SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 4a90b8956d73dc5d1a2fc8633f6bb48ce9239068.

Database Entry


SHA1 Fingerprint:4a90b8956d73dc5d1a2fc8633f6bb48ce9239068
Certificate Common Name (CN):AsyncRAT Server
Issuer Distinguished Name (DN):AsyncRAT Server
TLS Version:TLSv1' NOTBEFOR
First seen:2020-03-05 21:16:04 UTC
Last seen:2020-09-07 06:26:29 UTC
Status:Blacklisted
Listing reason:AsyncRAT C&C
Listing date:2020-04-22 07:26:43
Malware samples:11
Botnet C&Cs:7

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2020-09-07 06:26:29d84641d1f0adc11b5b563b796b392513n/aNanoCore185.140.53.68:1515
2020-08-20 06:02:4515560b0d821aef971ce4765c2917d0dcn/aAsyncRAT79.134.225.85:1515
2020-08-13 08:37:0313c6cb43eb43dfbc385cd5df8f462795Virustotal results 18 / 69 (26.09%) AZORult 185.140.53.68:1515
2020-07-17 15:12:5286677577a8796c97d8e0b71b1d4204d1n/aAsyncRAT193.161.193.99:46300
2020-07-09 01:09:00338fc5b0f469b1b2cdc2d1664b7b0eb5n/aAgentTesla79.134.225.111:7071
2020-07-06 01:07:1778c4eb63d908b3495053aee51d9d8785n/aAsyncRAT79.134.225.125:1515
2020-06-30 07:06:097c904990e9592b2b8c460ea929a39b69n/aAsyncRAT79.134.225.125:1515
2020-06-23 21:58:3415a86b3518e8030793f98709e71e716dVirustotal results 17 / 74 (22.97%) AsyncRAT79.134.225.125:1515
2020-04-29 08:01:42027261d0da0a337c1caf3fe35bf98ea5n/aAsyncRAT185.244.29.175:7071
2020-04-22 01:26:4123fb12e2cb336c690c425f96249ac860n/aNetWire185.244.29.175:7071
2020-03-05 21:16:045e01bc36aab882405b25f4695a91c0feVirustotal results 29 / 73 (39.73%) AgentTesla185.140.53.60:7071

# of entries: 11 (max: 100)