SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 3aa5039faf5cc5fe6d47023c6f019b23f880311b.

Database Entry


SHA1 Fingerprint:3aa5039faf5cc5fe6d47023c6f019b23f880311b
Certificate Common Name (CN):C=AU, ST=Some-State, O=Internet Widgits Pty Ltd
Issuer Distinguished Name (DN):C=AU, ST=Some-State, O=Internet Widgits Pty Ltd
TLS Version:TLSv1
First seen:2016-05-22 04:02:46 UTC
Last seen:2016-06-10 17:42:00 UTC
Status:Blacklisted
Listing reason:Gootkit C&C
Listing date:2016-05-27 10:16:54
Malware samples:6
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2016-06-10 17:42:0011354fa0f1c8f23e86f4903097f4aa1cVirustotal results 27/57 (47.37%) Gootkit 81.4.125.138:80
2016-06-03 19:26:27a667bc6bcf7f5903ae96b9e1791b10e3Virustotal results 20/57 (35.09%) Gootkit 81.4.125.138:80
2016-06-02 21:33:13e1b24bdd6dd897a28ac6ac4fb9251204Virustotal results 31/57 (54.39%) Gootkit 81.4.125.138:80
2016-05-28 02:31:364a135fda8c8dcf4752aa1e486607e2e8Virustotal results 24/57 (42.11%) Gootkit 81.4.125.138:80
2016-05-25 23:09:36656a4cb61d27b2c085a86da72a716e2fVirustotal results 27/57 (47.37%) Gootkit 81.4.125.138:80
2016-05-22 04:02:468c4e9399c0ae912be177320188594179Virustotal results 13/57 (22.81%) Gootkit 81.4.125.138:80

# of entries: 6 (max: 100)