SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 4ba1e8855b47ce1619e2baef19dbce1df5b3eb2c.

Database Entry


SHA1 Fingerprint:4ba1e8855b47ce1619e2baef19dbce1df5b3eb2c
Certificate Common Name (CN):C=US, ST=Denial, L=Springfield, O=Dis
Issuer Distinguished Name (DN):C=US, ST=Denial, L=Springfield, O=Dis
TLS Version:TLS 1.2
First seen:2016-10-10 21:23:20 UTC
Last seen:2016-10-14 09:18:40 UTC
Status:Blacklisted
Listing reason:TorrentLocker C&C
Listing date:2016-10-14 09:45:22
Malware samples:9
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2016-10-14 09:18:4067358de18665d15e3397b3f68fd51906Virustotal results 38/56 (67.86%) TorrentLocker 185.40.152.22:443
2016-10-12 10:45:047488cf5f07aaed4c33b7a1c46f1e6415n/a185.40.152.22:443
2016-10-11 20:08:22b479fdfc1c8bd22edbd226d03daed08an/a185.40.152.22:443
2016-10-11 20:02:469116c140856b406c925e522fd44d7804n/a185.40.152.22:443
2016-10-11 09:43:0891abe941a20de0521731ec6767ed166fn/a185.40.152.22:443
2016-10-11 07:52:5685c1fc7a4db269ecb7752c1091f657dfn/a185.40.152.22:443
2016-10-10 23:23:268cee94275200d3aab771eda7fca584f6n/a185.40.152.22:443
2016-10-10 22:04:3495ea1cecae1dbb276ef40dd7060df032n/a185.40.152.22:443
2016-10-10 21:23:20b0711cf043c00488c726d28088a5c4f1n/a185.40.152.22:443

# of entries: 9 (max: 100)