SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 189f94dc999d22a07e0814de34a77451161a7108.
Database Entry
| SHA1 Fingerprint: | 189f94dc999d22a07e0814de34a77451161a7108 |
|---|---|
| Certificate Common Name (CN): | lifemaindecision.top |
| Issuer Distinguished Name (DN): | R3 |
| TLS Version: | TLS 1.2 |
| First seen: | 2021-04-06 14:47:29 UTC |
| Last seen: | 2021-04-08 12:45:45 UTC |
| Status: | Blacklisted |
| Listing reason: | RaccoonStealer C&C |
| Listing date: | 2021-04-08 07:49:03 |
| Malware samples: | 33 |
| Botnet C&Cs: | 4 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2021-04-08 12:45:45 | 0b0248f0cc91963e8ff0cfdfe3f23156 | n/a | ServHelper | 45.139.187.144:443 |
| 2021-04-08 12:45:45 | 0b0248f0cc91963e8ff0cfdfe3f23156 | n/a | ServHelper | 45.139.187.144:443 |
| 2021-04-08 12:05:36 | 5b1567b4bf916074761e35c4b9aed3e3 | n/a | ServHelper | 45.139.187.144:443 |
| 2021-04-08 12:05:36 | 5b1567b4bf916074761e35c4b9aed3e3 | n/a | ServHelper | 45.139.187.144:443 |
| 2021-04-08 11:08:11 | 2d8999ab98d22f1fc4f1e47f8ec0e4c1 | n/a | ServHelper | 91.200.41.42:443 |
| 2021-04-08 11:08:11 | 2d8999ab98d22f1fc4f1e47f8ec0e4c1 | n/a | ServHelper | 91.200.41.42:443 |
| 2021-04-08 10:56:38 | 3515845262914457f49d776b8eb7f967 |  41 / 70 (58.57%)
| 45.139.187.144:443 | |
| 2021-04-08 10:56:38 | 3515845262914457f49d776b8eb7f967 | 41 / 70 (58.57%)
| 45.139.187.144:443 | |
| 2021-04-08 10:54:17 | 2fc51930be6bac718c30f2b574115aa4 | 41 / 70 (58.57%)
| 45.139.187.144:443 | |
| 2021-04-08 10:54:17 | 2fc51930be6bac718c30f2b574115aa4 | 41 / 70 (58.57%)
| 45.139.187.144:443 | |
| 2021-04-08 09:17:03 | ede97ff23fefd3e54cb26144383cd5ff | n/a | RaccoonStealer | 91.200.41.42:443 |
| 2021-04-08 09:17:03 | ede97ff23fefd3e54cb26144383cd5ff | n/a | RaccoonStealer | 91.200.41.42:443 |
| 2021-04-08 08:55:48 | 646089e2cde077365812909b39ce9e96 | n/a | ServHelper | 91.200.41.42:443 |
| 2021-04-08 08:55:48 | 646089e2cde077365812909b39ce9e96 | n/a | ServHelper | 91.200.41.42:443 |
| 2021-04-08 08:39:37 | c1cc1cdf5bfe6866fba717e55bf95ed5 | n/a | ServHelper | 91.200.41.42:443 |
| 2021-04-08 08:39:37 | c1cc1cdf5bfe6866fba717e55bf95ed5 | n/a | ServHelper | 91.200.41.42:443 |
| 2021-04-08 08:23:13 | ea32bffa48c805c5fae242021cafa41f | 20 / 67 (29.85%)
| RaccoonStealer | 91.200.41.42:443 |
| 2021-04-08 08:23:13 | ea32bffa48c805c5fae242021cafa41f | 20 / 67 (29.85%)
| RaccoonStealer | 91.200.41.42:443 |
| 2021-04-08 08:04:29 | d0e0c989840a87d5bce2f17891527679 | n/a | ServHelper | 185.66.13.246:443 |
