SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 2a5db016a7078bba81fba85dac9751f21f9340bd.

Database Entry


SHA1 Fingerprint:2a5db016a7078bba81fba85dac9751f21f9340bd
Certificate Common Name (CN):localhost
Issuer Distinguished Name (DN):localhost
TLS Version:SSLv3
First seen:2014-05-06 21:47:02 UTC
Last seen:2014-07-27 21:17:40 UTC
Status:Blacklisted
Listing reason:Shylock C&C
Listing date:2014-05-07 13:44:16
Malware samples:141
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2014-07-27 21:17:40bb45bc6538809e4ab45b5f0b7af3d3b0Virustotal results 21/54 (38.89%) Shylock 189.127.48.11:443
2014-07-26 14:29:00b4b85925969612d6761944514550efaaVirustotal results 20/54 (37.04%) Shylock 189.127.48.11:443
2014-07-14 09:35:369a8e992c1f3c5e9d713aa18e643e4368Virustotal results 25/54 (46.30%) Shylock 189.127.48.11:443
2014-07-13 22:36:11227155e7b833069226c5bc0a2a3a28a1Virustotal results 30/53 (56.60%) Shylock 189.127.48.11:443
2014-07-13 10:48:1792b9c11ef5d5ff4addfa507def7c3a55Virustotal results 35/54 (64.81%) Shylock 189.127.48.11:443
2014-07-12 21:40:45479afe856618af51a00e9d511037f7c8Virustotal results 23/54 (42.59%) Shylock 189.127.48.11:443
2014-07-12 19:28:26585dd1f11bb4c325f8e715c3dbbd54d7Virustotal results 20/54 (37.04%) Shylock 189.127.48.11:443
2014-07-08 22:35:093c4d9fa1a4e660a57307c635e5c117f5Virustotal results 20/54 (37.04%) 189.127.48.11:443
2014-07-08 20:13:11c6959f6d1508915fcab7e68c82449ae5Virustotal results 21/54 (38.89%) 189.127.48.11:443
2014-07-08 10:22:21f25f2bd5565ff05edca4bc2bfbf59f16Virustotal results 22/53 (41.51%) Shylock 189.127.48.11:443
2014-07-07 23:47:063357d093aa7b41d7f54dc37636796c09Virustotal results 25/51 (49.02%) Shylock 189.127.48.11:443
2014-07-07 02:26:0910556a5d4a19df7d4914a73e17e5dd77Virustotal results 18/54 (33.33%) Shylock 189.127.48.11:443
2014-07-05 09:06:0586f1f4b00070a3038e449aa1b46d382fVirustotal results 24/53 (45.28%) Shylock 189.127.48.11:443
2014-07-01 08:09:03b42e4384ac9a7b8db9b776fb3c349db0Virustotal results 22/54 (40.74%) Shylock 189.127.48.11:443
2014-06-29 06:56:15ae962cf8a2d1b2d2d96fe876b87ae727Virustotal results 21/54 (38.89%) Shylock 189.127.48.11:443
2014-06-29 06:14:58ac6db4f295f1ecdc27af5956d383bef6Virustotal results 21/54 (38.89%) Shylock 189.127.48.11:443
2014-06-29 05:09:36a91b39353f4b1184d477d883413fd0b2Virustotal results 24/54 (44.44%) 189.127.48.11:443
2014-06-28 16:40:58a14c00868ccf2055513d34e91d30ca25Virustotal results 31/54 (57.41%) Shylock 189.127.48.11:443
2014-06-28 16:17:15a13642e2ad8ebf26b9b8d7306e83cb49Virustotal results 22/54 (40.74%) 189.127.48.11:443
2014-06-28 12:25:169ab1fcfc2797132e11ace44eeb18e8afVirustotal results 34/53 (64.15%) Shylock 189.127.48.11:443
2014-06-28 12:05:4498942dd3b9d6a19069253badfdfc222aVirustotal results 22/54 (40.74%) Shylock 189.127.48.11:443
2014-06-28 11:49:2996a215e43ba28ed6ccf45a5a1c1229d7Virustotal results 36/54 (66.67%) 189.127.48.11:443
