SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 408696c2824d4c8ab6f6a9ca3680a190c5761630.
Database Entry
| SHA1 Fingerprint: | 408696c2824d4c8ab6f6a9ca3680a190c5761630 |
|---|---|
| Certificate Common Name (CN): | z.nnnaajjjgc.com |
| Issuer Distinguished Name (DN): | R3 |
| TLS Version: | TLS 1.2 |
| First seen: | 2023-08-28 04:52:06 UTC |
| Last seen: | 2023-09-01 12:56:57 UTC |
| Status: | Blacklisted |
| Listing reason: | Fabookie C&C |
| Listing date: | 2023-09-01 20:21:55 |
| Malware samples: | 39 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2023-09-01 12:56:57 | 20f4484c3c45ab6b7ea688926eac9a41 |  14 / 69 (20.29%)
| Fabookie | 156.236.72.121:443 |
| 2023-09-01 11:32:29 | ff0ca5d8a61da8a0b725bcd6e36412db | n/a | Fabookie | 156.236.72.121:443 |
| 2023-09-01 06:37:38 | e8e7a7c1a9b0aba35338c2de4d4bd0af | 19 / 68 (27.94%)
| Amadey | 156.236.72.121:443 |
| 2023-08-31 23:45:08 | 3660a4c0914b4602ab1592c2eb91af43 | 46 / 71 (64.79%)
| Fabookie | 156.236.72.121:443 |
| 2023-08-31 19:33:22 | d6f5e46daca593809ea5e0fb7485b2d3 | 26 / 70 (37.14%)
| Smoke Loader | 156.236.72.121:443 |
| 2023-08-31 15:55:57 | aa0c1c58e07ecf3a279cad22fddf5b3b | 28 / 67 (41.79%)
| Smoke Loader | 156.236.72.121:443 |
| 2023-08-31 10:51:53 | 734d71c599b8c6b9e411f48e4847ccd0 | 25 / 64 (39.06%)
| Smoke Loader | 156.236.72.121:443 |
| 2023-08-31 09:39:54 | 2e0f2b9975087267a71f4c4f0a93d11c | n/a | TeamBot | 156.236.72.121:443 |
| 2023-08-31 09:31:47 | 252403625ebdffcfdbf2abdff6c5a5c4 | 11 / 65 (16.92%)
| Fabookie | 156.236.72.121:443 |
| 2023-08-31 08:46:26 | eea3017f64c4be13d0d245aa11810830 | 12 / 69 (17.39%)
| Fabookie | 156.236.72.121:443 |
| 2023-08-31 08:42:59 | 60f1e194d46d72ad34d14a7bec433fed | n/a | Fabookie | 156.236.72.121:443 |
| 2023-08-31 05:44:51 | a1aa02a2f80828389142a3961da230c5 | 32 / 69 (46.38%)
| Smoke Loader | 156.236.72.121:443 |
| 2023-08-31 02:44:38 | 1efdd8ff2bea02d6ef2fb16b2a3dc7fe | n/a | Fabookie | 156.236.72.121:443 |
| 2023-08-31 00:17:00 | 7d2ee8005860e2ab30712e5c7eb8a67a | 27 / 69 (39.13%)
| TeamBot | 156.236.72.121:443 |
| 2023-08-30 23:14:51 | a011ea33be74a32f36d571a1334a2cb0 | 29 / 61 (47.54%)
| Amadey | 156.236.72.121:443 |
| 2023-08-30 23:09:25 | 345bc2a5078b852d01662de3d1dbc104 | 29 / 67 (43.28%)
| Amadey | 156.236.72.121:443 |
| 2023-08-30 09:09:53 | 5fe739d874ed8bfb3ff23ed8531bf28a | 42 / 66 (63.64%)
| Spambot.Kelihos | 156.236.72.121:443 |
