SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 2a5db016a7078bba81fba85dac9751f21f9340bd.

Database Entry


SHA1 Fingerprint:2a5db016a7078bba81fba85dac9751f21f9340bd
Certificate Common Name (CN):localhost
Issuer Distinguished Name (DN):localhost
TLS Version:SSLv3
First seen:2014-05-06 21:47:02 UTC
Last seen:2014-07-27 21:17:40 UTC
Status:Blacklisted
Listing reason:Shylock C&C
Listing date:2014-05-07 13:44:16
Malware samples:141
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2014-07-27 21:17:40bb45bc6538809e4ab45b5f0b7af3d3b0Virustotal results 21/54 (38.89%) Shylock 189.127.48.11:443
2014-07-27 21:17:40bb45bc6538809e4ab45b5f0b7af3d3b0Virustotal results 21/54 (38.89%) Shylock 189.127.48.11:443
2014-07-26 14:29:00b4b85925969612d6761944514550efaaVirustotal results 20/54 (37.04%) Shylock 189.127.48.11:443
2014-07-26 14:29:00b4b85925969612d6761944514550efaaVirustotal results 20/54 (37.04%) Shylock 189.127.48.11:443
2014-07-14 09:35:369a8e992c1f3c5e9d713aa18e643e4368Virustotal results 25/54 (46.30%) Shylock 189.127.48.11:443
2014-07-14 09:35:369a8e992c1f3c5e9d713aa18e643e4368Virustotal results 25/54 (46.30%) Shylock 189.127.48.11:443
2014-07-13 22:36:11227155e7b833069226c5bc0a2a3a28a1Virustotal results 30/53 (56.60%) Shylock 189.127.48.11:443
2014-07-13 22:36:11227155e7b833069226c5bc0a2a3a28a1Virustotal results 30/53 (56.60%) Shylock 189.127.48.11:443
2014-07-13 10:48:1792b9c11ef5d5ff4addfa507def7c3a55Virustotal results 35/54 (64.81%) Shylock 189.127.48.11:443
2014-07-13 10:48:1792b9c11ef5d5ff4addfa507def7c3a55Virustotal results 35/54 (64.81%) Shylock 189.127.48.11:443
2014-07-12 21:40:45479afe856618af51a00e9d511037f7c8Virustotal results 23/54 (42.59%) Shylock 189.127.48.11:443
2014-07-12 21:40:45479afe856618af51a00e9d511037f7c8Virustotal results 23/54 (42.59%) Shylock 189.127.48.11:443
2014-07-12 19:28:26585dd1f11bb4c325f8e715c3dbbd54d7Virustotal results 20/54 (37.04%) Shylock 189.127.48.11:443
2014-07-12 19:28:26585dd1f11bb4c325f8e715c3dbbd54d7Virustotal results 20/54 (37.04%) Shylock 189.127.48.11:443
2014-07-08 22:35:093c4d9fa1a4e660a57307c635e5c117f5Virustotal results 20/54 (37.04%) 189.127.48.11:443
2014-07-08 22:35:093c4d9fa1a4e660a57307c635e5c117f5Virustotal results 20/54 (37.04%) 189.127.48.11:443
2014-07-08 20:13:11c6959f6d1508915fcab7e68c82449ae5Virustotal results 21/54 (38.89%) 189.127.48.11:443
2014-07-08 20:13:11c6959f6d1508915fcab7e68c82449ae5Virustotal results 21/54 (38.89%) 189.127.48.11:443
2014-07-08 10:22:21f25f2bd5565ff05edca4bc2bfbf59f16Virustotal results 22/53 (41.51%) Shylock 189.127.48.11:443
2014-07-08 10:22:21f25f2bd5565ff05edca4bc2bfbf59f16Virustotal results 22/53 (41.51%) Shylock 189.127.48.11:443
2014-07-07 23:47:063357d093aa7b41d7f54dc37636796c09Virustotal results 25/51 (49.02%) Shylock 189.127.48.11:443
2014-07-07 23:47:063357d093aa7b41d7f54dc37636796c09Virustotal results 25/51 (49.02%) Shylock 189.127.48.11:443
