SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 1ce2503b89ff0364cb659aefe1b469e194099d2c.

Database Entry


SHA1 Fingerprint:1ce2503b89ff0364cb659aefe1b469e194099d2c
Certificate Common Name (CN):igibhbyehvyga.xyz
Issuer Distinguished Name (DN):R3
TLS Version:TLS 1.2
First seen:2021-03-26 19:13:59 UTC
Last seen:2021-03-26 20:51:40 UTC
Status:Blacklisted
Listing reason:RaccoonStealer C&C
Listing date:2021-03-27 07:15:30
Malware samples:5
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2021-03-26 20:51:408d651d0aee1c54e03a446190bd5bca06n/aServHelper185.163.45.229:443
2021-03-26 19:53:09fa5224216fd2ff9495da0736852fe25cVirustotal results 20 / 68 (29.41%) RaccoonStealer185.163.45.229:443
2021-03-26 19:17:45d854617a0b3cfdaba1cd8820eed7477bVirustotal results 22 / 69 (31.88%) RaccoonStealer185.163.45.229:443
2021-03-26 19:16:38d8eef20c82ca327aa5a6eb61b125c61fVirustotal results 20 / 70 (28.57%) RaccoonStealer185.163.45.229:443
2021-03-26 19:13:59d4f396d0c9b336a05b85910b11d64bf3Virustotal results 24 / 69 (34.78%) RaccoonStealer185.163.45.229:443

# of entries: 5 (max: 100)