SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 1b1eedd19f9f11337ebae28a03c4a9d660eeb3a8.
Database Entry
| SHA1 Fingerprint: | 1b1eedd19f9f11337ebae28a03c4a9d660eeb3a8 |
|---|---|
| Certificate Common Name (CN): | localhost.localdomain/emailAddress=root@localhost.localdomain |
| Issuer Distinguished Name (DN): | localhost.localdomain/emailAddress=root@localhost.localdomain |
| TLS Version: | TLS 1.2 |
| First seen: | 2016-12-04 05:19:11 UTC |
| Last seen: | 2021-06-23 10:05:07 UTC |
| Status: | Blacklisted |
| Listing reason: | Gootkit C&C |
| Listing date: | 2017-01-29 09:37:56 |
| Malware samples: | 153 |
| Botnet C&Cs: | 4 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2021-06-23 10:05:07 | 439b44be49c351520009da12ea5fff93 |  52 / 72 (72.22%)
| 216.218.208.114:80 | |
| 2021-06-23 10:05:07 | 439b44be49c351520009da12ea5fff93 | 52 / 72 (72.22%)
| 216.218.208.114:80 | |
| 2021-06-04 10:10:21 | f9e45c6ab79ae366acb8895efaeb37d1 | n/a | 216.218.208.114:80 | |
| 2021-06-04 10:10:21 | f9e45c6ab79ae366acb8895efaeb37d1 | n/a | 216.218.208.114:80 | |
| 2021-04-03 20:42:35 | 4451161702d21da7a54e51645c11f9c6 | 50 / 69 (72.46%)
| 216.218.208.114:80 | |
| 2021-04-03 20:42:35 | 4451161702d21da7a54e51645c11f9c6 | 50 / 69 (72.46%)
| 216.218.208.114:80 | |
| 2021-02-25 09:15:23 | 18408dd7dda9c762b679db67e08b1d77 | 30 / 50 (60.00%)
| 216.218.208.114:80 | |
| 2021-02-25 09:15:23 | 18408dd7dda9c762b679db67e08b1d77 | 30 / 50 (60.00%)
| 216.218.208.114:80 | |
| 2021-02-15 13:59:41 | a901f7a48cfc014727288b4791471918 | 49 / 70 (70.00%)
| 216.218.208.114:80 | |
| 2021-02-15 13:59:41 | a901f7a48cfc014727288b4791471918 | 49 / 70 (70.00%)
| 216.218.208.114:80 | |
| 2021-02-13 08:05:02 | a627c40a11d20975e6f67037a1991367 | 51 / 69 (73.91%)
| Gootkit | 216.218.208.114:80 |
| 2021-02-13 08:05:02 | a627c40a11d20975e6f67037a1991367 | 51 / 69 (73.91%)
| Gootkit | 216.218.208.114:80 |
| 2021-02-02 16:47:33 | f8dd17daaaf106485ff22ea0289d4bde | 48 / 69 (69.57%)
| Gootkit | 216.218.208.114:80 |
| 2021-02-02 16:47:33 | f8dd17daaaf106485ff22ea0289d4bde | 48 / 69 (69.57%)
| Gootkit | 216.218.208.114:80 |
| 2020-12-27 04:19:15 | a9dad701f75e6c67420357b1bb24164f | 58 / 70 (82.86%)
| Gootkit | 216.218.208.114:80 |
| 2020-12-27 04:19:15 | a9dad701f75e6c67420357b1bb24164f | 58 / 70 (82.86%)
| Gootkit | 216.218.208.114:80 |
| 2020-12-25 14:39:10 | a5a8c57db395d77670c8a73390f929e4 | 52 / 69 (75.36%)
| 216.218.208.114:80 | |
| 2020-12-25 14:39:10 | a5a8c57db395d77670c8a73390f929e4 | 52 / 69 (75.36%)
| 216.218.208.114:80 | |
| 2020-12-25 13:51:06 | a226bcbecbb8de58ac31c50c7abdebde | 49 / 71 (69.01%)
| 216.218.208.114:80 | |
| 2020-12-25 13:51:06 | a226bcbecbb8de58ac31c50c7abdebde | 49 / 71 (69.01%)
| 216.218.208.114:80 | |
| 2020-12-21 15:24:40 | bbcfd4c6098bdbdbe08cbb58fcddfdae | 44 / 66 (66.67%)
