SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 1b002f4ea75a30d5a630f080a325edff70f80e69.

Database Entry

SHA1 Fingerprint:1b002f4ea75a30d5a630f080a325edff70f80e69
Certificate Common Name (CN):adtejoyo1377.tk/emailAddress=admin@adtejoyo1377.tk
Issuer Distinguished Name (DN):adtejoyo1377.tk/emailAddress=admin@adtejoyo1377.tk
TLS Version:TLSv1
First seen:2015-09-21 09:22:39 UTC
Last seen:2015-09-25 20:22:07 UTC
Status:Blacklisted
Listing reason:Shifu C&C
Listing date:2015-09-25 14:09:17
Malware samples:13
Botnet C&Cs:1

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2015-09-25 20:22:074483e7625051bc170eb10038dbed139bVirustotal results 7/57 (12.28%) Shifu185.74.252.131:443
2015-09-25 20:22:074483e7625051bc170eb10038dbed139bVirustotal results 7/57 (12.28%) Shifu185.74.252.131:443
2015-09-25 15:32:53791491ba9f0a7670659f45f1e5421c83Virustotal results 2/57 (3.51%) Shifu185.74.252.131:443
2015-09-25 15:32:53791491ba9f0a7670659f45f1e5421c83Virustotal results 2/57 (3.51%) Shifu185.74.252.131:443
2015-09-25 13:49:3835bc63b398f8f26514431a8415b9b110Virustotal results 28/57 (49.12%) Shifu185.74.252.131:443
2015-09-25 13:49:3835bc63b398f8f26514431a8415b9b110Virustotal results 28/57 (49.12%) Shifu185.74.252.131:443
2015-09-25 10:14:16012d7028b0e7cceac59443b284fef386n/aShifu185.74.252.131:443
2015-09-25 10:14:16012d7028b0e7cceac59443b284fef386n/aShifu185.74.252.131:443
2015-09-24 20:39:5616d14f72906c9296440d5b775ecc4f56Virustotal results 7/57 (12.28%) Shifu185.74.252.131:443
2015-09-24 20:39:5616d14f72906c9296440d5b775ecc4f56Virustotal results 7/57 (12.28%) Shifu185.74.252.131:443
2015-09-24 19:00:560f8efc55652d9a71d921f718b402c353n/aShifu185.74.252.131:443
2015-09-24 19:00:560f8efc55652d9a71d921f718b402c353n/aShifu185.74.252.131:443
2015-09-24 12:17:08d2c162935b42a651fd8ed7a8e19afd37Virustotal results 10/57 (17.54%) Shifu185.74.252.131:443
2015-09-24 12:17:08d2c162935b42a651fd8ed7a8e19afd37Virustotal results 10/57 (17.54%) Shifu185.74.252.131:443
2015-09-24 08:45:03f47258922c6cff398b3ad1d68c7f7555n/aShifu185.74.252.131:443
2015-09-24 08:45:03f47258922c6cff398b3ad1d68c7f7555n/aShifu185.74.252.131:443
2015-09-23 04:29:3146fa9211e3968e04a72573aab6a53c0cVirustotal results 1/56 (1.79%) Shifu185.74.252.131:443
2015-09-23 04:29:3146fa9211e3968e04a72573aab6a53c0cVirustotal results 1/56 (1.79%) Shifu185.74.252.131:443
2015-09-21 23:09:04967ed166f5186fd446c5da53c3eb76d6Virustotal results 1/56 (1.79%) Shifu185.74.252.131:443
2015-09-21 23:09:04967ed166f5186fd446c5da53c3eb76d6Virustotal results 1/56 (1.79%) Shifu185.74.252.131:443
2015-09-21 17:43:11b40fc2d1f343affad7bc02ae9b37cd89Virustotal results 17/56 (30.36%) Shifu185.74.252.131:443
2015-09-21 17:43:11b40fc2d1f343affad7bc02ae9b37cd89Virustotal results 17/56 (30.36%) Shifu185.74.252.131:443
2015-09-21 11:47:08da37a94a3262284fc8e4246530703d93Virustotal results 3/56 (5.36%) Shifu185.74.252.131:443
2015-09-21 11:47:08da37a94a3262284fc8e4246530703d93Virustotal results 3/56 (5.36%) Shifu185.74.252.131:443
2015-09-21 09:22:39624149d3bad96c2e0ab3af5938a207d5Virustotal results 8/56 (14.29%) Shifu185.74.252.131:443
2015-09-21 09:22:39624149d3bad96c2e0ab3af5938a207d5Virustotal results 8/56 (14.29%) Shifu185.74.252.131:443

# of entries: 26 (max: 100)