SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 38ecc7c543c90d25571eae05fbd1948a310761b7.
Database Entry
| SHA1 Fingerprint: | 38ecc7c543c90d25571eae05fbd1948a310761b7 |
|---|---|
| Certificate Common Name (CN): | caranatrium.com |
| Issuer Distinguished Name (DN): | Let's Encrypt Authority X3 |
| TLS Version: | TLS 1.2 |
| First seen: | 2020-06-23 11:29:28 UTC |
| Last seen: | 2020-06-23 13:18:22 UTC |
| Status: | Blacklisted |
| Listing reason: | Dridex C&C |
| Listing date: | 2020-06-23 13:49:21 |
| Malware samples: | 4 |
| Botnet C&Cs: | 2 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2020-06-23 13:18:22 | f0ada028f9c9aa3fc983151fbd594937 | n/a | Dridex | 84.38.183.213:443 |
| 2020-06-23 13:18:22 | f0ada028f9c9aa3fc983151fbd594937 | n/a | Dridex | 84.38.183.213:443 |
| 2020-06-23 11:36:17 | de12c9f4529f864bf2c9b18032fdc30c |  14 / 63 (22.22%)
| Dridex | 84.38.182.236:443 |
| 2020-06-23 11:36:17 | de12c9f4529f864bf2c9b18032fdc30c | 14 / 63 (22.22%)
| Dridex | 84.38.182.236:443 |
| 2020-06-23 11:30:27 | 92e808445a2d37acd033de975e434418 | 17 / 63 (26.98%)
| Dridex | 84.38.182.236:443 |
| 2020-06-23 11:30:27 | 92e808445a2d37acd033de975e434418 | 17 / 63 (26.98%)
| Dridex | 84.38.182.236:443 |
| 2020-06-23 11:29:28 | 8abd99e0aa6e6dc2faca8204a28d3021 | 14 / 63 (22.22%)
| Dridex | 84.38.182.236:443 |
| 2020-06-23 11:29:28 | 8abd99e0aa6e6dc2faca8204a28d3021 | 14 / 63 (22.22%)
| Dridex | 84.38.182.236:443 |
# of entries: 8 (max: 100)