SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 2de7a61d409e5f0feccfd58652ed1d5cf399e70c.

Database Entry

SHA1 Fingerprint:2de7a61d409e5f0feccfd58652ed1d5cf399e70c
Certificate Common Name (CN):Phoenix Rat Server
Issuer Distinguished Name (DN):Phoenix Rat Server
TLS Version:TLSv1
First seen:2022-03-04 18:05:35 UTC
Last seen:never
Listing reason:PhoenixRAT C&C
Listing date:2022-03-04 19:18:08
Malware samples:1
Botnet C&Cs:1

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2022-03-04 18:05:3503800060b625ac67e10d8fc8ebec4446Virustotal results 29 / 71 (40.85%) CoinMiner172.247.14.52:12530

# of entries: 1 (max: 100)