SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 4eb569e30034fd389f24af2bbc74740356403854.

Database Entry


SHA1 Fingerprint:4eb569e30034fd389f24af2bbc74740356403854
Certificate Common Name (CN):btr5
Issuer Distinguished Name (DN):btr5
TLS Version:TLS 1.2' NOTBEF
First seen:2021-01-04 09:58:25 UTC
Last seen:2021-01-06 09:00:17 UTC
Status:Blacklisted
Listing reason:Malware C&C
Listing date:2021-01-04 13:18:54
Malware samples:9
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2021-01-06 09:00:17e79f542fb3f5aa6e4400953be24780dbn/aQuasarRAT185.157.162.81:1973
2021-01-06 08:16:542e0819723d50d0b6a2e6ffdb33778e40Virustotal results 8 / 59 (13.56%) SilentBuilder185.157.162.81:1973
2021-01-06 00:35:1018afc77f56cb53d9119cb03b078e4d40n/aQuasarRAT185.157.162.81:1973
2021-01-05 15:33:523ab254f85015e991d56965dc3b8e72a9n/a185.157.162.81:1973
2021-01-05 08:00:36002b54428a3ca3039761dd0cde5056a7Virustotal results 14 / 69 (20.29%) QuasarRAT185.157.162.81:1973
2021-01-05 07:44:04bf9774e5063791aba95abb5b808aea43n/aSilentBuilder185.157.162.81:1973
2021-01-04 13:45:3397046c81c5e314288f28ddd9d71ec0dbVirustotal results 3 / 62 (4.84%) SilentBuilder185.157.162.81:1973
2021-01-04 13:36:13db9417657dd8710cd71894216dae9275n/aQuasarRAT185.157.162.81:1973
2021-01-04 09:58:2598606f78ee642745d9f75c7309ef6292Virustotal results 8 / 62 (12.90%) SilentBuilder185.157.162.81:1973

# of entries: 9 (max: 100)