SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 10e70548ddee0ff53fe62247bf1b7075a30aa5a2.
Database Entry
| SHA1 Fingerprint: | 10e70548ddee0ff53fe62247bf1b7075a30aa5a2 |
|---|---|
| Certificate Common Name (CN): | afditnzurh.xyz |
| Issuer Distinguished Name (DN): | R3 |
| TLS Version: | TLS 1.2 |
| First seen: | 2021-05-27 00:26:56 UTC |
| Last seen: | 2021-06-15 01:57:25 UTC |
| Status: | Blacklisted |
| Listing reason: | ServHelper C&C |
| Listing date: | 2021-06-15 06:28:08 |
| Malware samples: | 8 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2021-06-15 01:57:25 | 1097ecc48f8d2b1186d3a906a2259aaf | n/a | ServHelper | 5.181.156.140:443 |
| 2021-06-15 01:57:25 | 1097ecc48f8d2b1186d3a906a2259aaf | n/a | ServHelper | 5.181.156.140:443 |
| 2021-06-11 18:40:18 | 700491a8da7b872de1658d5ef86139aa |  29 / 70 (41.43%)
| RaccoonStealer | 5.181.156.140:443 |
| 2021-06-11 18:40:18 | 700491a8da7b872de1658d5ef86139aa | 29 / 70 (41.43%)
| RaccoonStealer | 5.181.156.140:443 |
| 2021-06-06 12:39:50 | f062e49b4f9e598d99042b98f9419d6d | n/a | ServHelper | 5.181.156.140:443 |
| 2021-06-06 12:39:50 | f062e49b4f9e598d99042b98f9419d6d | n/a | ServHelper | 5.181.156.140:443 |
| 2021-06-01 06:26:44 | f603cd3ce2a0ba38fbcd43c1ee03dd63 | 35 / 70 (50.00%)
| CryptBot | 5.181.156.140:443 |
| 2021-06-01 06:26:44 | f603cd3ce2a0ba38fbcd43c1ee03dd63 | 35 / 70 (50.00%)
| CryptBot | 5.181.156.140:443 |
| 2021-05-29 00:27:18 | 698f5d1ffeffdd7ed9e0001fac107f05 | 28 / 68 (41.18%)
| ArkeiStealer | 5.181.156.140:443 |
| 2021-05-29 00:27:18 | 698f5d1ffeffdd7ed9e0001fac107f05 | 28 / 68 (41.18%)
| ArkeiStealer | 5.181.156.140:443 |
| 2021-05-28 20:26:45 | d2f3ad8d06c8654416ea4c57296ca6ed | n/a | ServHelper | 5.181.156.140:443 |
| 2021-05-28 20:26:45 | d2f3ad8d06c8654416ea4c57296ca6ed | n/a | ServHelper | 5.181.156.140:443 |
| 2021-05-27 19:11:17 | 5145253c268969fd0117f2bfe00d4227 | 18 / 69 (26.09%)
| 5.181.156.140:443 | |
| 2021-05-27 19:11:17 | 5145253c268969fd0117f2bfe00d4227 | 18 / 69 (26.09%)
| 5.181.156.140:443 | |
| 2021-05-27 00:26:56 | 4c9bb1adf101943c077c224a224ed490 | 13 / 69 (18.84%)
| ServHelper | 5.181.156.140:443 |
| 2021-05-27 00:26:56 | 4c9bb1adf101943c077c224a224ed490 | 13 / 69 (18.84%)
| ServHelper | 5.181.156.140:443 |
# of entries: 16 (max: 100)