SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 1b1df7078d718053312037ccfe1f867dcc593ec5.

Database Entry

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2017-03-29 15:48:44	50e7975643eb0652113987737747dcae	25/60 (41.67%)	VirLock	185.35.138.117:443
2017-03-29 15:48:44	50e7975643eb0652113987737747dcae	25/60 (41.67%)	VirLock	185.35.138.117:443
2017-03-25 17:18:06	434d7dd21ae6c2a44e9aae5493b4b44d	9/62 (14.52%)		185.35.138.117:443
2017-03-25 17:18:06	434d7dd21ae6c2a44e9aae5493b4b44d	9/62 (14.52%)		185.35.138.117:443
2017-03-21 02:58:19	57bbfb559346d42fc145b5bac253cb38	21/61 (34.43%)		185.35.138.117:443
2017-03-21 02:58:19	57bbfb559346d42fc145b5bac253cb38	21/61 (34.43%)		185.35.138.117:443
2017-03-20 08:05:15	e52d44dc06f56b22fb93fe8f2583b0cb	n/a		185.35.138.117:443
2017-03-20 08:05:15	e52d44dc06f56b22fb93fe8f2583b0cb	n/a		185.35.138.117:443
2017-03-19 22:18:45	9ca70b4e800cf6ca9e1400b4a2b9cd3d	21/61 (34.43%)		185.35.138.117:443
2017-03-19 22:18:45	9ca70b4e800cf6ca9e1400b4a2b9cd3d	21/61 (34.43%)		185.35.138.117:443
2017-03-19 12:29:33	8a011e0753a1cd597ee50ea9a9e426e9	33/61 (54.10%)		185.35.138.117:443
2017-03-19 12:29:33	8a011e0753a1cd597ee50ea9a9e426e9	33/61 (54.10%)		185.35.138.117:443
2017-03-18 19:36:41	48022b0327a73aa3401a6630a9a557e5	31/62 (50.00%)		185.35.138.117:443
2017-03-18 19:36:41	48022b0327a73aa3401a6630a9a557e5	31/62 (50.00%)		185.35.138.117:443
2017-03-16 15:11:42	a2720f318667a25c17b320113c3f7ce8	10/58 (17.24%)		185.35.138.117:443
2017-03-16 15:11:42	a2720f318667a25c17b320113c3f7ce8	10/58 (17.24%)		185.35.138.117:443

# of entries: 16 (max: 100)