48.21%) Gootkit 163.53.247.37:443
2015-11-19 10:42:10d0baec2083abd07fcdd19b302d0cd994Virustotal results 20/55 (36.36%) Gootkit 163.53.247.37:443
2015-11-19 10:01:5577c63a856e9664d0ea217f725daf7d9dn/aGootkit 163.53.247.37:443
2015-11-19 07:40:5049f99ec4f730067d62d8eb9d74b9d404n/aGootkit 163.53.247.37:443
2015-11-18 17:58:11689f13e8058790dc5e4c2de65333aad7Virustotal results 2/54 (3.70%) Gootkit 163.53.247.37:443
2015-11-18 17:57:4768103cc2671928dd146e79cf5b5bd6cbn/aGootkit 163.53.247.37:443
2015-11-16 10:27:49d199621f6ba0a0f027a6935aa510c626Virustotal results 19/55 (34.55%) Gootkit 163.53.247.37:443
2015-11-16 06:11:14526b7745ea99b4cffe98969cae1a3a14n/aGootkit 89.41.173.221:443
2015-11-15 12:09:306f4ad7da349bc006283931063cf0a128Virustotal results 31/56 (55.36%) Gootkit 89.41.173.221:443
2015-11-15 09:24:41db6833ddda09d0e8f2d4529167eececaVirustotal results 16/55 (29.09%) Gootkit 89.41.173.221:443
2015-11-14 09:47:065d794dcc54d37fbeb4f557c1e4b4b828Virustotal results 10/54 (18.52%) Gootkit 23.92.221.82:443
2015-11-14 08:40:452976526031482ae286e5bd6aa0814491n/aGootkit 23.92.221.82:443
2015-11-14 00:07:04fcfe658b77f0526e3af9391b2928dfc1Virustotal results 8/55 (14.55%) Gootkit 176.123.29.23:443
2015-11-13 23:49:3046f567d010fa8e8a7d3b3d34066800f3Virustotal results 30/56 (53.57%) Gootkit 23.92.221.82:443
2015-11-13 07:37:5329b1bb49a40b3a11850b62298435771en/aGootkit 176.123.29.23:443
2015-11-13 07:36:482963e29c9e05bfbff14c88b0efb7d495n/aGootkit 176.123.29.23:443
2015-11-13 07:29:52477b0b14766d3fd5f51831eaf3918debVirustotal results 30/55 (54.55%) Gootkit 176.123.29.23:443
2015-11-13 07:06:0911327731908d0554b7fe913c97e87871Virustotal results 28/56 (50.00%) Gootkit 176.123.29.23:443
2015-11-13 04:59:404d598197d099c734fe8b8790cc04cbbfn/aGootkit 176.123.29.23:443
2015-11-12 19:11:245d470c55cdcb45795dadaf254136c9e1Virustotal results 13/55 (23.64%) Gootkit 176.123.29.23:443
2015-11-10 22:39:35f80de329d75c9f30a18517b34c84d776Virustotal results 14/56 (25.00%) Gootkit 176.123.29.23:443
2015-11-09 20:20:2338864c75bd258bb07e2c954a1686140fVirustotal results 30/56 (53.57%) Gootkit 176.123.29.23:443

# of entries: 46 (max: 100)