SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 20f577ce759b61da9151a143ce0297ae44d46b23.

Database Entry


SHA1 Fingerprint:20f577ce759b61da9151a143ce0297ae44d46b23
Certificate Common Name (CN):urleddrug.at
Issuer Distinguished Name (DN):Let's Encrypt Authority X3
TLS Version:TLS 1.2
First seen:2020-06-01 01:13:18 UTC
Last seen:2020-06-03 00:08:25 UTC
Status:Blacklisted
Listing reason:ZLoader C&C
Listing date:2020-06-01 07:49:42
Malware samples:8
Botnet C&Cs:2

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2020-06-03 00:08:258639498e4064184b9b19d2fad41e34ffVirustotal results 12 / 61 (19.67%) ZLoader 84.38.183.227:443
2020-06-02 23:57:4649b806872191bcde65e39c2c313e7556n/aZLoader 84.38.183.227:443
2020-06-01 20:04:31ace070e8f13f18504fe8023876870fa1n/aZLoader 79.143.30.10:443
2020-06-01 16:05:26b01872e9a1260beac0618502780a3bb5Virustotal results 3 / 59 (5.08%) ZLoader 79.143.30.10:443
2020-06-01 07:35:42549551a303bc37368fefd81dc44e2826n/aZLoader 79.143.30.10:443
2020-06-01 06:15:43425b80a2697d1a246f859dc207db7f91n/aZLoader 79.143.30.10:443
2020-06-01 02:56:16e53d4288f37510b3aa86a11e82c34306n/aZLoader 79.143.30.10:443
2020-06-01 01:13:18b2649711002ab09e4d41e994fb3295adn/aZLoader 79.143.30.10:443

# of entries: 8 (max: 100)