SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 1685ba03515650a1c2a1338bf9421ea00a7c0362.
Database Entry
| SHA1 Fingerprint: | 1685ba03515650a1c2a1338bf9421ea00a7c0362 |
|---|---|
| Certificate Common Name (CN): | eth.floleveriana.at |
| Issuer Distinguished Name (DN): | eth.floleveriana.at |
| TLS Version: | TLSv1 |
| First seen: | 2016-04-24 21:21:54 UTC |
| Last seen: | 2016-06-22 20:28:29 UTC |
| Status: | Blacklisted |
| Listing reason: | Dridex C&C |
| Listing date: | 2016-04-25 05:47:37 |
| Malware samples: | 5 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2016-06-22 20:28:29 | 337b92f2db6cdb1e4eca62d5ec0a0aac |  17/55 (30.91%)
| Dridex | 186.250.48.10:10443 |
| 2016-06-22 20:28:29 | 337b92f2db6cdb1e4eca62d5ec0a0aac | 17/55 (30.91%)
| Dridex | 186.250.48.10:10443 |
| 2016-05-27 16:09:43 | d729d143313779c702b174ee92a6d9e4 | 13/57 (22.81%)
| Dridex | 186.250.48.10:10443 |
| 2016-05-27 16:09:43 | d729d143313779c702b174ee92a6d9e4 | 13/57 (22.81%)
| Dridex | 186.250.48.10:10443 |
| 2016-05-18 11:23:38 | 4a6bdf0688c9f51bc0f9e1d3cbecd476 | 3/56 (5.36%)
| Dridex | 186.250.48.10:10443 |
| 2016-05-18 11:23:38 | 4a6bdf0688c9f51bc0f9e1d3cbecd476 | 3/56 (5.36%)
| Dridex | 186.250.48.10:10443 |
| 2016-04-27 08:25:01 | 0daff4009be44f804b7811d345e30ec2 | 3/56 (5.36%)
| Dridex | 186.250.48.10:10443 |
| 2016-04-27 08:25:01 | 0daff4009be44f804b7811d345e30ec2 | 3/56 (5.36%)
| Dridex | 186.250.48.10:10443 |
| 2016-04-24 21:21:54 | cf39567a7da322c8eafd02583f1ac809 | 32/55 (58.18%)
| Dridex | 186.250.48.10:10443 |
| 2016-04-24 21:21:54 | cf39567a7da322c8eafd02583f1ac809 | 32/55 (58.18%)
| Dridex | 186.250.48.10:10443 |
# of entries: 10 (max: 100)