SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 12f3ea9d654deea679adbabd27621bfcd2bbaa33.

Database Entry


SHA1 Fingerprint:12f3ea9d654deea679adbabd27621bfcd2bbaa33
Certificate Common Name (CN):example.com
Issuer Distinguished Name (DN):example.com
TLS Version:TLS 1.2
First seen:2018-04-07 08:31:27 UTC
Last seen:2018-04-08 09:37:34 UTC
Status:Blacklisted
Listing reason:TrickBot C&C
Listing date:2018-04-08 19:42:00
Malware samples:3
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2018-04-08 09:37:34fa9762828cf25f0182cc5a6781e708daVirustotal results 9/58 (15.52%) TrickBot 78.155.206.228:443
2018-04-08 09:37:34fa9762828cf25f0182cc5a6781e708daVirustotal results 9/58 (15.52%) TrickBot 78.155.206.228:443
2018-04-07 20:02:068645fdd0f501cde043b19d1838b2b6cfVirustotal results 43/67 (64.18%) TrickBot 78.155.206.228:443
2018-04-07 20:02:068645fdd0f501cde043b19d1838b2b6cfVirustotal results 43/67 (64.18%) TrickBot 78.155.206.228:443
2018-04-07 08:31:2838ac1ec053b6aac3c85fcaaf522ca522Virustotal results 15/66 (22.73%) TrickBot 78.155.206.228:443
2018-04-07 08:31:2838ac1ec053b6aac3c85fcaaf522ca522Virustotal results 15/66 (22.73%) TrickBot 78.155.206.228:443

# of entries: 6 (max: 100)