| Gootkit | 216.218.208.114:80 |
| 2020-12-21 15:24:40 | bbcfd4c6098bdbdbe08cbb58fcddfdae | 44 / 66 (66.67%)
| Gootkit | 216.218.208.114:80 |
| 2020-12-21 14:20:43 | a169b97c590859d2e19733180e026061 | 45 / 69 (65.22%)
| 216.218.208.114:80 | |
| 2020-12-21 14:20:43 | a169b97c590859d2e19733180e026061 | 45 / 69 (65.22%)
| 216.218.208.114:80 | |
| 2020-12-02 05:06:51 | a7e17c1ca87819a3580e4e45ebe20d55 | 54 / 71 (76.06%)
| Gootkit | 216.218.208.114:80 |
| 2020-12-02 05:06:51 | a7e17c1ca87819a3580e4e45ebe20d55 | 54 / 71 (76.06%)
| Gootkit | 216.218.208.114:80 |
| 2020-11-18 02:06:27 | a6fa409b07256712ed39c4d562b9375c | 39 / 71 (54.93%)
| 216.218.208.114:80 | |
| 2020-11-18 02:06:27 | a6fa409b07256712ed39c4d562b9375c | 39 / 71 (54.93%)
| 216.218.208.114:80 | |
| 2020-11-17 17:52:21 | acbb88f7bf2f56302e8bd022f92b5fb5 | n/a | Gootkit | 216.218.208.114:80 |
| 2020-11-17 17:52:21 | acbb88f7bf2f56302e8bd022f92b5fb5 | n/a | Gootkit | 216.218.208.114:80 |
| 2020-11-16 05:57:15 | 5a6a4c519f6dd89781daf3666ed00d0d | 51 / 71 (71.83%)
| Gootkit | 216.218.208.114:80 |
| 2020-11-16 05:57:15 | 5a6a4c519f6dd89781daf3666ed00d0d | 51 / 71 (71.83%)
| Gootkit | 216.218.208.114:80 |
| 2020-11-12 14:36:25 | 19ad708fe908a0e93c323f426e0271e6 | n/a | Gootkit | 216.218.208.114:80 |
| 2020-11-12 14:36:25 | 19ad708fe908a0e93c323f426e0271e6 | n/a | Gootkit | 216.218.208.114:80 |
| 2020-11-11 13:00:22 | dc2a08c513b1c8a2474c6a99e1ddc626 | n/a | Gootkit | 216.218.208.114:80 |
| 2020-11-11 13:00:22 | dc2a08c513b1c8a2474c6a99e1ddc626 | n/a | Gootkit | 216.218.208.114:80 |
| 2020-11-11 05:12:48 | ad64fa93ad47f0e137f02d331aed02d7 | 45 / 69 (65.22%)
| 216.218.208.114:80 | |
| 2020-11-11 05:12:48 | ad64fa93ad47f0e137f02d331aed02d7 | 45 / 69 (65.22%)
| 216.218.208.114:80 | |
| 2020-11-09 03:05:16 | bb6f176f76cd04d3bd5c66a352df5869 | 54 / 72 (75.00%)
| Gootkit | 216.218.208.114:80 |
| 2020-11-09 03:05:16 | bb6f176f76cd04d3bd5c66a352df5869 | 54 / 72 (75.00%)
| Gootkit | 216.218.208.114:80 |
| 2020-11-03 13:36:01 | a24a0f484205d16fa807eec4b19d318a | 45 / 69 (65.22%)
| 216.218.208.114:80 | |
| 2020-11-03 13:36:01 | a24a0f484205d16fa807eec4b19d318a | 45 / 69 (65.22%)
| 216.218.208.114:80 | |
| 2020-10-26 02:37:32 | b4cbb6c7e411dccba31ea0e7fe312b0c | 37 / 62 (59.68%)
| Gootkit | 216.218.208.114:80 |
| 2020-10-26 02:37:32 | b4cbb6c7e411dccba31ea0e7fe312b0c | 37 / 62 (59.68%)
| Gootkit | 216.218.208.114:80 |
| 2020-10-13 14:37:34 | addbba2030aebbcbef26768ba00487d9 | 49 / 69 (71.01%)
| Gootkit | 216.218.208.114:80 |
| 2020-10-13 14:37:34 | addbba2030aebbcbef26768ba00487d9 | 49 / 69 (71.01%)
| Gootkit | 216.218.208.114:80 |
| 2020-10-13 05:17:28 | b6660e1c7b6899372f40bd199195c850 | 48 / 70 (68.57%)
| 216.218.208.114:80 | |
| 2020-10-13 05:17:28 | b6660e1c7b6899372f40bd199195c850 | 48 / 70 (68.57%)
| 216.218.208.114:80 | |
