SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 25cbde5ded2a6b4327062e8a645ca5029e7cb79d.

Database Entry

SHA1 Fingerprint:	25cbde5ded2a6b4327062e8a645ca5029e7cb79d
Certificate Common Name (CN):	C=XX, L=Default City, O=Default Company Ltd
Issuer Distinguished Name (DN):	C=XX, L=Default City, O=Default Company Ltd
TLS Version:	TLS 1.2' NOTBEF
First seen:	2020-01-28 19:35:58 UTC
Last seen:	2020-12-26 12:36:09 UTC
Status:	Blacklisted
Listing reason:	FindPOS C&C
Listing date:	2020-03-26 07:44:19
Malware samples:	6
Botnet C&Cs:	1

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2020-12-26 12:36:09	ad75262f6737d7ac8d6d42b4928523bb	53 / 70 (75.71%)	FindPOS	85.143.222.85:443
2020-12-26 12:36:09	ad75262f6737d7ac8d6d42b4928523bb	53 / 70 (75.71%)	FindPOS	85.143.222.85:443
2020-11-06 09:24:20	a6ec85f12a6a0cbfa78dcfa7dafb1ccd	53 / 72 (73.61%)	FindPOS	85.143.222.85:443
2020-11-06 09:24:20	a6ec85f12a6a0cbfa78dcfa7dafb1ccd	53 / 72 (73.61%)	FindPOS	85.143.222.85:443
2020-06-30 07:03:28	b90070e46c6dc40ef4d9f0bd1caa5de8	58 / 74 (78.38%)	FindPOS	85.143.222.85:443
2020-06-30 07:03:28	b90070e46c6dc40ef4d9f0bd1caa5de8	58 / 74 (78.38%)	FindPOS	85.143.222.85:443
2020-06-08 02:26:49	15446d90bb1253c912eaf89e39b4f190	14 / 72 (19.44%)	FindPOS	85.143.222.85:443
2020-06-08 02:26:49	15446d90bb1253c912eaf89e39b4f190	14 / 72 (19.44%)	FindPOS	85.143.222.85:443
2020-03-25 21:47:43	3c107eb4e2443f4935b2973b4eaec1d7	13 / 73 (17.81%)	FindPOS	85.143.222.85:443
2020-03-25 21:47:43	3c107eb4e2443f4935b2973b4eaec1d7	13 / 73 (17.81%)	FindPOS	85.143.222.85:443
2020-01-28 19:35:58	b039aa42fbbc36384638d7696046d463	37 / 72 (51.39%)		85.143.222.85:443
2020-01-28 19:35:58	b039aa42fbbc36384638d7696046d463	37 / 72 (51.39%)		85.143.222.85:443

# of entries: 12 (max: 100)