SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 158cd4701d337bfb42199fa6f6c448633007175f.
Database Entry
| SHA1 Fingerprint: | 158cd4701d337bfb42199fa6f6c448633007175f |
|---|---|
| Certificate Common Name (CN): | Shield Ventures |
| Issuer Distinguished Name (DN): | Shield Ventures |
| TLS Version: | TLS 1.2 |
| First seen: | 2026-05-20 14:18:21 UTC |
| Last seen: | 2026-05-20 15:58:37 UTC |
| Status: | Blacklisted |
| Listing reason: | PureHVNC C&C |
| Listing date: | 2026-05-21 09:13:36 |
| Malware samples: | 9 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2026-05-20 15:58:37 | 30fbde301c8955ef280c02f6d924f3cb | n/a | 151.243.109.130:9518 | |
| 2026-05-20 15:56:42 | 440b4a6cdfffd267f2525aac12a19c4b | n/a | 151.243.109.130:9518 | |
| 2026-05-20 15:56:37 | 3869f33222ef472d6b5fe8944416e44e | n/a | 151.243.109.130:9518 | |
| 2026-05-20 14:21:26 | 8cc70cbaa368f072c7498c8616e51dc5 | n/a | 151.243.109.130:9518 | |
| 2026-05-20 14:20:52 | c8143c2e6df9a25e26927d233669641f | n/a | 151.243.109.130:9518 | |
| 2026-05-20 14:19:57 | de546130033f6690698bdf521993e7e4 | n/a | 151.243.109.130:9518 | |
| 2026-05-20 14:19:51 | cfbe98657eee0b94c36d11717ac36b22 | n/a | 151.243.109.130:9518 | |
| 2026-05-20 14:18:29 | 815c566646b43f4e2eb951ff60f36532 | n/a | 151.243.109.130:9518 | |
| 2026-05-20 14:18:21 | 046f2ed5e4a4ba4f71e6c8d9c8376ae8 | n/a | 151.243.109.130:9518 |
# of entries: 9 (max: 100)