SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 0f7f0ed6f4f0aade6ed2a1cbcd87dfda657528f1.

Database Entry

SHA1 Fingerprint:	0f7f0ed6f4f0aade6ed2a1cbcd87dfda657528f1
Certificate Common Name (CN):	gsghhd4fgaaaqhu.xyz
Issuer Distinguished Name (DN):	R3
TLS Version:	TLS 1.2
First seen:	2021-03-11 01:43:07 UTC
Last seen:	2021-03-11 06:58:03 UTC
Status:	Blacklisted
Listing reason:	RaccoonStealer C&C
Listing date:	2021-03-11 07:25:15
Malware samples:	10
Botnet C&Cs:	1

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2021-03-11 06:58:03	6d8c4ed5fe94d178d59f95d1f01883a2	n/a	ServHelper	185.163.45.182:443
2021-03-11 06:58:03	6d8c4ed5fe94d178d59f95d1f01883a2	n/a	ServHelper	185.163.45.182:443
2021-03-11 06:44:14	a1344e7716b82be1d370c02352d22a28	22 / 67 (32.84%)	ServHelper	185.163.45.182:443
2021-03-11 06:44:14	a1344e7716b82be1d370c02352d22a28	22 / 67 (32.84%)	ServHelper	185.163.45.182:443
2021-03-11 06:42:40	7d8b6cf4db7e0c799d63e4594dd1c89e	25 / 70 (35.71%)	ServHelper	185.163.45.182:443
2021-03-11 06:42:40	7d8b6cf4db7e0c799d63e4594dd1c89e	25 / 70 (35.71%)	ServHelper	185.163.45.182:443
2021-03-11 06:39:09	418df4baab72fdec825c7a8eb900f038	26 / 69 (37.68%)	ServHelper	185.163.45.182:443
2021-03-11 06:39:09	418df4baab72fdec825c7a8eb900f038	26 / 69 (37.68%)	ServHelper	185.163.45.182:443
2021-03-11 06:32:28	47a725f02faf699bfabd0b0f4db34b82	22 / 68 (32.35%)	ServHelper	185.163.45.182:443
2021-03-11 06:32:28	47a725f02faf699bfabd0b0f4db34b82	22 / 68 (32.35%)	ServHelper	185.163.45.182:443
2021-03-11 06:23:45	02324684237ff64ecf831197bf02a81f	25 / 70 (35.71%)	ServHelper	185.163.45.182:443
2021-03-11 06:23:45	02324684237ff64ecf831197bf02a81f	25 / 70 (35.71%)	ServHelper	185.163.45.182:443
2021-03-11 06:23:19	02727fe935a761d930148ecc949f502d	n/a		185.163.45.182:443
2021-03-11 06:23:19	02727fe935a761d930148ecc949f502d	n/a		185.163.45.182:443
2021-03-11 01:48:04	e8b66863d81302f9f602be2d2b7a5001	27 / 69 (39.13%)	ServHelper	185.163.45.182:443
2021-03-11 01:48:04	e8b66863d81302f9f602be2d2b7a5001	27 / 69 (39.13%)	ServHelper	185.163.45.182:443
2021-03-11 01:45:56	e9903634142aafe67fe7710b1d7d8fce	31 / 70 (44.29%)	ServHelper	185.163.45.182:443
2021-03-11 01:45:56	e9903634142aafe67fe7710b1d7d8fce	31 / 70 (44.29%)	ServHelper	185.163.45.182:443
2021-03-11 01:43:07	b9324c99f5a412dc949730204e6e7ce5	29 / 67 (43.28%)	ServHelper	185.163.45.182:443
2021-03-11 01:43:07	b9324c99f5a412dc949730204e6e7ce5	29 / 67 (43.28%)	ServHelper	185.163.45.182:443

# of entries: 20 (max: 100)