2014-06-28 11:04:3990d953be6a814b521ef4197e94775dbeVirustotal results 32/53 (60.38%) Shylock 189.127.48.11:443
2014-06-28 09:56:5586b5d49ffef1e79da0cabcc2a8e7b35aVirustotal results 17/54 (31.48%) Shylock 189.127.48.11:443
2014-06-28 07:47:132099d27b0866d35d024b7bda7278871bVirustotal results 31/54 (57.41%) Shylock 189.127.48.11:443
2014-06-28 07:42:1967461cccdb30bc405de3f1a84977e865Virustotal results 23/54 (42.59%) Shylock 189.127.48.11:443
2014-06-28 07:39:0713bf9988b7db0f6b5c6df0966ce179b6Virustotal results 29/54 (53.70%) 189.127.48.11:443
2014-06-28 07:33:364dcb162ab13d62b7a344883c6a6d2b70Virustotal results 25/54 (46.30%) Shylock 189.127.48.11:443
2014-06-28 07:32:1501da71ef2cc7590fd539a080b5ac576cVirustotal results 32/55 (58.18%) Shylock 189.127.48.11:443
2014-06-28 07:02:49c003d0cbf4ab2ca365f3ce4a8371b2a7Virustotal results 4/49 (8.16%) Shylock 189.127.48.11:443
2014-06-28 05:36:2936f88de2931eb238d487298af7653172Virustotal results 28/54 (51.85%) Shylock 189.127.48.11:443
2014-06-28 01:43:22e95ebe6e0880a3671d36db7be2b959f7Virustotal results 32/55 (58.18%) 189.127.48.11:443
2014-06-28 01:16:03fbc421bbf925679181435a00514de22eVirustotal results 19/54 (35.19%) Shylock 189.127.48.11:443
2014-06-28 01:10:2160931f684ada0f63b01b91c42dfc0962Virustotal results 24/54 (44.44%) Shylock 189.127.48.11:443
2014-06-28 00:49:3726f12e5a888812dff5566b22bfe173dcVirustotal results 14/54 (25.93%) Shylock 189.127.48.11:443
2014-06-27 23:53:21e7f4c5646aa02d0714c570ae50460e66Virustotal results 23/54 (42.59%) Shylock 189.127.48.11:443
2014-06-27 23:52:59e3f5d2789a5dde96ce54567f1f3202e6Virustotal results 31/54 (57.41%) 189.127.48.11:443
2014-06-27 23:10:502b6fab77a7ef9174f72f9fc29a51100dVirustotal results 30/54 (55.56%) Shylock 189.127.48.11:443
2014-06-27 22:49:15ea0086c610bcd2cda59860a924934727Virustotal results 22/54 (40.74%) Shylock 189.127.48.11:443
2014-06-27 22:31:2052e9041ce02d28739852b04411ef5b99Virustotal results 34/53 (64.15%) 189.127.48.11:443
2014-06-27 21:59:066f3239d72cc0e4eb70bbdc594defcac0Virustotal results 30/54 (55.56%) 189.127.48.11:443
2014-06-27 21:50:17f0e124b9a8ad06b25d915273e0897897Virustotal results 8/54 (14.81%) Shylock 189.127.48.11:443
2014-06-27 21:49:1556229ab4d84911f36cc27ee6a73928dfVirustotal results 10/53 (18.87%) Shylock 189.127.48.11:443
2014-06-27 21:47:4952997cea8a7b21f5ea2b0d39145f414aVirustotal results 31/54 (57.41%) Shylock 189.127.48.11:443
2014-06-27 20:33:28ec36a2efb3b348687a47b14d5d43b618Virustotal results 24/53 (45.28%) Shylock 189.127.48.11:443
2014-06-27 11:05:209ca616599435bf03936c07fcaafe1e33Virustotal results 6/46 (13.04%) Shylock 189.127.48.11:443
2014-06-27 08:33:078604cd4804f3d235e9e4cd9a99ccaac6Virustotal results 1/52 (1.92%) 189.127.48.11:443
2014-06-27 06:56:20b2cb0619688a91de944e974ca7a8eb46Virustotal results 24/54 (44.44%) 189.127.48.11:443
