SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 16b8caa789abeff2c49b0da43519b0cbf3f7707c.

Database Entry

SHA1 Fingerprint:16b8caa789abeff2c49b0da43519b0cbf3f7707c
Certificate Common Name (CN):Orcus Server
Issuer Distinguished Name (DN):Orcus Server
TLS Version:TLSv1
First seen:2020-11-01 02:24:55 UTC
Last seen:2021-03-29 19:09:13 UTC
Status:Blacklisted
Listing reason:OrcusRAT C&C
Listing date:2021-02-02 16:51:16
Malware samples:11
Botnet C&Cs:6

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2021-03-29 19:09:13c0816a4f34e7447a20089a5d6b25d2deVirustotal results 53 / 69 (76.81%) OrcusRAT 3.19.75.7:7777
2021-03-29 19:09:13c0816a4f34e7447a20089a5d6b25d2deVirustotal results 53 / 69 (76.81%) OrcusRAT 3.19.75.7:7777
2021-02-27 15:23:38aef9e605bddf1f04705c2aa15c435e9fVirustotal results 39 / 64 (60.94%) OrcusRAT 3.19.75.7:7777
2021-02-27 15:23:38aef9e605bddf1f04705c2aa15c435e9fVirustotal results 39 / 64 (60.94%) OrcusRAT 3.19.75.7:7777
2021-02-24 10:35:30e3c2cf5749ef923625d5941a2c869c39Virustotal results 58 / 71 (81.69%) OrcusRAT 3.19.75.7:7777
2021-02-24 10:35:30e3c2cf5749ef923625d5941a2c869c39Virustotal results 58 / 71 (81.69%) OrcusRAT 3.19.75.7:7777
2021-02-02 16:33:32f9035e92f7087fc26d865411844e24c9Virustotal results 55 / 71 (77.46%) OrcusRAT 13.58.93.231:7777
2021-02-02 16:33:32f9035e92f7087fc26d865411844e24c9Virustotal results 55 / 71 (77.46%) OrcusRAT 13.58.93.231:7777
2021-01-03 07:35:08d52c4f55d1d5419dcff58102666bf1fbVirustotal results 37 / 71 (52.11%) OrcusRAT 80.89.230.61:10134
2021-01-03 07:35:08d52c4f55d1d5419dcff58102666bf1fbVirustotal results 37 / 71 (52.11%) OrcusRAT 80.89.230.61:10134
2020-12-03 22:59:15a73ebb199434211b145a9a9f01ca15fbVirustotal results 34 / 71 (47.89%) OrcusRAT 3.21.227.133:3302
2020-12-03 22:59:15a73ebb199434211b145a9a9f01ca15fbVirustotal results 34 / 71 (47.89%) OrcusRAT 3.21.227.133:3302
2020-12-01 12:07:102c85543ff10ccd1018c0bdd97bb7aa8dVirustotal results 27 / 70 (38.57%) OrcusRAT 147.229.68.116:1268
2020-12-01 12:07:102c85543ff10ccd1018c0bdd97bb7aa8dVirustotal results 27 / 70 (38.57%) OrcusRAT 147.229.68.116:1268
2020-11-13 19:47:49b7977ab76b8098fad49c2cc2860d7655n/aOrcusRAT 95.181.157.49:1738
2020-11-13 19:47:49b7977ab76b8098fad49c2cc2860d7655n/aOrcusRAT 95.181.157.49:1738
2020-11-10 05:20:442eeaf06000d370fdeaa827f87bd440ffVirustotal results 16 / 70 (22.86%) OrcusRAT 95.181.157.49:1738
2020-11-10 05:20:442eeaf06000d370fdeaa827f87bd440ffVirustotal results 16 / 70 (22.86%) OrcusRAT 95.181.157.49:1738
2020-11-07 17:29:54944634df876fd3c4066f5fc79914fb60n/aOrcusRAT 95.181.157.49:1738
2020-11-07 17:29:54944634df876fd3c4066f5fc79914fb60n/aOrcusRAT 95.181.157.49:1738
2020-11-01 02:24:5562ba87cf8ebdb1f9dec4a5ec7a6c10c2Virustotal results 25 / 68 (36.76%) OrcusRAT 95.181.157.49:1738
2020-11-01 02:24:5562ba87cf8ebdb1f9dec4a5ec7a6c10c2Virustotal results 25 / 68 (36.76%) OrcusRAT 95.181.157.49:1738

# of entries: 22 (max: 100)