SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 16d5725359b5d6f44b1a961781112b4d47d9e17a.
Database Entry
| SHA1 Fingerprint: | 16d5725359b5d6f44b1a961781112b4d47d9e17a |
|---|---|
| Certificate Common Name (CN): | moxqk.pics |
| Issuer Distinguished Name (DN): | WE1 |
| TLS Version: | TLS 1.2 |
| First seen: | 2025-07-15 18:03:04 UTC |
| Last seen: | 2025-07-15 18:15:57 UTC |
| Status: | Blacklisted |
| Listing reason: | LummaStealer C&C |
| Listing date: | 2025-07-16 02:41:46 |
| Malware samples: | 9 |
| Botnet C&Cs: | 2 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2025-07-15 18:15:57 | dd48185f2c056278b94040e0a9e7ec2a | n/a | 104.21.75.22:443 | |
| 2025-07-15 18:14:34 | d7b7847f8f4acfee1185245c3492bb1a | n/a | 104.21.75.22:443 | |
| 2025-07-15 18:14:31 | 6f49f203260f3d3a45263e0a2f8867ed | n/a | 172.67.210.62:443 | |
| 2025-07-15 18:14:10 | 7eb1b11fd8cb7478e91706aae8883136 | n/a | 104.21.75.22:443 | |
| 2025-07-15 18:12:26 | ab2a6ac15b7c616480e0f3823de64355 | n/a | 104.21.75.22:443 | |
| 2025-07-15 18:11:11 | a103531c24573207377e5853b023b76f | n/a | 104.21.75.22:443 | |
| 2025-07-15 18:07:31 | 15b4cd43791a0e862d0decf602f30c35 | n/a | 104.21.75.22:443 | |
| 2025-07-15 18:05:24 | 764fbc9272003f0f2712aa8b3fcdff80 | n/a | 104.21.75.22:443 | |
| 2025-07-15 18:03:04 | c8fb979204835d684d46002f6b3e3c6d | n/a | 172.67.210.62:443 |
# of entries: 9 (max: 100)