2014-06-27 00:04:377a5864883d7412b607868743650a6e5cVirustotal results 25/54 (46.30%) Shylock 189.127.48.11:443
2014-06-26 22:46:55facbe15d5ace2c9c540b092aeccd10a0Virustotal results 26/54 (48.15%) Shylock 189.127.48.11:443
2014-06-26 19:44:42485d50b5e553eb927975b43406b80973Virustotal results 36/54 (66.67%) Shylock 189.127.48.11:443
2014-06-26 19:37:125d9aa2c8b52fa22c24874987fabe2a9fVirustotal results 9/54 (16.67%) Shylock 189.127.48.11:443
2014-06-26 19:25:043fcb8946770adb60dd2ea10fed5caae1Virustotal results 19/54 (35.19%) Shylock 189.127.48.11:443
2014-06-26 15:02:194a65b3f98a678a6c00f54f7844a61d65Virustotal results 30/54 (55.56%) Shylock 189.127.48.11:443
2014-06-26 14:53:45d22bcad9b643eee09679c63909f6ef08Virustotal results 22/54 (40.74%) 189.127.48.11:443
2014-06-26 11:03:1843e809d1837f5fb7e997ef7f88c14587Virustotal results 33/53 (62.26%) Shylock 189.127.48.11:443
2014-06-26 08:16:30e93200b8c1b0d2857c18d69776b41d16Virustotal results 24/54 (44.44%) Shylock 189.127.48.11:443
2014-06-26 07:19:38741b41c15493c81c664d9d58d7f6b16dVirustotal results 26/54 (48.15%) Shylock 189.127.48.11:443
2014-06-25 09:00:3129b2ac7756f5263926fd1389cf48a85fVirustotal results 31/54 (57.41%) Shylock 189.127.48.11:443
2014-06-25 07:29:43fc4d5fc760b53baec6d64c41292e99d3Virustotal results 26/53 (49.06%) Shylock 189.127.48.11:443
2014-06-25 07:28:4793083da42a3c3b5fd0d84a9c46887ef6Virustotal results 34/55 (61.82%) Shylock 189.127.48.11:443
2014-06-25 07:23:48a383e197f08956d7ba238d80c0f28c04Virustotal results 19/54 (35.19%) Shylock 189.127.48.11:443
2014-06-25 06:42:285c159dd0edb412894508ced0a3da1d65Virustotal results 22/53 (41.51%) Shylock 189.127.48.11:443
2014-06-25 06:11:4372d76d817dd1764be712295f75ac2ee2Virustotal results 3/54 (5.56%) Shylock 189.127.48.11:443
2014-06-25 05:55:36ef04ded64ad76627cabffc7252beb8a8Virustotal results 26/54 (48.15%) Shylock 189.127.48.11:443
2014-06-25 05:40:34341cfaf9ddefa2990b20115cc97c9e7cVirustotal results 18/53 (33.96%) Shylock 189.127.48.11:443
2014-06-25 05:12:142950848d501a4502527f2305189743f4Virustotal results 7/53 (13.21%) Shylock 189.127.48.11:443
2014-06-25 02:18:48d7ae455db7d62b471f9fa47216ca58efVirustotal results 19/52 (36.54%) Shylock 189.127.48.11:443
2014-06-25 02:14:09313aadf3a3daa3a26d1c3179923ac968Virustotal results 16/54 (29.63%) Shylock 189.127.48.11:443
2014-06-25 01:51:0417a3fb26849c80299a6f5fc5817212acVirustotal results 22/54 (40.74%) Shylock 189.127.48.11:443
2014-06-25 00:34:3162b42368249b6bea3e91542fccd23022Virustotal results 32/51 (62.75%) Shylock 189.127.48.11:443
2014-06-25 00:24:224a0ef84f018aabcccc47dd1f8cd52f24Virustotal results 1/53 (1.89%) Shylock 189.127.48.11:443
2014-06-24 23:24:286c1a5120738db8345dc553f15ca05030Virustotal results 27/53 (50.94%) Shylock 189.127.48.11:443
2014-06-24 20:27:1510fb6ca2d09da798a547a8e1d523d730Virustotal results 5/54 (9.26%) Shylock 189.127.48.11:443
