SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 42c34ec2cf084df07531129e227504685985e766.
Database Entry
| SHA1 Fingerprint: | 42c34ec2cf084df07531129e227504685985e766 |
|---|---|
| Certificate Common Name (CN): | localhost |
| Issuer Distinguished Name (DN): | localhost |
| TLS Version: | TLSv1 |
| First seen: | 2016-07-09 07:03:40 UTC |
| Last seen: | 2016-07-12 09:39:00 UTC |
| Status: | Blacklisted |
| Listing reason: | Gootkit C&C |
| Listing date: | 2016-07-11 08:38:32 |
| Malware samples: | 13 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2016-07-12 09:39:00 | 9a99b2130c1c3c3287b03e6fa6faca06 | n/a | Gootkit | 117.169.20.208:80 |
| 2016-07-12 09:39:00 | 9a99b2130c1c3c3287b03e6fa6faca06 | n/a | Gootkit | 117.169.20.208:80 |
| 2016-07-11 03:45:17 | 03ef6db5396e62cc34b87c81b8fe1bc4 | n/a | Gootkit | 117.169.20.208:80 |
| 2016-07-11 03:45:17 | 03ef6db5396e62cc34b87c81b8fe1bc4 | n/a | Gootkit | 117.169.20.208:80 |
| 2016-07-10 17:41:13 | 5a8a475a35d07ffdc9c8ab3061ff0f72 |  39/67 (58.21%)
| Gootkit | 117.169.20.208:80 |
| 2016-07-10 17:41:13 | 5a8a475a35d07ffdc9c8ab3061ff0f72 | 39/67 (58.21%)
| Gootkit | 117.169.20.208:80 |
| 2016-07-10 15:30:44 | 6a1402b9f090f0f5b14cf00ef0337c90 | n/a | Gootkit | 117.169.20.208:80 |
| 2016-07-10 15:30:44 | 6a1402b9f090f0f5b14cf00ef0337c90 | n/a | Gootkit | 117.169.20.208:80 |
| 2016-07-10 12:13:32 | 3964f2e94b8f9426568396020d15812c | n/a | Gootkit | 117.169.20.208:80 |
| 2016-07-10 12:13:32 | 3964f2e94b8f9426568396020d15812c | n/a | Gootkit | 117.169.20.208:80 |
| 2016-07-10 08:56:18 | 0924042f1ebcc49dccd4f471808ce7ec | 26/53 (49.06%)
| Gootkit | 117.169.20.208:80 |
| 2016-07-10 08:56:18 | 0924042f1ebcc49dccd4f471808ce7ec | 26/53 (49.06%)
| Gootkit | 117.169.20.208:80 |
| 2016-07-10 01:04:32 | 5bf3b90694a542b7203c1a7084976af3 | 22/54 (40.74%)
| Gootkit | 117.169.20.208:80 |
| 2016-07-10 01:04:32 | 5bf3b90694a542b7203c1a7084976af3 | 22/54 (40.74%)
| Gootkit | 117.169.20.208:80 |
| 2016-07-09 21:28:22 | fcdfdaafa3dc063aa97fa918bb2839cc | n/a | Gootkit | 117.169.20.208:80 |
| 2016-07-09 21:28:22 | fcdfdaafa3dc063aa97fa918bb2839cc | n/a | Gootkit | 117.169.20.208:80 |
| 2016-07-09 19:39:33 | 5d7cbe702eb1e175ab9b482983a08983 | 41/55 (74.55%)
| Gootkit | 117.169.20.208:80 |
| 2016-07-09 19:39:33 | 5d7cbe702eb1e175ab9b482983a08983 | 41/55 (74.55%)
| Gootkit | 117.169.20.208:80 |
| 2016-07-09 19:10:27 | d852e8b9636d656f57bd05d438ee1397 | n/a | Gootkit | 117.169.20.208:80 |
| 2016-07-09 19:10:27 | d852e8b9636d656f57bd05d438ee1397 | n/a | Gootkit | 117.169.20.208:80 |
| 2016-07-09 17:47:11 | 068e219fc8cae68f33147aff145257d5 | 10/54 (18.52%)
| Gootkit | 117.169.20.208:80 |
| 2016-07-09 17:47:11 | 068e219fc8cae68f33147aff145257d5 | 10/54 (18.52%)
| Gootkit | 117.169.20.208:80 |
| 2016-07-09 10:28:00 | 09910a6fe666f3d1f0d5f37753f6da71 | n/a | Gootkit | 117.169.20.208:80 |
| 2016-07-09 10:28:00 | 09910a6fe666f3d1f0d5f37753f6da71 | n/a | Gootkit | 117.169.20.208:80 |
| 2016-07-09 07:03:42 | 874f289945a4fa29fb2edb18ea9c39ea | 35/55 (63.64%)
| Gootkit | 117.169.20.208:80 |
| 2016-07-09 07:03:42 | 874f289945a4fa29fb2edb18ea9c39ea | 35/55 (63.64%)
| Gootkit | 117.169.20.208:80 |
# of entries: 26 (max: 100)