SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 17b2d26a235d92f31a992f85f2483d7ffa6d2109.

Database Entry


SHA1 Fingerprint:17b2d26a235d92f31a992f85f2483d7ffa6d2109
Certificate Common Name (CN):C=XX, L=Default City, O=Default Company Ltd
Issuer Distinguished Name (DN):C=XX, L=Default City, O=Default Company Ltd
TLS Version:TLS 1.2
First seen:2015-07-31 08:31:09 UTC
Last seen:2015-08-09 01:20:07 UTC
Status:Blacklisted
Listing reason:Ransomware C&C
Listing date:2015-07-31 09:21:56
Malware samples:8
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2015-08-09 01:20:07d404a31f7d718898de7c4b646112add3Virustotal results 1/56 (1.79%) Ransomware91.218.231.69:443
2015-08-08 10:04:47ab144883399a21e6be24a6f1805a16a0Virustotal results 31/55 (56.36%) Ransomware91.218.231.69:443
2015-08-07 15:36:31319319b9eba43c6b9d3cab08cba8df82Virustotal results 28/55 (50.91%) Ransomware91.218.231.69:443
2015-08-06 19:43:114a2eac89518c90bc8c4312381b55be79Virustotal results 5/55 (9.09%) Ransomware91.218.231.69:443
2015-08-06 08:02:24bab6d63261900737c2c2933cb0eac338Virustotal results 1/56 (1.79%) Ransomware91.218.231.69:443
2015-08-06 07:36:22b4fa7113b238843894042249eed7680bVirustotal results 3/55 (5.45%) Ransomware91.218.231.69:443
2015-08-03 21:28:299109848b31c235ad6419016119acb5f0Virustotal results 1/56 (1.79%) Ransomware91.218.231.69:443
2015-07-31 08:31:095dba3fdcebb683eeba1318aeb745a2f6Virustotal results 5/55 (9.09%) Ransomware91.218.231.69:443

# of entries: 8 (max: 100)