SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 2a5db016a7078bba81fba85dac9751f21f9340bd.
Database Entry
| SHA1 Fingerprint: | 2a5db016a7078bba81fba85dac9751f21f9340bd |
|---|---|
| Certificate Common Name (CN): | localhost |
| Issuer Distinguished Name (DN): | localhost |
| TLS Version: | SSLv3 |
| First seen: | 2014-05-06 21:47:02 UTC |
| Last seen: | 2014-07-27 21:17:40 UTC |
| Status: | Blacklisted |
| Listing reason: | Shylock C&C |
| Listing date: | 2014-05-07 13:44:16 |
| Malware samples: | 141 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2014-07-27 21:17:40 | bb45bc6538809e4ab45b5f0b7af3d3b0 |  21/54 (38.89%)
| Shylock | 189.127.48.11:443 |
| 2014-07-27 21:17:40 | bb45bc6538809e4ab45b5f0b7af3d3b0 | 21/54 (38.89%)
| Shylock | 189.127.48.11:443 |
| 2014-07-26 14:29:00 | b4b85925969612d6761944514550efaa | 20/54 (37.04%)
| Shylock | 189.127.48.11:443 |
| 2014-07-26 14:29:00 | b4b85925969612d6761944514550efaa | 20/54 (37.04%)
| Shylock | 189.127.48.11:443 |
| 2014-07-14 09:35:36 | 9a8e992c1f3c5e9d713aa18e643e4368 | 25/54 (46.30%)
| Shylock | 189.127.48.11:443 |
| 2014-07-14 09:35:36 | 9a8e992c1f3c5e9d713aa18e643e4368 | 25/54 (46.30%)
| Shylock | 189.127.48.11:443 |
| 2014-07-13 22:36:11 | 227155e7b833069226c5bc0a2a3a28a1 | 30/53 (56.60%)
| Shylock | 189.127.48.11:443 |
| 2014-07-13 22:36:11 | 227155e7b833069226c5bc0a2a3a28a1 | 30/53 (56.60%)
| Shylock | 189.127.48.11:443 |
| 2014-07-13 10:48:17 | 92b9c11ef5d5ff4addfa507def7c3a55 | 35/54 (64.81%)
| Shylock | 189.127.48.11:443 |
| 2014-07-13 10:48:17 | 92b9c11ef5d5ff4addfa507def7c3a55 | 35/54 (64.81%)
| Shylock | 189.127.48.11:443 |
| 2014-07-12 21:40:45 | 479afe856618af51a00e9d511037f7c8 | 23/54 (42.59%)
| Shylock | 189.127.48.11:443 |
| 2014-07-12 21:40:45 | 479afe856618af51a00e9d511037f7c8 | 23/54 (42.59%)
| Shylock | 189.127.48.11:443 |
| 2014-07-12 19:28:26 | 585dd1f11bb4c325f8e715c3dbbd54d7 | 20/54 (37.04%)
| Shylock | 189.127.48.11:443 |
| 2014-07-12 19:28:26 | 585dd1f11bb4c325f8e715c3dbbd54d7 | 20/54 (37.04%)
| Shylock | 189.127.48.11:443 |
| 2014-07-08 22:35:09 | 3c4d9fa1a4e660a57307c635e5c117f5 | 20/54 (37.04%)
| 189.127.48.11:443 | |
| 2014-07-08 22:35:09 | 3c4d9fa1a4e660a57307c635e5c117f5 | 20/54 (37.04%)
| 189.127.48.11:443 | |
| 2014-07-08 20:13:11 | c6959f6d1508915fcab7e68c82449ae5 | 21/54 (38.89%)
| 189.127.48.11:443 | |
| 2014-07-08 20:13:11 | c6959f6d1508915fcab7e68c82449ae5 | 21/54 (38.89%)
| 189.127.48.11:443 | |
| 2014-07-08 10:22:21 | f25f2bd5565ff05edca4bc2bfbf59f16 | 22/53 (41.51%)
| Shylock | 189.127.48.11:443 |
| 2014-07-08 10:22:21 | f25f2bd5565ff05edca4bc2bfbf59f16 | 22/53 (41.51%)
| Shylock | 189.127.48.11:443 |
| 2014-07-07 23:47:06 | 3357d093aa7b41d7f54dc37636796c09 | 25/51 (49.02%)
| Shylock | 189.127.48.11:443 |
