SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 29c8478a7c47926146955982de6bb2f64361b82d.

Database Entry


SHA1 Fingerprint:29c8478a7c47926146955982de6bb2f64361b82d
Certificate Common Name (CN):192.236.160.249, OU=zaaaabb, ST=noopqrrrrs, O=xxxyz, C=mn, L=sttuvwww, Email=ccdde@192.236.160.249
Issuer Distinguished Name (DN):192.236.160.249, OU=zaaaabb, ST=noopqrrrrs, O=xxxyz, C=mn, L=sttuvwww, Email=ccdde@192.236.160.249
TLS Version:TLS 1.2
First seen:2022-04-19 09:35:28 UTC
Last seen:2022-04-25 11:22:49 UTC
Status:Blacklisted
Listing reason:DanaBot C&C
Listing date:2022-04-25 15:14:03
Malware samples:6
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2022-04-25 11:22:4987a56dfc43b4f9ce896c1cac1e0daf43Virustotal results 25 / 69 (36.23%) DanaBot192.236.160.249:443
2022-04-25 07:32:24f9fe1c03493677e7e84a297bc971adf6n/aDanaBot192.236.160.249:443
2022-04-25 06:30:42c98d52d90bfdb0b96dc33577ea2f31e1Virustotal results 46 / 69 (66.67%) 192.236.160.249:443
2022-04-24 15:23:4104e27d2daaafb77c3852b143d3e967dcVirustotal results 21 / 68 (30.88%) DanaBot192.236.160.249:443
2022-04-22 05:31:440847c7cea0e12dc3951a203c162a15dcVirustotal results 46 / 69 (66.67%) DanaBot192.236.160.249:443
2022-04-19 09:35:280e7acef2ac175a0256c8befdeb121be3Virustotal results 43 / 69 (62.32%) 192.236.160.249:443

# of entries: 6 (max: 100)