2014-06-24 18:05:43bc65d0408a28268f6181dd5bba8ce3fbVirustotal results 29/54 (53.70%) Shylock 189.127.48.11:443
2014-06-24 16:31:294adcad3a0f14ae554abd41c3ee41aae0Virustotal results 22/54 (40.74%) Shylock 189.127.48.11:443
2014-06-24 16:15:235614e5ed3ff34c24b0c71ddeeb1856a3Virustotal results 30/54 (55.56%) Shylock 189.127.48.11:443
2014-06-24 15:55:134b7eb3e3406612b5f3d3e5ba25b30a67Virustotal results 33/54 (61.11%) Shylock 189.127.48.11:443
2014-06-24 15:24:18b48ef0c01bd2dcb974106ed90a4cef68Virustotal results 24/54 (44.44%) Shylock 189.127.48.11:443
2014-06-24 14:09:222fb9ab5698110d861259caab562e018cVirustotal results 30/54 (55.56%) Shylock 189.127.48.11:443
2014-06-24 13:17:55a8f577b42de293d551930dfcaeb156baVirustotal results 31/54 (57.41%) Shylock 189.127.48.11:443
2014-06-24 11:06:236ed0c65104670d354fef4f43cddea192Virustotal results 31/54 (57.41%) Shylock 189.127.48.11:443
2014-06-24 10:32:487167874ade1292524097643aef76bfc7Virustotal results 27/54 (50.00%) Shylock 189.127.48.11:443
2014-06-24 09:11:411b2a49f199d9a5c57fa4d1b1ee76ae97Virustotal results 23/54 (42.59%) Shylock 189.127.48.11:443
2014-06-24 09:09:292ddf550342585b3a8b800576d86a6cecVirustotal results 28/53 (52.83%) Shylock 189.127.48.11:443
2014-06-22 15:45:239127da6e7d5a026615b0792d5a6aa20dVirustotal results 2/54 (3.70%) Shylock 189.127.48.11:443
2014-06-22 02:57:200bcfaecf2660155504db544571faaa0bVirustotal results 11/54 (20.37%) Shylock 189.127.48.11:443
2014-06-22 02:41:521e04e3629c63eab5fe56c5b95d28bc5fVirustotal results 13/54 (24.07%) Shylock 189.127.48.11:443
2014-06-22 00:49:4531e45925886bc2ff45c59268bcd281c1Virustotal results 32/54 (59.26%) Shylock 189.127.48.11:443
2014-06-21 23:23:213e9d01051cb7a7f194a0175f662a0db7Virustotal results 23/54 (42.59%) Shylock 189.127.48.11:443
2014-06-21 22:54:436c0ed3000be4c3e9857a4413375ab87aVirustotal results 16/54 (29.63%) Shylock 189.127.48.11:443
2014-06-21 20:42:411ee5dd861f005024a88c00aeae4ed33fVirustotal results 19/54 (35.19%) Shylock 189.127.48.11:443
2014-06-21 20:23:5022c25414a4bcdbb68fa0ce067f25814eVirustotal results 19/54 (35.19%) Shylock 189.127.48.11:443
2014-06-21 19:31:42268eddb8ad63ed830d66da7ec00a0b82Virustotal results 25/54 (46.30%) Shylock 189.127.48.11:443
2014-06-21 18:03:20faa52886f7d10bb672ee77a283c0ff01Virustotal results 30/54 (55.56%) Shylock 189.127.48.11:443
2014-06-21 17:59:502467682e190c77a5378270d4d98ee54bVirustotal results 21/54 (38.89%) Shylock 189.127.48.11:443
2014-06-21 17:46:1470ba7cef081067a4945d43a059590238Virustotal results 9/54 (16.67%) Shylock 189.127.48.11:443
2014-06-21 17:45:5018b99427e6a4f8198bada52c4c624169Virustotal results 2/54 (3.70%) Shylock 189.127.48.11:443
2014-06-21 17:13:480c947563f0ae626b88099ccee48f68b1Virustotal results 1/54 (1.85%) Shylock 189.127.48.11:443
2014-06-21 17:04:200b842ba8e17eb7a9f6f97ec037519a82Virustotal results 15/41 (36.59%) Shylock 189.127.48.11:443

# of entries: 100 (max: 100)