SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 2c542e32c6cba4b499d142f957519706ac533a1f.

Database Entry

SHA1 Fingerprint:	2c542e32c6cba4b499d142f957519706ac533a1f
Certificate Common Name (CN):	localhost
Issuer Distinguished Name (DN):	localhost
TLS Version:	TLSv1
First seen:	2016-07-14 18:48:27 UTC
Last seen:	2016-07-21 11:49:43 UTC
Status:	Blacklisted
Listing reason:	Gootkit C&C
Listing date:	2016-07-15 05:23:26
Malware samples:	6
Botnet C&Cs:	1

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2016-07-21 11:49:43	411bb8ef5999e61fbe2522f7eb8c4863	n/a	Gootkit	31.200.247.82:80
2016-07-21 11:49:43	411bb8ef5999e61fbe2522f7eb8c4863	n/a	Gootkit	31.200.247.82:80
2016-07-16 07:37:31	299b707751e40625e3b9a6320bf21216	n/a	Gootkit	31.200.247.82:80
2016-07-16 07:37:31	299b707751e40625e3b9a6320bf21216	n/a	Gootkit	31.200.247.82:80
2016-07-15 01:26:51	fa7d0212a0119033a48d541408204dd0	n/a	Gootkit	31.200.247.82:80
2016-07-15 01:26:51	fa7d0212a0119033a48d541408204dd0	n/a	Gootkit	31.200.247.82:80
2016-07-14 21:24:43	2ad6b8283d7b3a74cb4b1de2c7b44a7b	43/67 (64.18%)	Gootkit	31.200.247.82:80
2016-07-14 21:24:43	2ad6b8283d7b3a74cb4b1de2c7b44a7b	43/67 (64.18%)	Gootkit	31.200.247.82:80
2016-07-14 18:52:38	a616909310248dbd45b3dd2d44f2eb42	n/a	Gootkit	31.200.247.82:80
2016-07-14 18:52:38	a616909310248dbd45b3dd2d44f2eb42	n/a	Gootkit	31.200.247.82:80
2016-07-14 18:48:27	540936109db318ea637ff8d50197a46f	n/a	Gootkit	31.200.247.82:80
2016-07-14 18:48:27	540936109db318ea637ff8d50197a46f	n/a	Gootkit	31.200.247.82:80

# of entries: 12 (max: 100)