SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 16bd348cab3388079a7375d77d045daece8e6468.

Database Entry


SHA1 Fingerprint:16bd348cab3388079a7375d77d045daece8e6468
Certificate Common Name (CN):birdmilk.top
Issuer Distinguished Name (DN):R3
TLS Version:TLS 1.2
First seen:2021-04-25 19:30:15 UTC
Last seen:2021-04-26 15:08:26 UTC
Status:Blacklisted
Listing reason:RaccoonStealer C&C
Listing date:2021-04-26 12:59:43
Malware samples:22
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2021-04-26 15:08:26eec84bb9489894c4e293139a2f16936fVirustotal results 41 / 70 (58.57%) RaccoonStealer34.105.210.195:443
2021-04-26 13:54:47d06a137e6cfe07c2011f8c38ee2709caVirustotal results 44 / 70 (62.86%) 34.105.210.195:443
2021-04-26 12:37:435cddef7f351383a4ff9f55e3d6cc86dfn/aRaccoonStealer34.105.210.195:443
2021-04-26 11:36:36224aa8d9d7b59e09030d92370bf0b351n/aRaccoonStealer34.105.210.195:443
2021-04-26 10:54:3544be8d9f3d7a9ea4a683a6a79a55cacdn/aRaccoonStealer34.105.210.195:443
2021-04-26 10:53:40dead56ef8ab17d3ef5d0d6a432146930Virustotal results 40 / 69 (57.97%) 34.105.210.195:443
2021-04-26 10:04:299013a8b3f9a8adecf2ff25377f525748n/aRaccoonStealer34.105.210.195:443
2021-04-26 09:25:27d816bb368836cbdedb66eef26acd2c9en/aRaccoonStealer34.105.210.195:443
2021-04-26 08:25:31a5f588347a40b7f866877a91a5b32c92n/aRaccoonStealer34.105.210.195:443
2021-04-26 07:26:47c71d8cf2bb1e3c20113764b002e3eb84Virustotal results 48 / 71 (67.61%) 34.105.210.195:443
2021-04-26 06:39:21c8087962c7994116106a2ef5cd9a6cbdVirustotal results 4 / 69 (5.80%) CoinMiner34.105.210.195:443
2021-04-26 06:06:329f05683c201588a7403a2cbbe1f8ef0bn/aRaccoonStealer34.105.210.195:443
2021-04-26 05:11:40b363d8079ec25e7067fa7c7a3c220fc2Virustotal results 26 / 70 (37.14%) RaccoonStealer34.105.210.195:443
2021-04-26 03:55:0783f96101a38cafddc227de3bc3828e40n/aRaccoonStealer34.105.210.195:443
2021-04-26 02:29:05af4b0822fcb88f24f9ce41dff3630531Virustotal results 41 / 70 (58.57%) 34.105.210.195:443
2021-04-26 01:49:27af1c26523b04367bf1f97561353bc46dVirustotal results 41 / 70 (58.57%) 34.105.210.195:443
2021-04-26 01:37:04d59db931061dacea4021975d3c1fe568n/aRaccoonStealer34.105.210.195:443
2021-04-25 23:25:057a1d292583c46d354cd228444e714fc7Virustotal results 31 / 70 (44.29%) RaccoonStealer34.105.210.195:443
2021-04-25 21:54:447682e4a7bfedebfa8cb704251bbba471Virustotal results 38 / 62 (61.29%) RaccoonStealer34.105.210.195:443
2021-04-25 21:27:0503e636a269a382e81c7e16d6268c2ddbn/aRaccoonStealer34.105.210.195:443
2021-04-25 20:33:372fe18924d59722090cf6cf5f7057d093n/aRaccoonStealer34.105.210.195:443
2021-04-25 19:30:15248987d9e986836e8a2666e3eb713aeeVirustotal results 38 / 70 (54.29%) 34.105.210.195:443

# of entries: 22 (max: 100)