| 2023-08-30 06:42:34 | 75267a8c5643e99d72f59de6a828d043 | 28 / 65 (43.08%)
| RedLineStealer | 156.236.72.121:443 |
| 2023-08-30 05:56:08 | 12043e40f8e5e238cbe5a2099121db90 | 14 / 71 (19.72%)
| Fabookie | 156.236.72.121:443 |
| 2023-08-30 04:28:29 | ca154c149f549ca82e58c073a93de68e | 14 / 71 (19.72%)
| Fabookie | 156.236.72.121:443 |
| 2023-08-30 04:13:26 | 7433b89533975644206ecef89d1f69c2 | 13 / 70 (18.57%)
| Fabookie | 156.236.72.121:443 |
| 2023-08-30 02:37:50 | 4a28d13863dfb5c7e25a5e47395fc9b1 | 27 / 65 (41.54%)
| Amadey | 156.236.72.121:443 |
| 2023-08-30 00:48:56 | 7b9075065a3a53cf9916c821faaa8a4c | 27 / 68 (39.71%)
| Smoke Loader | 156.236.72.121:443 |
| 2023-08-30 00:48:04 | 7bd980753378f1e9edb3761eb0e18237 | 29 / 65 (44.62%)
| RedLineStealer | 156.236.72.121:443 |
| 2023-08-29 12:08:28 | 46f9fc4b0a31d6c28537fa0fd57a9b98 | 30 / 70 (42.86%)
| TeamBot | 156.236.72.121:443 |
| 2023-08-29 09:59:32 | 5b25cca84b1ef7517cba6354dc7e459f | 30 / 67 (44.78%)
| Smoke Loader | 156.236.72.121:443 |
| 2023-08-29 09:23:23 | 1c8e33a64a50acf8c025248a8f53f575 | 29 / 67 (43.28%)
| RedLineStealer | 156.236.72.121:443 |
| 2023-08-29 06:07:02 | 52ecae7182fd138f3e47c4e8896127e6 | 34 / 66 (51.52%)
| Smoke Loader | 156.236.72.121:443 |
| 2023-08-29 04:18:45 | 7ddab7b1e5f993ddb31a6cd09f4ef90e | 24 / 64 (37.50%)
| Amadey | 156.236.72.121:443 |
| 2023-08-29 02:34:12 | 55d92a5e50ba01c2c43f04a0d592b9e0 | 28 / 68 (41.18%)
| Amadey | 156.236.72.121:443 |
| 2023-08-29 00:38:51 | 1171201d85dd7b00db54a2c492faa42e | 43 / 68 (63.24%)
| Amadey | 156.236.72.121:443 |
| 2023-08-28 23:18:26 | bc4113cf6095048a2d3450fd089cfdcd | 28 / 66 (42.42%)
| Amadey | 156.236.72.121:443 |
| 2023-08-28 22:37:28 | 98c8431b6fbab1be3c489f6e6d2c5ae1 | 28 / 71 (39.44%)
| TeamBot | 156.236.72.121:443 |
| 2023-08-28 15:11:47 | 29c7b693138b81891ce5983104d66ede | 29 / 67 (43.28%)
| Stealc | 156.236.72.121:443 |
| 2023-08-28 09:58:40 | ceac81c4c35aa72a300a7772f16f301d | 29 / 67 (43.28%)
| Smoke Loader | 156.236.72.121:443 |
| 2023-08-28 09:37:07 | b4d0defb4ffd140a7b31fe62de3880cc | 12 / 67 (17.91%)
| Fabookie | 156.236.72.121:443 |
| 2023-08-28 09:06:52 | 91b8d2a117c7a44f04d8f8d5aaa0182c | n/a | Fabookie | 156.236.72.121:443 |
| 2023-08-28 07:48:42 | 064ebd4eb32c0051d110a08102cb6fbf | n/a | Amadey | 156.236.72.121:443 |
| 2023-08-28 04:52:06 | 373e71b638be7798520c245aa7efc261 | 31 / 69 (44.93%)
| Amadey | 156.236.72.121:443 |
# of entries: 39 (max: 100)