SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 447f91676e92665aa04b08cc1229ca65d0544744.

Database Entry

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2016-05-25 18:06:42	26168a0f545b4e1a95ef52925d9eea2f	10/56 (17.86%)	Gootkit	94.76.233.152:80
2016-05-25 18:06:42	26168a0f545b4e1a95ef52925d9eea2f	10/56 (17.86%)	Gootkit	94.76.233.152:80
2016-05-24 03:34:29	94a3ada524b935e0dd8994ae63b191b1	28/57 (49.12%)	Shylock	94.76.233.152:80
2016-05-24 03:34:29	94a3ada524b935e0dd8994ae63b191b1	28/57 (49.12%)	Shylock	94.76.233.152:80
2016-05-23 00:56:58	e1521681f01065121c0e97baad220104	30/57 (52.63%)	Shylock	94.76.233.152:80
2016-05-23 00:56:58	e1521681f01065121c0e97baad220104	30/57 (52.63%)	Shylock	94.76.233.152:80
2016-05-23 00:17:06	31f04f18fe4ce55306c296ab7c731713	33/57 (57.89%)	Gootkit	94.76.233.152:80
2016-05-23 00:17:06	31f04f18fe4ce55306c296ab7c731713	33/57 (57.89%)	Gootkit	94.76.233.152:80
2016-05-22 04:51:41	ad15843c84c852be1eee89ee280cb777	32/57 (56.14%)	Gootkit	94.76.233.152:80
2016-05-22 04:51:41	ad15843c84c852be1eee89ee280cb777	32/57 (56.14%)	Gootkit	94.76.233.152:80
2016-05-19 17:42:25	19bf632c08732444510ba556d254cfad	25/57 (43.86%)	Gootkit	94.76.233.152:80
2016-05-19 17:42:25	19bf632c08732444510ba556d254cfad	25/57 (43.86%)	Gootkit	94.76.233.152:80
2016-05-19 17:39:59	7b40713431336a60ed77e2d9ce88f6f4	3/57 (5.26%)	Gootkit	94.76.233.152:80
2016-05-19 17:39:59	7b40713431336a60ed77e2d9ce88f6f4	3/57 (5.26%)	Gootkit	94.76.233.152:80

# of entries: 14 (max: 100)