SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 357d83cac3a1167d8387d4e73d3196fe845eacdb.

Database Entry


SHA1 Fingerprint:357d83cac3a1167d8387d4e73d3196fe845eacdb
Certificate Common Name (CN):www.Ke6aDbHw.com/O=Ppb3TmmaN9mHbEMMea2CJ0Tc0Edt2CHg./C=US
Issuer Distinguished Name (DN):www.Ke6aDbHw.com/O=Ppb3TmmaN9mHbEMMea2CJ0Tc0Edt2CHg./C=US
TLS Version:SSLv3
First seen:2015-11-09 20:20:23 UTC
Last seen:2015-11-11 08:00:01 UTC
Status:Blacklisted
Listing reason:Gootkit C&C
Listing date:2015-11-10 10:02:17
Malware samples:5
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2015-11-11 08:00:01fff29f3618173812b822b058a6c00d5aVirustotal results 2/54 (3.70%) Gootkit 163.53.247.79:80
2015-11-11 08:00:01fff29f3618173812b822b058a6c00d5aVirustotal results 2/54 (3.70%) Gootkit 163.53.247.79:80
2015-11-10 22:39:35f80de329d75c9f30a18517b34c84d776Virustotal results 14/56 (25.00%) Gootkit 163.53.247.79:80
2015-11-10 22:39:35f80de329d75c9f30a18517b34c84d776Virustotal results 14/56 (25.00%) Gootkit 163.53.247.79:80
2015-11-10 11:39:473264c0dc0ab5598e7c0b6266dc3116efVirustotal results 2/55 (3.64%) Gootkit 163.53.247.79:80
2015-11-10 11:39:473264c0dc0ab5598e7c0b6266dc3116efVirustotal results 2/55 (3.64%) Gootkit 163.53.247.79:80
2015-11-10 09:07:1608aff48c06c55856f0ef1f2276fe676eVirustotal results 16/52 (30.77%) Gootkit 163.53.247.79:80
2015-11-10 09:07:1608aff48c06c55856f0ef1f2276fe676eVirustotal results 16/52 (30.77%) Gootkit 163.53.247.79:80
2015-11-09 20:20:2338864c75bd258bb07e2c954a1686140fVirustotal results 30/56 (53.57%) Gootkit 163.53.247.79:80
2015-11-09 20:20:2338864c75bd258bb07e2c954a1686140fVirustotal results 30/56 (53.57%) Gootkit 163.53.247.79:80

# of entries: 10 (max: 100)