2014-07-07 02:26:0910556a5d4a19df7d4914a73e17e5dd77Virustotal results 18/54 (33.33%) Shylock 189.127.48.11:443
2014-07-07 02:26:0910556a5d4a19df7d4914a73e17e5dd77Virustotal results 18/54 (33.33%) Shylock 189.127.48.11:443
2014-07-05 09:06:0586f1f4b00070a3038e449aa1b46d382fVirustotal results 24/53 (45.28%) Shylock 189.127.48.11:443
2014-07-05 09:06:0586f1f4b00070a3038e449aa1b46d382fVirustotal results 24/53 (45.28%) Shylock 189.127.48.11:443
2014-07-01 08:09:03b42e4384ac9a7b8db9b776fb3c349db0Virustotal results 22/54 (40.74%) Shylock 189.127.48.11:443
2014-07-01 08:09:03b42e4384ac9a7b8db9b776fb3c349db0Virustotal results 22/54 (40.74%) Shylock 189.127.48.11:443
2014-06-29 06:56:15ae962cf8a2d1b2d2d96fe876b87ae727Virustotal results 21/54 (38.89%) Shylock 189.127.48.11:443
2014-06-29 06:56:15ae962cf8a2d1b2d2d96fe876b87ae727Virustotal results 21/54 (38.89%) Shylock 189.127.48.11:443
2014-06-29 06:14:58ac6db4f295f1ecdc27af5956d383bef6Virustotal results 21/54 (38.89%) Shylock 189.127.48.11:443
2014-06-29 06:14:58ac6db4f295f1ecdc27af5956d383bef6Virustotal results 21/54 (38.89%) Shylock 189.127.48.11:443
2014-06-29 05:09:36a91b39353f4b1184d477d883413fd0b2Virustotal results 24/54 (44.44%) 189.127.48.11:443
2014-06-29 05:09:36a91b39353f4b1184d477d883413fd0b2Virustotal results 24/54 (44.44%) 189.127.48.11:443
2014-06-28 16:40:58a14c00868ccf2055513d34e91d30ca25Virustotal results 31/54 (57.41%) Shylock 189.127.48.11:443
2014-06-28 16:40:58a14c00868ccf2055513d34e91d30ca25Virustotal results 31/54 (57.41%) Shylock 189.127.48.11:443
2014-06-28 16:17:15a13642e2ad8ebf26b9b8d7306e83cb49Virustotal results 22/54 (40.74%) 189.127.48.11:443
2014-06-28 16:17:15a13642e2ad8ebf26b9b8d7306e83cb49Virustotal results 22/54 (40.74%) 189.127.48.11:443
2014-06-28 12:25:169ab1fcfc2797132e11ace44eeb18e8afVirustotal results 34/53 (64.15%) Shylock 189.127.48.11:443
2014-06-28 12:25:169ab1fcfc2797132e11ace44eeb18e8afVirustotal results 34/53 (64.15%) Shylock 189.127.48.11:443
2014-06-28 12:05:4498942dd3b9d6a19069253badfdfc222aVirustotal results 22/54 (40.74%) Shylock 189.127.48.11:443
2014-06-28 12:05:4498942dd3b9d6a19069253badfdfc222aVirustotal results 22/54 (40.74%) Shylock 189.127.48.11:443
2014-06-28 11:49:2996a215e43ba28ed6ccf45a5a1c1229d7Virustotal results 36/54 (66.67%) 189.127.48.11:443
2014-06-28 11:49:2996a215e43ba28ed6ccf45a5a1c1229d7Virustotal results 36/54 (66.67%) 189.127.48.11:443
2014-06-28 11:04:3990d953be6a814b521ef4197e94775dbeVirustotal results 32/53 (60.38%) Shylock 189.127.48.11:443
2014-06-28 11:04:3990d953be6a814b521ef4197e94775dbeVirustotal results 32/53 (60.38%) Shylock 189.127.48.11:443
2014-06-28 09:56:5586b5d49ffef1e79da0cabcc2a8e7b35aVirustotal results 17/54 (31.48%) Shylock 189.127.48.11:443
2014-06-28 09:56:5586b5d49ffef1e79da0cabcc2a8e7b35aVirustotal results 17/54 (31.48%) Shylock 189.127.48.11:443