| 2020-10-13 05:06:23 | b079b8cb00697846b0f9e4c24c8d831b | 48 / 70 (68.57%)
| Gootkit | 216.218.208.114:80 |
| 2020-10-13 05:06:23 | b079b8cb00697846b0f9e4c24c8d831b | 48 / 70 (68.57%)
| Gootkit | 216.218.208.114:80 |
| 2020-10-13 04:59:45 | a73d28dd4e38f77fcf20a80e0057c7a5 | 44 / 70 (62.86%)
| 216.218.208.114:80 | |
| 2020-10-13 04:59:45 | a73d28dd4e38f77fcf20a80e0057c7a5 | 44 / 70 (62.86%)
| 216.218.208.114:80 | |
| 2020-10-13 01:15:17 | a2ba46e604e07fcdf44515bfc0427e1f | 43 / 69 (62.32%)
| 216.218.208.114:80 | |
| 2020-10-13 01:15:17 | a2ba46e604e07fcdf44515bfc0427e1f | 43 / 69 (62.32%)
| 216.218.208.114:80 | |
| 2020-09-30 06:26:31 | aab33946c945a88291d600f1b948d979 | 56 / 69 (81.16%)
| Gootkit | 216.218.208.114:80 |
| 2020-09-30 06:26:31 | aab33946c945a88291d600f1b948d979 | 56 / 69 (81.16%)
| Gootkit | 216.218.208.114:80 |
| 2020-09-11 03:37:38 | b10364393faa8e632f3ae4079af850cf | 43 / 68 (63.24%)
| 216.218.208.114:80 | |
| 2020-09-11 03:37:38 | b10364393faa8e632f3ae4079af850cf | 43 / 68 (63.24%)
| 216.218.208.114:80 | |
| 2020-09-08 16:17:29 | be8415fc56718ff37e9b4ac97167fe49 | 52 / 69 (75.36%)
| Gootkit | 216.218.208.114:443 |
| 2020-09-08 16:17:29 | be8415fc56718ff37e9b4ac97167fe49 | 52 / 69 (75.36%)
| Gootkit | 216.218.208.114:443 |
| 2020-09-07 17:39:58 | ab4157fa529dc32a4b58383889218c64 | 49 / 70 (70.00%)
| Gootkit | 216.218.208.114:443 |
| 2020-09-07 17:39:58 | ab4157fa529dc32a4b58383889218c64 | 49 / 70 (70.00%)
| Gootkit | 216.218.208.114:443 |
| 2020-08-16 09:10:09 | ce90ca8216c9fbab0ccce6ca6fabfb0d | 54 / 71 (76.06%)
| Gootkit | 216.218.208.114:80 |
| 2020-08-16 09:10:09 | ce90ca8216c9fbab0ccce6ca6fabfb0d | 54 / 71 (76.06%)
| Gootkit | 216.218.208.114:80 |
| 2020-08-16 09:07:22 | ceb448a933ae281e69f1d1aa465c6c83 | 57 / 71 (80.28%)
| Gootkit | 216.218.208.114:80 |
| 2020-08-16 09:07:22 | ceb448a933ae281e69f1d1aa465c6c83 | 57 / 71 (80.28%)
| Gootkit | 216.218.208.114:80 |
| 2020-08-16 08:01:07 | ca5de56226c6619250eddf448e927bbb | 62 / 70 (88.57%)
| Gootkit | 216.218.208.114:80 |
| 2020-08-16 08:01:07 | ca5de56226c6619250eddf448e927bbb | 62 / 70 (88.57%)
| Gootkit | 216.218.208.114:80 |
| 2020-08-16 07:43:49 | c906ba593372c32396a831c4d7cb4690 | 50 / 73 (68.49%)
| 216.218.208.114:80 | |
| 2020-08-16 07:43:49 | c906ba593372c32396a831c4d7cb4690 | 50 / 73 (68.49%)
| 216.218.208.114:80 | |
| 2020-08-16 07:10:14 | c308b9e2e8037e0a75b2bb40bdc3591b | 57 / 67 (85.07%)
| Gootkit | 216.218.208.114:80 |
| 2020-08-16 07:10:14 | c308b9e2e8037e0a75b2bb40bdc3591b | 57 / 67 (85.07%)
| Gootkit | 216.218.208.114:80 |
| 2020-08-16 04:44:59 | ba8bef8a4b2db52614ed813fde61ea87 | 62 / 71 (87.32%)
| Gootkit | 216.218.208.114:80 |
| 2020-08-16 04:44:59 | ba8bef8a4b2db52614ed813fde61ea87 | 62 / 71 (87.32%)
| Gootkit | 216.218.208.114:80 |
| 2020-08-14 05:29:18 | bfc1d85b9870beaa76f253a8b5769ba1 | 59 / 71 (83.10%)
