SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 4a90b8956d73dc5d1a2fc8633f6bb48ce9239068.

Database Entry

SHA1 Fingerprint:	4a90b8956d73dc5d1a2fc8633f6bb48ce9239068
Certificate Common Name (CN):	AsyncRAT Server
Issuer Distinguished Name (DN):	AsyncRAT Server
TLS Version:	TLSv1' NOTBEFOR
First seen:	2020-03-05 21:16:04 UTC
Last seen:	2021-08-06 04:05:27 UTC
Status:	Blacklisted
Listing reason:	AsyncRAT C&C
Listing date:	2020-04-22 07:26:43
Malware samples:	17
Botnet C&Cs:	10

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2021-08-06 04:05:27	4c0005443d6f0efe50a165339ffa60c0	n/a	AsyncRAT	185.29.11.39:1515
2021-08-06 04:05:27	4c0005443d6f0efe50a165339ffa60c0	n/a	AsyncRAT	185.29.11.39:1515
2021-07-23 06:08:48	d458750e9eb89bd8f97fd365773eba31	14 / 70 (20.00%)	AsyncRAT	185.140.53.192:1515
2021-07-23 06:08:48	d458750e9eb89bd8f97fd365773eba31	14 / 70 (20.00%)	AsyncRAT	185.140.53.192:1515
2021-06-14 04:24:30	55748de879c75f0f274e9506b7c6683b	n/a	AsyncRAT	194.5.98.120:1515
2021-06-14 04:24:30	55748de879c75f0f274e9506b7c6683b	n/a	AsyncRAT	194.5.98.120:1515
2021-06-07 01:38:07	1812a55f7fa03dc1ff84a5bafe9fe811	n/a	AsyncRAT	194.5.98.120:1515
2021-06-07 01:38:07	1812a55f7fa03dc1ff84a5bafe9fe811	n/a	AsyncRAT	194.5.98.120:1515
2021-05-12 09:47:23	8fcc21f4d721e4ed10483f45828d41c0	n/a	AsyncRAT	194.5.98.120:1515
2021-05-12 09:47:23	8fcc21f4d721e4ed10483f45828d41c0	n/a	AsyncRAT	194.5.98.120:1515
2021-05-06 02:49:12	fd6cd4fc819f390b6c8b66820023e406	n/a	AsyncRAT	194.5.98.120:1515
2021-05-06 02:49:12	fd6cd4fc819f390b6c8b66820023e406	n/a	AsyncRAT	194.5.98.120:1515
2020-09-07 06:26:29	d84641d1f0adc11b5b563b796b392513	n/a	NanoCore	185.140.53.68:1515
2020-09-07 06:26:29	d84641d1f0adc11b5b563b796b392513	n/a	NanoCore	185.140.53.68:1515
2020-08-20 06:02:45	15560b0d821aef971ce4765c2917d0dc	n/a	AsyncRAT	79.134.225.85:1515
2020-08-20 06:02:45	15560b0d821aef971ce4765c2917d0dc	n/a	AsyncRAT	79.134.225.85:1515
2020-08-13 08:37:03	13c6cb43eb43dfbc385cd5df8f462795	18 / 69 (26.09%)	AZORult	185.140.53.68:1515
2020-08-13 08:37:03	13c6cb43eb43dfbc385cd5df8f462795	18 / 69 (26.09%)	AZORult	185.140.53.68:1515
2020-07-17 15:12:52	86677577a8796c97d8e0b71b1d4204d1	n/a	AsyncRAT	193.161.193.99:46300
2020-07-17 15:12:52	86677577a8796c97d8e0b71b1d4204d1	n/a	AsyncRAT	193.161.193.99:46300
2020-07-09 01:09:00	338fc5b0f469b1b2cdc2d1664b7b0eb5	n/a	AgentTesla	79.134.225.111:7071
2020-07-09 01:09:00	338fc5b0f469b1b2cdc2d1664b7b0eb5	n/a	AgentTesla	79.134.225.111:7071
2020-07-06 01:07:17	78c4eb63d908b3495053aee51d9d8785	n/a	AsyncRAT	79.134.225.125:1515
2020-07-06 01:07:17	78c4eb63d908b3495053aee51d9d8785	n/a	AsyncRAT	79.134.225.125:1515
2020-06-30 07:06:09	7c904990e9592b2b8c460ea929a39b69	n/a	AsyncRAT	79.134.225.125:1515
2020-06-30 07:06:09	7c904990e9592b2b8c460ea929a39b69	n/a	AsyncRAT	79.134.225.125:1515
2020-06-23 21:58:34	15a86b3518e8030793f98709e71e716d	17 / 74 (22.97%)	AsyncRAT	79.134.225.125:1515
2020-06-23 21:58:34	15a86b3518e8030793f98709e71e716d	17 / 74 (22.97%)	AsyncRAT	79.134.225.125:1515
2020-04-29 08:01:42	027261d0da0a337c1caf3fe35bf98ea5	n/a	AsyncRAT	185.244.29.175:7071
2020-04-29 08:01:42	027261d0da0a337c1caf3fe35bf98ea5	n/a	AsyncRAT	185.244.29.175:7071
2020-04-22 01:26:41	23fb12e2cb336c690c425f96249ac860	n/a	NetWire	185.244.29.175:7071
2020-04-22 01:26:41	23fb12e2cb336c690c425f96249ac860	n/a	NetWire	185.244.29.175:7071
2020-03-05 21:16:04	5e01bc36aab882405b25f4695a91c0fe	29 / 73 (39.73%)	AgentTesla	185.140.53.60:7071
2020-03-05 21:16:04	5e01bc36aab882405b25f4695a91c0fe	29 / 73 (39.73%)	AgentTesla	185.140.53.60:7071

# of entries: 34 (max: 100)