SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 297b6537ce1a042b5411e2480698fd55ed210f45.
Database Entry
| SHA1 Fingerprint: | 297b6537ce1a042b5411e2480698fd55ed210f45 |
|---|---|
| Certificate Common Name (CN): | birthdayalarm.icu |
| Issuer Distinguished Name (DN): | WE1 |
| TLS Version: | TLS 1.2 |
| First seen: | 2025-02-01 20:10:59 UTC |
| Last seen: | 2025-02-06 08:17:14 UTC |
| Status: | Blacklisted |
| Listing reason: | OffLoader C&C |
| Listing date: | 2025-02-06 09:47:15 |
| Malware samples: | 10 |
| Botnet C&Cs: | 2 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2025-02-06 08:17:14 | 97d0b638d1ba2a6d6b4abf82656c817c | n/a | 104.21.11.153:443 | |
| 2025-02-06 06:01:46 | 6a1b145790c6165b7f9085d05a01e674 | n/a | 104.21.11.153:443 | |
| 2025-02-06 04:41:05 | 2bc5a81c54bcbc4fb60d0e3d5e24cba1 | n/a | 172.67.166.95:443 | |
| 2025-02-05 20:04:09 | 9bb196ee8071e6c0c8b122485572b55c | n/a | 172.67.166.95:443 | |
| 2025-02-05 19:54:46 | 720bdf9e0586a492b635e39b0dddbcfa | n/a | 172.67.166.95:443 | |
| 2025-02-05 18:20:22 | 9550fb6a9a794d542ba1816e66031041 | n/a | 172.67.166.95:443 | |
| 2025-02-05 17:42:47 | 8e98fd6c406193c6218dc3e548e0f6c3 | n/a | 104.21.11.153:443 | |
| 2025-02-02 17:30:47 | 00fb8d601e78e4941a93552e2654130a | n/a | 172.67.166.95:443 | |
| 2025-02-02 05:35:05 | c1d8959b915814a5983efcaa80f09855 | n/a | 104.21.11.153:443 | |
| 2025-02-01 20:10:59 | 80cb0f584ac061373ddffa2435f2271d | n/a | 104.21.11.153:443 |
# of entries: 10 (max: 100)