SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 0c5c0b114267590939592a6d4a819d8917097f73.

Database Entry


SHA1 Fingerprint:0c5c0b114267590939592a6d4a819d8917097f73
Certificate Common Name (CN):allcom
Issuer Distinguished Name (DN):allcom
TLS Version:SSLv3
First seen:2015-10-03 17:54:45 UTC
Last seen:2015-10-17 10:41:31 UTC
Status:Blacklisted
Listing reason:Gootkit C&C
Listing date:2015-10-12 07:12:33
Malware samples:9
Botnet C&Cs:5

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2015-10-17 10:41:31515f41e47da370fdb795344ad1bde330Virustotal results 3/56 (5.36%) Gootkit 185.24.233.212:80
2015-10-14 10:14:163f9920136ef2df71129cecc5479a9252Virustotal results 11/54 (20.37%) Gootkit 78.46.30.43:80
2015-10-11 20:57:57842255719fae98dd12640bec15d32109Virustotal results 4/56 (7.14%) Gootkit 89.248.164.58:80
2015-10-09 05:53:0989f023ff086fb17f7a7010b99a36ad6dVirustotal results 8/57 (14.04%) Gootkit 185.82.202.101:80
2015-10-08 22:17:377a64238ae908355404b92f06e50e2b40Virustotal results 7/56 (12.50%) Gootkit 178.208.77.10:80
2015-10-08 07:55:296d0ec655a5fc87f725c294df84112084Virustotal results 19/57 (33.33%) Gootkit 178.208.77.10:80
2015-10-04 17:11:043ff3dc5cd118c0e46090c930d3bfa296Virustotal results 14/57 (24.56%) Gootkit 178.208.77.10:80
2015-10-03 21:53:2721c22397477f2b2b057036521c8e0e82Virustotal results 0/57 (0.00%) Gootkit 178.208.77.10:80
2015-10-03 17:54:4525164b5b12e8fd1287262d455483f7faVirustotal results 9/57 (15.79%) Gootkit 178.208.77.10:80

# of entries: 9 (max: 100)