| 2021-04-08 08:04:29 | d0e0c989840a87d5bce2f17891527679 | n/a | ServHelper | 185.66.13.246:443 |
| 2021-04-08 07:28:26 | e758ea6092c27e041906b6eb505c973c | 42 / 70 (60.00%)
| RaccoonStealer | 91.200.41.42:443 |
| 2021-04-08 07:28:26 | e758ea6092c27e041906b6eb505c973c | 42 / 70 (60.00%)
| RaccoonStealer | 91.200.41.42:443 |
| 2021-04-08 06:05:50 | 52cda18863f566acc4b5eff7f8f636f0 | n/a | ServHelper | 185.66.13.246:443 |
| 2021-04-08 06:05:50 | 52cda18863f566acc4b5eff7f8f636f0 | n/a | ServHelper | 185.66.13.246:443 |
| 2021-04-08 05:02:53 | 5fe98645af299f9560e0054ceaba54c3 | n/a | ServHelper | 185.66.13.246:443 |
| 2021-04-08 05:02:53 | 5fe98645af299f9560e0054ceaba54c3 | n/a | ServHelper | 185.66.13.246:443 |
| 2021-04-08 04:12:31 | 814e1e128afe1c57399a7422365d5ca0 | n/a | ServHelper | 91.200.41.42:443 |
| 2021-04-08 04:12:31 | 814e1e128afe1c57399a7422365d5ca0 | n/a | ServHelper | 91.200.41.42:443 |
| 2021-04-08 03:37:44 | 6e77f58c8e4319c474a9f69842c92197 | n/a | ServHelper | 91.200.41.42:443 |
| 2021-04-08 03:37:44 | 6e77f58c8e4319c474a9f69842c92197 | n/a | ServHelper | 91.200.41.42:443 |
| 2021-04-08 03:04:18 | 70263ee02c915c6ab8f52d5ff9ae6ffc | n/a | ServHelper | 91.200.41.42:443 |
| 2021-04-08 03:04:18 | 70263ee02c915c6ab8f52d5ff9ae6ffc | n/a | ServHelper | 91.200.41.42:443 |
| 2021-04-08 02:22:34 | d73fd4127cedd82ec566aecf62676d1e | 42 / 70 (60.00%)
| RaccoonStealer | 91.200.41.42:443 |
| 2021-04-08 02:22:34 | d73fd4127cedd82ec566aecf62676d1e | 42 / 70 (60.00%)
| RaccoonStealer | 91.200.41.42:443 |
| 2021-04-08 01:23:00 | ef924e09c8fe28c7bf0aed80b157fc2f | n/a | ServHelper | 185.66.13.246:443 |
| 2021-04-08 01:23:00 | ef924e09c8fe28c7bf0aed80b157fc2f | n/a | ServHelper | 185.66.13.246:443 |
| 2021-04-07 22:50:13 | c4d8d93e4af8077f37ac67fa9dc20eab | n/a | ServHelper | 91.200.41.42:443 |
| 2021-04-07 22:50:13 | c4d8d93e4af8077f37ac67fa9dc20eab | n/a | ServHelper | 91.200.41.42:443 |
| 2021-04-07 20:37:15 | 628368af3dd0bb17d00f60ac1ac03d12 | 41 / 68 (60.29%)
| Adware.FileTour | 91.200.41.42:443 |
| 2021-04-07 20:37:15 | 628368af3dd0bb17d00f60ac1ac03d12 | 41 / 68 (60.29%)
| Adware.FileTour | 91.200.41.42:443 |
| 2021-04-07 16:57:20 | ce9d4e5210c87a1177c3c424c30b6101 | 9 / 68 (13.24%)
| RaccoonStealer | 185.66.13.246:443 |
| 2021-04-07 16:57:20 | ce9d4e5210c87a1177c3c424c30b6101 | 9 / 68 (13.24%)
| RaccoonStealer | 185.66.13.246:443 |
| 2021-04-07 16:44:25 | ce1293b0026f065b5eb7b3ff7efd8752 | 44 / 69 (63.77%)
