SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 17ff788ae04ce10d278a40d0e1e8ccab1d0dc8f8.

Database Entry


SHA1 Fingerprint:17ff788ae04ce10d278a40d0e1e8ccab1d0dc8f8
Certificate Common Name (CN):web.gibnos.pw/emailAddress=support@web.gibnos.pw
Issuer Distinguished Name (DN):etc/emailAddress=support@web.gibnos.pw
TLS Version:TLS 1.2
First seen:2015-05-09 06:36:50 UTC
Last seen:2015-06-06 12:33:16 UTC
Status:Blacklisted
Listing reason:Malware C&C
Listing date:2015-06-07 08:36:42
Malware samples:6
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2015-06-06 12:33:168186a5944ac56dc4d9703a3985a00ae1Virustotal results 2/57 (3.51%) 91.219.29.148:443
2015-06-06 03:18:06337092de04cf37aa49c3768ff8372f9aVirustotal results 13/57 (22.81%) 91.219.29.148:443
2015-06-05 19:09:267e70615c458bd2c6a0d0a39054941f53Virustotal results 21/57 (36.84%) 91.219.29.148:443
2015-06-03 13:27:3180f77ddc14f3cdcdbb5b3fea25b46079Virustotal results 23/57 (40.35%) 91.219.29.148:443
2015-05-14 20:18:1441e13107de89075ccf3c4dec2658f0eeVirustotal results 23/57 (40.35%) 91.219.29.148:443
2015-05-09 06:36:50c8131a48e834291be6c7402647250e73Virustotal results 34/57 (59.65%) 91.219.29.148:443

# of entries: 6 (max: 100)