SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 16d5725359b5d6f44b1a961781112b4d47d9e17a.

Database Entry


SHA1 Fingerprint:16d5725359b5d6f44b1a961781112b4d47d9e17a
Certificate Common Name (CN):moxqk.pics
Issuer Distinguished Name (DN):WE1
TLS Version:TLS 1.2
First seen:2025-07-15 18:03:04 UTC
Last seen:2025-07-15 18:15:57 UTC
Status:Blacklisted
Listing reason:LummaStealer C&C
Listing date:2025-07-16 02:41:46
Malware samples:9
Botnet C&Cs:2

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2025-07-15 18:15:57dd48185f2c056278b94040e0a9e7ec2an/a104.21.75.22:443
2025-07-15 18:14:34d7b7847f8f4acfee1185245c3492bb1an/a104.21.75.22:443
2025-07-15 18:14:316f49f203260f3d3a45263e0a2f8867edn/a172.67.210.62:443
2025-07-15 18:14:107eb1b11fd8cb7478e91706aae8883136n/a104.21.75.22:443
2025-07-15 18:12:26ab2a6ac15b7c616480e0f3823de64355n/a104.21.75.22:443
2025-07-15 18:11:11a103531c24573207377e5853b023b76fn/a104.21.75.22:443
2025-07-15 18:07:3115b4cd43791a0e862d0decf602f30c35n/a104.21.75.22:443
2025-07-15 18:05:24764fbc9272003f0f2712aa8b3fcdff80n/a104.21.75.22:443
2025-07-15 18:03:04c8fb979204835d684d46002f6b3e3c6dn/a172.67.210.62:443

# of entries: 9 (max: 100)