| RaccoonStealer | 91.200.41.42:443 |
| 2021-04-07 16:44:25 | ce1293b0026f065b5eb7b3ff7efd8752 | 44 / 69 (63.77%)
| RaccoonStealer | 91.200.41.42:443 |
| 2021-04-07 15:24:36 | 53ceed04210af06638e1799427df96b3 | n/a | ServHelper | 91.200.41.42:443 |
| 2021-04-07 15:24:36 | 53ceed04210af06638e1799427df96b3 | n/a | ServHelper | 91.200.41.42:443 |
| 2021-04-07 15:10:59 | c9136df854c0ffa8459fbee5fd9b174d | 27 / 70 (38.57%)
| 185.66.13.246:443 | |
| 2021-04-07 15:10:59 | c9136df854c0ffa8459fbee5fd9b174d | 27 / 70 (38.57%)
| 185.66.13.246:443 | |
| 2021-04-07 14:44:02 | c7c6b25a31a1bdd2b3b0d5aa070a270a | 40 / 65 (61.54%)
| ArkeiStealer | 185.66.13.246:443 |
| 2021-04-07 14:44:02 | c7c6b25a31a1bdd2b3b0d5aa070a270a | 40 / 65 (61.54%)
| ArkeiStealer | 185.66.13.246:443 |
| 2021-04-07 13:21:24 | c59a5999a8ca7085bad961f09939bbbe | 48 / 70 (68.57%)
| 91.200.41.42:443 | |
| 2021-04-07 13:21:24 | c59a5999a8ca7085bad961f09939bbbe | 48 / 70 (68.57%)
| 91.200.41.42:443 | |
| 2021-04-07 12:48:46 | c370ee34b9d7c32cbd786c1dc289c615 | n/a | 91.200.41.42:443 | |
| 2021-04-07 12:48:46 | c370ee34b9d7c32cbd786c1dc289c615 | n/a | 91.200.41.42:443 | |
| 2021-04-07 12:26:46 | c12b612f1f3b7a1ea02e2a523446df2e | 24 / 67 (35.82%)
| RaccoonStealer | 185.66.13.246:443 |
| 2021-04-07 12:26:46 | c12b612f1f3b7a1ea02e2a523446df2e | 24 / 67 (35.82%)
| RaccoonStealer | 185.66.13.246:443 |
| 2021-04-07 12:07:36 | bff443c1c314e18b5c87ddd9609b26ba | 40 / 70 (57.14%)
| 91.200.41.42:443 | |
| 2021-04-07 12:07:36 | bff443c1c314e18b5c87ddd9609b26ba | 40 / 70 (57.14%)
| 91.200.41.42:443 | |
| 2021-04-07 11:44:55 | bd11d2c10ae7fe1739018f15788c2411 | 40 / 69 (57.97%)
| 185.66.13.246:443 | |
| 2021-04-07 11:44:55 | bd11d2c10ae7fe1739018f15788c2411 | 40 / 69 (57.97%)
| 185.66.13.246:443 | |
| 2021-04-07 11:12:16 | b7396e78f6bd35b2d481df6e19d7708f | 31 / 69 (44.93%)
| RaccoonStealer | 185.66.13.246:443 |
| 2021-04-07 11:12:16 | b7396e78f6bd35b2d481df6e19d7708f | 31 / 69 (44.93%)
| RaccoonStealer | 185.66.13.246:443 |
| 2021-04-07 10:22:18 | b91bbc300bd5947e228326b0b9a21690 | 49 / 69 (71.01%)
| RaccoonStealer | 185.66.13.246:443 |
| 2021-04-07 10:22:18 | b91bbc300bd5947e228326b0b9a21690 | 49 / 69 (71.01%)
| RaccoonStealer | 185.66.13.246:443 |
| 2021-04-06 14:47:29 | a74ac159c7da0cb8c74e61314afad641 | 46 / 70 (65.71%)
| RaccoonStealer | 193.233.78.102:443 |
| 2021-04-06 14:47:29 | a74ac159c7da0cb8c74e61314afad641 | 46 / 70 (65.71%)
| RaccoonStealer | 193.233.78.102:443 |
# of entries: 66 (max: 100)