SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 42ea2a4de65640100d7223e9752d0783cf56ad58.
Database Entry
| SHA1 Fingerprint: | 42ea2a4de65640100d7223e9752d0783cf56ad58 |
|---|---|
| Certificate Common Name (CN): | localhost |
| Issuer Distinguished Name (DN): | localhost |
| TLS Version: | TLSv1 |
| First seen: | 2016-07-30 16:53:17 UTC |
| Last seen: | 2016-08-04 09:09:23 UTC |
| Status: | Blacklisted |
| Listing reason: | Gootkit C&C |
| Listing date: | 2016-08-01 08:15:31 |
| Malware samples: | 15 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2016-08-04 09:09:23 | 2e30d634e34f8d0bedec52e102c2522c |  39/63 (61.90%)
| Gootkit | 217.125.140.215:80 |
| 2016-08-04 09:09:23 | 2e30d634e34f8d0bedec52e102c2522c | 39/63 (61.90%)
| Gootkit | 217.125.140.215:80 |
| 2016-08-04 02:52:24 | ab45002b32f16f8c122371ebbc1edfc6 | n/a | Gootkit | 217.125.140.215:80 |
| 2016-08-04 02:52:24 | ab45002b32f16f8c122371ebbc1edfc6 | n/a | Gootkit | 217.125.140.215:80 |
| 2016-08-03 20:24:34 | afb55425d9e557ef4a784e835a5c0372 | 40/57 (70.18%)
| Gootkit | 217.125.140.215:80 |
| 2016-08-03 20:24:34 | afb55425d9e557ef4a784e835a5c0372 | 40/57 (70.18%)
| Gootkit | 217.125.140.215:80 |
| 2016-08-03 20:06:01 | 1ff350a2a12d2e5e50dc30961afaa441 | n/a | Gootkit | 217.125.140.215:80 |
| 2016-08-03 20:06:01 | 1ff350a2a12d2e5e50dc30961afaa441 | n/a | Gootkit | 217.125.140.215:80 |
| 2016-08-02 21:38:02 | 0038f4d24fdad1047b5b7589377c7348 | n/a | Gootkit | 217.125.140.215:80 |
| 2016-08-02 21:38:02 | 0038f4d24fdad1047b5b7589377c7348 | n/a | Gootkit | 217.125.140.215:80 |
| 2016-08-02 15:13:38 | db8028b37de43586a0bec084cb0a10d4 | 41/70 (58.57%)
| Gootkit | 217.125.140.215:80 |
| 2016-08-02 15:13:38 | db8028b37de43586a0bec084cb0a10d4 | 41/70 (58.57%)
| Gootkit | 217.125.140.215:80 |
| 2016-08-02 12:31:56 | 2103b5af6cb464082e540d54426688e0 | 29/55 (52.73%)
| Gootkit | 217.125.140.215:80 |
| 2016-08-02 12:31:56 | 2103b5af6cb464082e540d54426688e0 | 29/55 (52.73%)
| Gootkit | 217.125.140.215:80 |
| 2016-08-01 12:14:42 | 854e8cbe1ed48d8dd75392217fb601e8 | 29/55 (52.73%)
| Gootkit | 217.125.140.215:80 |
| 2016-08-01 12:14:42 | 854e8cbe1ed48d8dd75392217fb601e8 | 29/55 (52.73%)
| Gootkit | 217.125.140.215:80 |
| 2016-07-31 22:27:22 | 787378aa904ffe185de0e70daf5d392b | n/a | Gootkit | 217.125.140.215:80 |
| 2016-07-31 22:27:22 | 787378aa904ffe185de0e70daf5d392b | n/a | Gootkit | 217.125.140.215:80 |
| 2016-07-31 16:11:13 | 0ec0962560a3e40c01b4120bafd73533 | n/a | Gootkit | 217.125.140.215:80 |
| 2016-07-31 16:11:13 | 0ec0962560a3e40c01b4120bafd73533 | n/a | Gootkit | 217.125.140.215:80 |
| 2016-07-31 13:52:48 | 8f1a2523a299a33ed0b380b49d48d128 | n/a | Gootkit | 217.125.140.215:80 |
| 2016-07-31 13:52:48 | 8f1a2523a299a33ed0b380b49d48d128 | n/a | Gootkit | 217.125.140.215:80 |
| 2016-07-31 11:53:10 | 7ef83fc30b8b923c8b4fb6144d5e9a2e | 35/62 (56.45%)
| Gootkit | 217.125.140.215:80 |
| 2016-07-31 11:53:10 | 7ef83fc30b8b923c8b4fb6144d5e9a2e | 35/62 (56.45%)
| Gootkit | 217.125.140.215:80 |
| 2016-07-30 23:18:11 | b3923a495137d23b5d0b61bc1c1505d3 | n/a | Gootkit | 217.125.140.215:80 |
| 2016-07-30 23:18:11 | b3923a495137d23b5d0b61bc1c1505d3 | n/a | Gootkit | 217.125.140.215:80 |
| 2016-07-30 19:08:08 | 4415342003f722759e8e656fdec34c45 | 41/68 (60.29%)
| Gootkit | 217.125.140.215:80 |
| 2016-07-30 19:08:08 | 4415342003f722759e8e656fdec34c45 | 41/68 (60.29%)
| Gootkit | 217.125.140.215:80 |
| 2016-07-30 16:53:17 | 4d499db32b75225b7543786ba0fc3b39 | n/a | Gootkit | 217.125.140.215:80 |
| 2016-07-30 16:53:17 | 4d499db32b75225b7543786ba0fc3b39 | n/a | Gootkit | 217.125.140.215:80 |
# of entries: 30 (max: 100)