SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 4325212f60da8090771b27403c7f49e70bab53aa.

Database Entry


SHA1 Fingerprint:4325212f60da8090771b27403c7f49e70bab53aa
Certificate Common Name (CN):example.com
Issuer Distinguished Name (DN):example.com
TLS Version:SSLv3
First seen:2015-05-12 16:10:28 UTC
Last seen:2015-05-15 15:02:19 UTC
Status:Blacklisted
Listing reason:Dridex C&C
Listing date:2015-05-13 05:31:02
Malware samples:5
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2015-05-15 15:02:199b42f272bff301749e59b12327bdf796Virustotal results 36/56 (64.29%) Dridex 37.143.15.116:4433
2015-05-14 04:39:3203bf828572e9b226481916e24dfbcf8bVirustotal results 31/54 (57.41%) Dridex 37.143.15.116:4433
2015-05-13 13:37:55db06abf96b2588ba3503e889374c11e2Virustotal results 8/56 (14.29%) 37.143.15.116:4433
2015-05-13 12:07:2463ab90d7d2ba37ef17bb2d8634a319deVirustotal results 27/55 (49.09%) 37.143.15.116:4433
2015-05-12 16:10:283fcc933847779784ece1c1f8ca0cb8e4Virustotal results 6/56 (10.71%) 37.143.15.116:4433

# of entries: 5 (max: 100)