SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 17ff788ae04ce10d278a40d0e1e8ccab1d0dc8f8.

Database Entry

SHA1 Fingerprint:	17ff788ae04ce10d278a40d0e1e8ccab1d0dc8f8
Certificate Common Name (CN):	web.gibnos.pw/emailAddress=support@web.gibnos.pw
Issuer Distinguished Name (DN):	etc/emailAddress=support@web.gibnos.pw
TLS Version:	TLS 1.2
First seen:	2015-05-09 06:36:50 UTC
Last seen:	2015-06-06 12:33:16 UTC
Status:	Blacklisted
Listing reason:	Malware C&C
Listing date:	2015-06-07 08:36:42
Malware samples:	6
Botnet C&Cs:	1

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Botnet C&C (IP:port)
2015-06-06 12:33:16	8186a5944ac56dc4d9703a3985a00ae1	2/57 (3.51%)	91.219.29.148:443
2015-06-06 12:33:16	8186a5944ac56dc4d9703a3985a00ae1	2/57 (3.51%)	91.219.29.148:443
2015-06-06 03:18:06	337092de04cf37aa49c3768ff8372f9a	13/57 (22.81%)	91.219.29.148:443
2015-06-06 03:18:06	337092de04cf37aa49c3768ff8372f9a	13/57 (22.81%)	91.219.29.148:443
2015-06-05 19:09:26	7e70615c458bd2c6a0d0a39054941f53	21/57 (36.84%)	91.219.29.148:443
2015-06-05 19:09:26	7e70615c458bd2c6a0d0a39054941f53	21/57 (36.84%)	91.219.29.148:443
2015-06-03 13:27:31	80f77ddc14f3cdcdbb5b3fea25b46079	23/57 (40.35%)	91.219.29.148:443
2015-06-03 13:27:31	80f77ddc14f3cdcdbb5b3fea25b46079	23/57 (40.35%)	91.219.29.148:443
2015-05-14 20:18:14	41e13107de89075ccf3c4dec2658f0ee	23/57 (40.35%)	91.219.29.148:443
2015-05-14 20:18:14	41e13107de89075ccf3c4dec2658f0ee	23/57 (40.35%)	91.219.29.148:443
2015-05-09 06:36:50	c8131a48e834291be6c7402647250e73	34/57 (59.65%)	91.219.29.148:443
2015-05-09 06:36:50	c8131a48e834291be6c7402647250e73	34/57 (59.65%)	91.219.29.148:443

# of entries: 12 (max: 100)