SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 0f3f717020b132bde96c9d00173a7a53dd68ead9.

Database Entry


SHA1 Fingerprint:0f3f717020b132bde96c9d00173a7a53dd68ead9
Certificate Common Name (CN):6ieanthedilyan.Ftyhe5lysoua.tvs
Issuer Distinguished Name (DN):6ieanthedilyan.Ftyhe5lysoua.tvs
TLS Version:TLS 1.2' NOTBEF
First seen:2018-11-28 10:30:24 UTC
Last seen:2018-12-03 15:49:03 UTC
Status:Blacklisted
Listing reason:Dridex C&C
Listing date:2018-11-30 12:00:29
Malware samples:17
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2018-12-03 15:49:036e7f89f905ec25238f161fe2fb36c917Virustotal results 20/69 (28.99%) Dridex 198.61.196.18:1801
2018-12-01 23:19:5817667ed6f2f6daf001df89e82a433701Virustotal results 30/70 (42.86%) Dridex 198.61.196.18:1801
2018-12-01 06:55:54499c9245f214e755ae8277782ed5bf2fVirustotal results 15/67 (22.39%) 198.61.196.18:1801
2018-12-01 04:18:4297a99bccb1c7b5f64b3e72fbcfed8e3eVirustotal results 21/69 (30.43%) 198.61.196.18:1801
2018-12-01 02:39:592365fd8dd0674a8c0b53d895ebc9d7a4Virustotal results 16/69 (23.19%) 198.61.196.18:1801
2018-11-30 15:44:00dba562ea712e538c14ccea514ade4ac0Virustotal results 14/70 (20.00%) 198.61.196.18:1801
2018-11-30 10:52:15d502b2f820de0fc451919cfc42b51715Virustotal results 26/69 (37.68%) Dridex 198.61.196.18:1801
2018-11-30 10:49:229bfd32239123aab56a43d82849a47a7eVirustotal results 15/70 (21.43%) Dridex 198.61.196.18:1801
2018-11-30 07:19:153ed318e49e68bd15f5544419f97ff0c5Virustotal results 16/70 (22.86%) Dridex 198.61.196.18:1801
2018-11-30 01:44:392e9bf3bacdf822b908be554d3a33eb7eVirustotal results 17/69 (24.64%) Dridex 198.61.196.18:1801
2018-11-29 23:30:590cfbac524fc6baf04a137e2ced748c8fVirustotal results 16/69 (23.19%) Dridex 198.61.196.18:1801
2018-11-28 22:23:21ef01a03ab0331d0865087c4b023f7974n/aDridex 198.61.196.18:1801
2018-11-28 21:53:5142c4f76e4604edfcb21b4a484084ab84n/aDridex 198.61.196.18:1801
2018-11-28 19:54:24edcabae4c660be0658d84f1b4de9eae5n/aDridex 198.61.196.18:1801
2018-11-28 19:47:33ab0cbcf73f6b20f5e3e169b8499caec6n/aDridex 198.61.196.18:1801
2018-11-28 14:48:3860b2a867b6fe57f5e3aa1d9a192a4a76n/aDridex 198.61.196.18:1801
2018-11-28 10:30:24d781d470701a24c4ef2cbecd98db89c0n/aDridex 198.61.196.18:1801

# of entries: 17 (max: 100)