2014-06-28 07:47:132099d27b0866d35d024b7bda7278871bVirustotal results 31/54 (57.41%) Shylock 189.127.48.11:443
2014-06-28 07:47:132099d27b0866d35d024b7bda7278871bVirustotal results 31/54 (57.41%) Shylock 189.127.48.11:443
2014-06-28 07:42:1967461cccdb30bc405de3f1a84977e865Virustotal results 23/54 (42.59%) Shylock 189.127.48.11:443
2014-06-28 07:42:1967461cccdb30bc405de3f1a84977e865Virustotal results 23/54 (42.59%) Shylock 189.127.48.11:443
2014-06-28 07:39:0713bf9988b7db0f6b5c6df0966ce179b6Virustotal results 29/54 (53.70%) 189.127.48.11:443
2014-06-28 07:39:0713bf9988b7db0f6b5c6df0966ce179b6Virustotal results 29/54 (53.70%) 189.127.48.11:443
2014-06-28 07:33:364dcb162ab13d62b7a344883c6a6d2b70Virustotal results 25/54 (46.30%) Shylock 189.127.48.11:443
2014-06-28 07:33:364dcb162ab13d62b7a344883c6a6d2b70Virustotal results 25/54 (46.30%) Shylock 189.127.48.11:443
2014-06-28 07:32:1501da71ef2cc7590fd539a080b5ac576cVirustotal results 32/55 (58.18%) Shylock 189.127.48.11:443
2014-06-28 07:32:1501da71ef2cc7590fd539a080b5ac576cVirustotal results 32/55 (58.18%) Shylock 189.127.48.11:443
2014-06-28 07:02:49c003d0cbf4ab2ca365f3ce4a8371b2a7Virustotal results 4/49 (8.16%) Shylock 189.127.48.11:443
2014-06-28 07:02:49c003d0cbf4ab2ca365f3ce4a8371b2a7Virustotal results 4/49 (8.16%) Shylock 189.127.48.11:443
2014-06-28 05:36:2936f88de2931eb238d487298af7653172Virustotal results 28/54 (51.85%) Shylock 189.127.48.11:443
2014-06-28 05:36:2936f88de2931eb238d487298af7653172Virustotal results 28/54 (51.85%) Shylock 189.127.48.11:443
2014-06-28 01:43:22e95ebe6e0880a3671d36db7be2b959f7Virustotal results 32/55 (58.18%) 189.127.48.11:443
2014-06-28 01:43:22e95ebe6e0880a3671d36db7be2b959f7Virustotal results 32/55 (58.18%) 189.127.48.11:443
2014-06-28 01:16:03fbc421bbf925679181435a00514de22eVirustotal results 19/54 (35.19%) Shylock 189.127.48.11:443
2014-06-28 01:16:03fbc421bbf925679181435a00514de22eVirustotal results 19/54 (35.19%) Shylock 189.127.48.11:443
2014-06-28 01:10:2160931f684ada0f63b01b91c42dfc0962Virustotal results 24/54 (44.44%) Shylock 189.127.48.11:443
2014-06-28 01:10:2160931f684ada0f63b01b91c42dfc0962Virustotal results 24/54 (44.44%) Shylock 189.127.48.11:443
2014-06-28 00:49:3726f12e5a888812dff5566b22bfe173dcVirustotal results 14/54 (25.93%) Shylock 189.127.48.11:443
2014-06-28 00:49:3726f12e5a888812dff5566b22bfe173dcVirustotal results 14/54 (25.93%) Shylock 189.127.48.11:443
2014-06-27 23:53:21e7f4c5646aa02d0714c570ae50460e66Virustotal results 23/54 (42.59%) Shylock 189.127.48.11:443
2014-06-27 23:53:21e7f4c5646aa02d0714c570ae50460e66Virustotal results 23/54 (42.59%) Shylock 189.127.48.11:443
2014-06-27 23:52:59e3f5d2789a5dde96ce54567f1f3202e6Virustotal results 31/54 (57.41%) 189.127.48.11:443
2014-06-27 23:52:59e3f5d2789a5dde96ce54567f1f3202e6Virustotal results 31/54 (57.41%) 189.127.48.11:443