| 2014-07-07 23:47:06 | 3357d093aa7b41d7f54dc37636796c09 | 25/51 (49.02%)
| Shylock | 189.127.48.11:443 |
| 2014-07-07 02:26:09 | 10556a5d4a19df7d4914a73e17e5dd77 | 18/54 (33.33%)
| Shylock | 189.127.48.11:443 |
| 2014-07-07 02:26:09 | 10556a5d4a19df7d4914a73e17e5dd77 | 18/54 (33.33%)
| Shylock | 189.127.48.11:443 |
| 2014-07-05 09:06:05 | 86f1f4b00070a3038e449aa1b46d382f | 24/53 (45.28%)
| Shylock | 189.127.48.11:443 |
| 2014-07-05 09:06:05 | 86f1f4b00070a3038e449aa1b46d382f | 24/53 (45.28%)
| Shylock | 189.127.48.11:443 |
| 2014-07-01 08:09:03 | b42e4384ac9a7b8db9b776fb3c349db0 | 22/54 (40.74%)
| Shylock | 189.127.48.11:443 |
| 2014-07-01 08:09:03 | b42e4384ac9a7b8db9b776fb3c349db0 | 22/54 (40.74%)
| Shylock | 189.127.48.11:443 |
| 2014-06-29 06:56:15 | ae962cf8a2d1b2d2d96fe876b87ae727 | 21/54 (38.89%)
| Shylock | 189.127.48.11:443 |
| 2014-06-29 06:56:15 | ae962cf8a2d1b2d2d96fe876b87ae727 | 21/54 (38.89%)
| Shylock | 189.127.48.11:443 |
| 2014-06-29 06:14:58 | ac6db4f295f1ecdc27af5956d383bef6 | 21/54 (38.89%)
| Shylock | 189.127.48.11:443 |
| 2014-06-29 06:14:58 | ac6db4f295f1ecdc27af5956d383bef6 | 21/54 (38.89%)
| Shylock | 189.127.48.11:443 |
| 2014-06-29 05:09:36 | a91b39353f4b1184d477d883413fd0b2 | 24/54 (44.44%)
| 189.127.48.11:443 | |
| 2014-06-29 05:09:36 | a91b39353f4b1184d477d883413fd0b2 | 24/54 (44.44%)
| 189.127.48.11:443 | |
| 2014-06-28 16:40:58 | a14c00868ccf2055513d34e91d30ca25 | 31/54 (57.41%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 16:40:58 | a14c00868ccf2055513d34e91d30ca25 | 31/54 (57.41%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 16:17:15 | a13642e2ad8ebf26b9b8d7306e83cb49 | 22/54 (40.74%)
| 189.127.48.11:443 | |
| 2014-06-28 16:17:15 | a13642e2ad8ebf26b9b8d7306e83cb49 | 22/54 (40.74%)
| 189.127.48.11:443 | |
| 2014-06-28 12:25:16 | 9ab1fcfc2797132e11ace44eeb18e8af | 34/53 (64.15%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 12:25:16 | 9ab1fcfc2797132e11ace44eeb18e8af | 34/53 (64.15%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 12:05:44 | 98942dd3b9d6a19069253badfdfc222a | 22/54 (40.74%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 12:05:44 | 98942dd3b9d6a19069253badfdfc222a | 22/54 (40.74%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 11:49:29 | 96a215e43ba28ed6ccf45a5a1c1229d7 | 36/54 (66.67%)
| 189.127.48.11:443 | |
| 2014-06-28 11:49:29 | 96a215e43ba28ed6ccf45a5a1c1229d7 | 36/54 (66.67%)
| 189.127.48.11:443 | |
