SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 4c8d70ec7efb4b3806ef1e8649dc9f4738a27c98.

Database Entry

SHA1 Fingerprint:4c8d70ec7efb4b3806ef1e8649dc9f4738a27c98
Certificate Common Name (CN):main4/L=Some-city/O=main4/ST=Some-state/OU=unit
Issuer Distinguished Name (DN):root
TLS Version:TLS 1.2
First seen:2018-03-09 13:08:18 UTC
Last seen:2018-03-27 10:22:54 UTC
Status:Blacklisted
Listing reason:Corebot C&C
Listing date:2018-03-19 11:02:40
Malware samples:5
Botnet C&Cs:1

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2018-03-27 10:22:54f204b00dcda0bc1d197876b29885dd7dVirustotal results 14/67 (20.90%) Corebot 37.220.31.11:443
2018-03-27 10:22:54f204b00dcda0bc1d197876b29885dd7dVirustotal results 14/67 (20.90%) Corebot 37.220.31.11:443
2018-03-16 22:59:5926d507c2d46165048054e706884f4399Virustotal results 15/67 (22.39%) Corebot 37.220.31.11:443
2018-03-16 22:59:5926d507c2d46165048054e706884f4399Virustotal results 15/67 (22.39%) Corebot 37.220.31.11:443
2018-03-16 09:02:33311611b41dda91d3a080479effd11fcaVirustotal results 12/67 (17.91%) Corebot 37.220.31.11:443
2018-03-16 09:02:33311611b41dda91d3a080479effd11fcaVirustotal results 12/67 (17.91%) Corebot 37.220.31.11:443
2018-03-15 22:25:42137bad220067118fda5e91ced1020de1Virustotal results 11/69 (15.94%) Corebot 37.220.31.11:443
2018-03-15 22:25:42137bad220067118fda5e91ced1020de1Virustotal results 11/69 (15.94%) Corebot 37.220.31.11:443
2018-03-09 13:08:19702a89be5b566b6e64949166d567c4e1Virustotal results 39/68 (57.35%) Corebot 37.220.31.11:443
2018-03-09 13:08:19702a89be5b566b6e64949166d567c4e1Virustotal results 39/68 (57.35%) Corebot 37.220.31.11:443

# of entries: 10 (max: 100)