SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 3b8b88139678299948bf1ccc9c0fbb2b4cb5e861.
Database Entry
| SHA1 Fingerprint: | 3b8b88139678299948bf1ccc9c0fbb2b4cb5e861 |
|---|---|
| Certificate Common Name (CN): | 138.199.150.1 |
| Issuer Distinguished Name (DN): | 138.199.150.1 |
| TLS Version: | TLS 1.2 |
| First seen: | 2026-05-28 21:12:20 UTC |
| Last seen: | 2026-05-31 02:56:32 UTC |
| Status: | Blacklisted |
| Listing reason: | Vidar C&C |
| Listing date: | 2026-05-31 07:29:53 |
| Malware samples: | 6 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2026-05-31 02:56:32 | 731728f4d572bbf2b59be9ce55c643b3 | n/a | 138.199.150.1:443 | |
| 2026-05-30 20:50:30 | 0bf24c96b0a66facb5ca534abccaea10 | n/a | 138.199.150.1:443 | |
| 2026-05-30 09:29:28 | 59668b51292a8b420b26319302edf72a | n/a | 138.199.150.1:443 | |
| 2026-05-29 23:16:08 | d1c3b1ec4ebf5cf9b02237a8f8959c40 | n/a | 138.199.150.1:443 | |
| 2026-05-29 09:40:59 | 780e7da647caea6e73fc0536dbc063c9 | n/a | 138.199.150.1:443 | |
| 2026-05-28 21:12:20 | 170d6056a834dcfedecfe26f94581544 | n/a | 138.199.150.1:443 |
# of entries: 6 (max: 100)