| 2014-06-28 11:04:39 | 90d953be6a814b521ef4197e94775dbe | 32/53 (60.38%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 11:04:39 | 90d953be6a814b521ef4197e94775dbe | 32/53 (60.38%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 09:56:55 | 86b5d49ffef1e79da0cabcc2a8e7b35a | 17/54 (31.48%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 09:56:55 | 86b5d49ffef1e79da0cabcc2a8e7b35a | 17/54 (31.48%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 07:47:13 | 2099d27b0866d35d024b7bda7278871b | 31/54 (57.41%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 07:47:13 | 2099d27b0866d35d024b7bda7278871b | 31/54 (57.41%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 07:42:19 | 67461cccdb30bc405de3f1a84977e865 | 23/54 (42.59%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 07:42:19 | 67461cccdb30bc405de3f1a84977e865 | 23/54 (42.59%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 07:39:07 | 13bf9988b7db0f6b5c6df0966ce179b6 | 29/54 (53.70%)
| 189.127.48.11:443 | |
| 2014-06-28 07:39:07 | 13bf9988b7db0f6b5c6df0966ce179b6 | 29/54 (53.70%)
| 189.127.48.11:443 | |
| 2014-06-28 07:33:36 | 4dcb162ab13d62b7a344883c6a6d2b70 | 25/54 (46.30%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 07:33:36 | 4dcb162ab13d62b7a344883c6a6d2b70 | 25/54 (46.30%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 07:32:15 | 01da71ef2cc7590fd539a080b5ac576c | 32/55 (58.18%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 07:32:15 | 01da71ef2cc7590fd539a080b5ac576c | 32/55 (58.18%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 07:02:49 | c003d0cbf4ab2ca365f3ce4a8371b2a7 | 4/49 (8.16%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 07:02:49 | c003d0cbf4ab2ca365f3ce4a8371b2a7 | 4/49 (8.16%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 05:36:29 | 36f88de2931eb238d487298af7653172 | 28/54 (51.85%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 05:36:29 | 36f88de2931eb238d487298af7653172 | 28/54 (51.85%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 01:43:22 | e95ebe6e0880a3671d36db7be2b959f7 | 32/55 (58.18%)
| 189.127.48.11:443 | |
| 2014-06-28 01:43:22 | e95ebe6e0880a3671d36db7be2b959f7 | 32/55 (58.18%)
| 189.127.48.11:443 | |
| 2014-06-28 01:16:03 | fbc421bbf925679181435a00514de22e | 19/54 (35.19%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 01:16:03 | fbc421bbf925679181435a00514de22e | 19/54 (35.19%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 01:10:21 | 60931f684ada0f63b01b91c42dfc0962 | 24/54 (44.44%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 01:10:21 | 60931f684ada0f63b01b91c42dfc0962 | 24/54 (44.44%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 00:49:37 | 26f12e5a888812dff5566b22bfe173dc | 14/54 (25.93%)
| Shylock | 189.127.48.11:443 |
| 2014-06-28 00:49:37 | 26f12e5a888812dff5566b22bfe173dc | 14/54 (25.93%)
| Shylock | 189.127.48.11:443 |
| 2014-06-27 23:53:21 | e7f4c5646aa02d0714c570ae50460e66 | 23/54 (42.59%)
| Shylock | 189.127.48.11:443 |
| 2014-06-27 23:53:21 | e7f4c5646aa02d0714c570ae50460e66 | 23/54 (42.59%)
| Shylock | 189.127.48.11:443 |
| 2014-06-27 23:52:59 | e3f5d2789a5dde96ce54567f1f3202e6 | 31/54 (57.41%)
| 189.127.48.11:443 | |