2014-06-27 23:10:502b6fab77a7ef9174f72f9fc29a51100dVirustotal results 30/54 (55.56%) Shylock 189.127.48.11:443
2014-06-27 23:10:502b6fab77a7ef9174f72f9fc29a51100dVirustotal results 30/54 (55.56%) Shylock 189.127.48.11:443
2014-06-27 22:49:15ea0086c610bcd2cda59860a924934727Virustotal results 22/54 (40.74%) Shylock 189.127.48.11:443
2014-06-27 22:49:15ea0086c610bcd2cda59860a924934727Virustotal results 22/54 (40.74%) Shylock 189.127.48.11:443
2014-06-27 22:31:2052e9041ce02d28739852b04411ef5b99Virustotal results 34/53 (64.15%) 189.127.48.11:443
2014-06-27 22:31:2052e9041ce02d28739852b04411ef5b99Virustotal results 34/53 (64.15%) 189.127.48.11:443
2014-06-27 21:59:066f3239d72cc0e4eb70bbdc594defcac0Virustotal results 30/54 (55.56%) 189.127.48.11:443
2014-06-27 21:59:066f3239d72cc0e4eb70bbdc594defcac0Virustotal results 30/54 (55.56%) 189.127.48.11:443
2014-06-27 21:50:17f0e124b9a8ad06b25d915273e0897897Virustotal results 8/54 (14.81%) Shylock 189.127.48.11:443
2014-06-27 21:50:17f0e124b9a8ad06b25d915273e0897897Virustotal results 8/54 (14.81%) Shylock 189.127.48.11:443
2014-06-27 21:49:1556229ab4d84911f36cc27ee6a73928dfVirustotal results 10/53 (18.87%) Shylock 189.127.48.11:443
2014-06-27 21:49:1556229ab4d84911f36cc27ee6a73928dfVirustotal results 10/53 (18.87%) Shylock 189.127.48.11:443
2014-06-27 21:47:4952997cea8a7b21f5ea2b0d39145f414aVirustotal results 31/54 (57.41%) Shylock 189.127.48.11:443
2014-06-27 21:47:4952997cea8a7b21f5ea2b0d39145f414aVirustotal results 31/54 (57.41%) Shylock 189.127.48.11:443
2014-06-27 20:33:28ec36a2efb3b348687a47b14d5d43b618Virustotal results 24/53 (45.28%) Shylock 189.127.48.11:443
2014-06-27 20:33:28ec36a2efb3b348687a47b14d5d43b618Virustotal results 24/53 (45.28%) Shylock 189.127.48.11:443
2014-06-27 11:05:209ca616599435bf03936c07fcaafe1e33Virustotal results 6/46 (13.04%) Shylock 189.127.48.11:443
2014-06-27 11:05:209ca616599435bf03936c07fcaafe1e33Virustotal results 6/46 (13.04%) Shylock 189.127.48.11:443
2014-06-27 08:33:078604cd4804f3d235e9e4cd9a99ccaac6Virustotal results 1/52 (1.92%) 189.127.48.11:443
2014-06-27 08:33:078604cd4804f3d235e9e4cd9a99ccaac6Virustotal results 1/52 (1.92%) 189.127.48.11:443
2014-06-27 06:56:20b2cb0619688a91de944e974ca7a8eb46Virustotal results 24/54 (44.44%) 189.127.48.11:443
2014-06-27 06:56:20b2cb0619688a91de944e974ca7a8eb46Virustotal results 24/54 (44.44%) 189.127.48.11:443
2014-06-27 00:04:377a5864883d7412b607868743650a6e5cVirustotal results 25/54 (46.30%) Shylock 189.127.48.11:443
2014-06-27 00:04:377a5864883d7412b607868743650a6e5cVirustotal results 25/54 (46.30%) Shylock 189.127.48.11:443
2014-06-26 22:46:55facbe15d5ace2c9c540b092aeccd10a0Virustotal results 26/54 (48.15%) Shylock 189.127.48.11:443
2014-06-26 22:46:55facbe15d5ace2c9c540b092aeccd10a0Virustotal results 26/54 (48.15%) Shylock 189.127.48.11:443

# of entries: 100 (max: 100)