SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 39f3abca4d940c79c7effc9800ee64f7776c3075.
Database Entry
| SHA1 Fingerprint: | 39f3abca4d940c79c7effc9800ee64f7776c3075 |
|---|---|
| Certificate Common Name (CN): | distributiontheory.cfd |
| Issuer Distinguished Name (DN): | E7 |
| TLS Version: | TLS 1.2 |
| First seen: | 2026-04-30 14:13:40 UTC |
| Last seen: | 2026-05-14 21:01:04 UTC |
| Status: | Blacklisted |
| Listing reason: | OffLoader C&C |
| Listing date: | 2026-05-18 11:27:22 |
| Malware samples: | 12 |
| Botnet C&Cs: | 7 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2026-05-14 21:01:04 | 1b7c873cee9a33cacbc2fe7dba6e63c9 | n/a | 188.114.96.12:443 | |
| 2026-05-09 23:33:23 | c82b533b9e5bef488dc5d60fb3eb4719 | n/a | 188.114.97.0:443 | |
| 2026-05-05 05:06:31 | 2a0b43cb451d841ca58007aae202c61f | n/a | 188.114.97.0:443 | |
| 2026-05-04 08:39:50 | 942598394c2c8523739cb10c13404641 | n/a | 104.21.3.54:443 | |
| 2026-05-03 23:44:36 | 27750bd380bf8182536e8cb040df6d3a | n/a | 172.67.130.68:443 | |
| 2026-05-03 03:07:41 | 257b306597ed9b230c1487932fe409df | n/a | 188.114.96.3:443 | |
| 2026-05-02 08:43:38 | 7c4fec367c0747f111febf7b18c51443 | n/a | 188.114.97.3:443 | |
| 2026-05-01 09:35:04 | 4731baf68c06e53d2e1b346a3486df1e | n/a | 172.67.130.68:443 | |
| 2026-05-01 09:33:05 | 46f9895bbab62a7788f4688da5b5d9be | n/a | 188.114.96.12:443 | |
| 2026-05-01 08:58:16 | 421b56ca0b84e17b3803d0bb70736d4f | n/a | 188.114.96.0:443 | |
| 2026-05-01 06:39:25 | 1ecc2b4860a9d92b0ce500a86a9dcd8a | n/a | 188.114.96.3:443 | |
| 2026-04-30 14:13:40 | 019fbbf88e20a849c0dc89f381bc7893 | n/a | 188.114.96.12:443 |
# of entries: 12 (max: 100)