SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 0da045613676e3ae738defabe976de56c3438489.

Database Entry


SHA1 Fingerprint:0da045613676e3ae738defabe976de56c3438489
Certificate Common Name (CN):gthitantttte.gm
Issuer Distinguished Name (DN):gthitantttte.gm
TLS Version:SSLv3
First seen:2016-03-05 09:19:23 UTC
Last seen:never
Status:Blacklisted
Listing reason:Dridex C&C
Listing date:2016-03-05 16:42:26
Malware samples:1
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2016-03-05 09:19:2375a3a649131029e4d36b578b87a11b8fVirustotal results 27/56 (48.21%) Dridex 103.13.29.158:943
2016-03-05 09:19:2375a3a649131029e4d36b578b87a11b8fVirustotal results 27/56 (48.21%) Dridex 103.13.29.158:943

# of entries: 2 (max: 100)