SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 28b526a6ab7a4d3d5708d8761bd98dd978a0b523.
Database Entry
| SHA1 Fingerprint: | 28b526a6ab7a4d3d5708d8761bd98dd978a0b523 |
|---|---|
| Certificate Common Name (CN): | schooldoctor.xyz |
| Issuer Distinguished Name (DN): | WE1 |
| TLS Version: | TLS 1.2 |
| First seen: | 2025-05-14 16:03:15 UTC |
| Last seen: | 2025-05-16 05:11:42 UTC |
| Status: | Blacklisted |
| Listing reason: | OffLoader C&C |
| Listing date: | 2025-05-16 13:05:10 |
| Malware samples: | 3 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2025-05-16 05:11:42 | a5e5ee08eea08b072eb8a68402d682d7 | n/a | 104.21.51.178:443 | |
| 2025-05-15 10:43:46 | f72097a830b9a555370b1e09281526f0 | n/a | 104.21.51.178:443 | |
| 2025-05-14 16:03:15 | 0f4ee245176f6e947d3435b711581cf4 | n/a | 104.21.51.178:443 |
# of entries: 3 (max: 100)