| 2014-06-27 23:52:59 | e3f5d2789a5dde96ce54567f1f3202e6 | 31/54 (57.41%)
| 189.127.48.11:443 | |
| 2014-06-27 23:10:50 | 2b6fab77a7ef9174f72f9fc29a51100d | 30/54 (55.56%)
| Shylock | 189.127.48.11:443 |
| 2014-06-27 23:10:50 | 2b6fab77a7ef9174f72f9fc29a51100d | 30/54 (55.56%)
| Shylock | 189.127.48.11:443 |
| 2014-06-27 22:49:15 | ea0086c610bcd2cda59860a924934727 | 22/54 (40.74%)
| Shylock | 189.127.48.11:443 |
| 2014-06-27 22:49:15 | ea0086c610bcd2cda59860a924934727 | 22/54 (40.74%)
| Shylock | 189.127.48.11:443 |
| 2014-06-27 22:31:20 | 52e9041ce02d28739852b04411ef5b99 | 34/53 (64.15%)
| 189.127.48.11:443 | |
| 2014-06-27 22:31:20 | 52e9041ce02d28739852b04411ef5b99 | 34/53 (64.15%)
| 189.127.48.11:443 | |
| 2014-06-27 21:59:06 | 6f3239d72cc0e4eb70bbdc594defcac0 | 30/54 (55.56%)
| 189.127.48.11:443 | |
| 2014-06-27 21:59:06 | 6f3239d72cc0e4eb70bbdc594defcac0 | 30/54 (55.56%)
| 189.127.48.11:443 | |
| 2014-06-27 21:50:17 | f0e124b9a8ad06b25d915273e0897897 | 8/54 (14.81%)
| Shylock | 189.127.48.11:443 |
| 2014-06-27 21:50:17 | f0e124b9a8ad06b25d915273e0897897 | 8/54 (14.81%)
| Shylock | 189.127.48.11:443 |
| 2014-06-27 21:49:15 | 56229ab4d84911f36cc27ee6a73928df | 10/53 (18.87%)
| Shylock | 189.127.48.11:443 |
| 2014-06-27 21:49:15 | 56229ab4d84911f36cc27ee6a73928df | 10/53 (18.87%)
| Shylock | 189.127.48.11:443 |
| 2014-06-27 21:47:49 | 52997cea8a7b21f5ea2b0d39145f414a | 31/54 (57.41%)
| Shylock | 189.127.48.11:443 |
| 2014-06-27 21:47:49 | 52997cea8a7b21f5ea2b0d39145f414a | 31/54 (57.41%)
| Shylock | 189.127.48.11:443 |
| 2014-06-27 20:33:28 | ec36a2efb3b348687a47b14d5d43b618 | 24/53 (45.28%)
| Shylock | 189.127.48.11:443 |
| 2014-06-27 20:33:28 | ec36a2efb3b348687a47b14d5d43b618 | 24/53 (45.28%)
| Shylock | 189.127.48.11:443 |
| 2014-06-27 11:05:20 | 9ca616599435bf03936c07fcaafe1e33 | 6/46 (13.04%)
| Shylock | 189.127.48.11:443 |
| 2014-06-27 11:05:20 | 9ca616599435bf03936c07fcaafe1e33 | 6/46 (13.04%)
| Shylock | 189.127.48.11:443 |
| 2014-06-27 08:33:07 | 8604cd4804f3d235e9e4cd9a99ccaac6 | 1/52 (1.92%)
| 189.127.48.11:443 | |
| 2014-06-27 08:33:07 | 8604cd4804f3d235e9e4cd9a99ccaac6 | 1/52 (1.92%)
| 189.127.48.11:443 | |
| 2014-06-27 06:56:20 | b2cb0619688a91de944e974ca7a8eb46 | 24/54 (44.44%)
| 189.127.48.11:443 | |
| 2014-06-27 06:56:20 | b2cb0619688a91de944e974ca7a8eb46 | 24/54 (44.44%)
| 189.127.48.11:443 | |
| 2014-06-27 00:04:37 | 7a5864883d7412b607868743650a6e5c | 25/54 (46.30%)
| Shylock | 189.127.48.11:443 |
| 2014-06-27 00:04:37 | 7a5864883d7412b607868743650a6e5c | 25/54 (46.30%)
| Shylock | 189.127.48.11:443 |
| 2014-06-26 22:46:55 | facbe15d5ace2c9c540b092aeccd10a0 | 26/54 (48.15%)
| Shylock | 189.127.48.11:443 |
| 2014-06-26 22:46:55 | facbe15d5ace2c9c540b092aeccd10a0 | 26/54 (48.15%)
| Shylock | 189.127.48.11:443 |
# of entries: 100 (max: 100)