| Gootkit | 216.218.208.114:80 |
| 2020-08-14 05:29:18 | bfc1d85b9870beaa76f253a8b5769ba1 | 59 / 71 (83.10%)
| Gootkit | 216.218.208.114:80 |
| 2020-08-14 04:26:11 | c2966ead456c4ace76f62b61485f6601 | 58 / 72 (80.56%)
| Gootkit | 216.218.208.114:80 |
| 2020-08-14 04:26:11 | c2966ead456c4ace76f62b61485f6601 | 58 / 72 (80.56%)
| Gootkit | 216.218.208.114:80 |
| 2020-08-14 04:15:31 | c2a92ec4270a67085d2d629aa279db5b | 59 / 69 (85.51%)
| Gootkit | 216.218.208.114:80 |
| 2020-08-14 04:15:31 | c2a92ec4270a67085d2d629aa279db5b | 59 / 69 (85.51%)
| Gootkit | 216.218.208.114:80 |
| 2020-08-14 02:19:24 | b43ee568af5e4d4ce331b3ce2ba55ced | 55 / 69 (79.71%)
| Gootkit | 216.218.208.114:80 |
| 2020-08-14 02:19:24 | b43ee568af5e4d4ce331b3ce2ba55ced | 55 / 69 (79.71%)
| Gootkit | 216.218.208.114:80 |
| 2020-08-14 02:10:39 | b14ac94c4b6f3e8928e27cf98086446b | 57 / 72 (79.17%)
| Gootkit | 216.218.208.114:80 |
| 2020-08-14 02:10:39 | b14ac94c4b6f3e8928e27cf98086446b | 57 / 72 (79.17%)
| Gootkit | 216.218.208.114:80 |
| 2020-06-30 11:26:47 | c08cffc39db7a5af79a256ea23d78de1 | 43 / 72 (59.72%)
| Gootkit | 216.218.208.114:443 |
| 2020-06-30 11:26:47 | c08cffc39db7a5af79a256ea23d78de1 | 43 / 72 (59.72%)
| Gootkit | 216.218.208.114:443 |
| 2020-06-24 11:05:43 | a79a588b930e852f6054e70389efa298 | 51 / 73 (69.86%)
| PandaZeuS | 216.218.185.162:443 |
| 2020-06-24 11:05:43 | a79a588b930e852f6054e70389efa298 | 51 / 73 (69.86%)
| PandaZeuS | 216.218.185.162:443 |
| 2020-01-08 02:00:45 | 233416e0ab343dfb8901cb23f3057446 | 56 / 73 (76.71%)
| Gootkit | 216.218.185.162:443 |
| 2020-01-08 02:00:45 | 233416e0ab343dfb8901cb23f3057446 | 56 / 73 (76.71%)
| Gootkit | 216.218.185.162:443 |
| 2020-01-03 18:24:13 | e427c35ccfbf9ef9fdc03725a06216a4 | 58 / 72 (80.56%)
| PandaZeuS | 216.218.185.162:443 |
| 2020-01-03 18:24:13 | e427c35ccfbf9ef9fdc03725a06216a4 | 58 / 72 (80.56%)
| PandaZeuS | 216.218.185.162:443 |
| 2019-12-13 06:42:27 | b2cc32be9443f0b72310b666e688aef7 | 59 / 72 (81.94%)
| Gootkit | 216.218.208.114:80 |
| 2019-12-13 06:42:27 | b2cc32be9443f0b72310b666e688aef7 | 59 / 72 (81.94%)
| Gootkit | 216.218.208.114:80 |
| 2019-10-21 20:31:09 | a28df9935ca280a7dba08c7fc41d5316 | 45 / 66 (68.18%)
| Gootkit | 216.218.208.114:80 |
| 2019-10-21 20:31:09 | a28df9935ca280a7dba08c7fc41d5316 | 45 / 66 (68.18%)
| Gootkit | 216.218.208.114:80 |
| 2019-10-03 14:14:24 | a1235827d91123b7ac83b041d1d282f4 | 41 / 70 (58.57%)
| 216.218.208.114:80 | |
| 2019-10-03 14:14:24 | a1235827d91123b7ac83b041d1d282f4 | 41 / 70 (58.57%)
| 216.218.208.114:80 | |
| 2019-07-11 03:46:50 | 708597637a3478197a43e0f91ac100d2 | 41/70 (58.57%)
| URLzone | 64.71.166.50:443 |
| 2019-07-11 03:46:50 | 708597637a3478197a43e0f91ac100d2 | 41/70 (58.57%)
| URLzone | 64.71.166.50:443 |
# of entries: 100 (max: 100)