SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 4f7d628b38ca922d6bb190220b885cbe1984e30e.
Database Entry
| SHA1 Fingerprint: | 4f7d628b38ca922d6bb190220b885cbe1984e30e |
|---|---|
| Certificate Common Name (CN): | Quasar Server CA |
| Issuer Distinguished Name (DN): | Quasar Server CA |
| TLS Version: | TLS 1.2 |
| First seen: | 2022-10-02 17:54:58 UTC |
| Last seen: | 2022-10-02 18:33:20 UTC |
| Status: | Blacklisted |
| Listing reason: | QuasarRAT C&C |
| Listing date: | 2022-10-02 18:28:52 |
| Malware samples: | 3 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2022-10-02 18:33:20 | 055a72c67c6ca93ad472397f536963f6 | n/a | N-W0rm | 80.76.51.137:4782 |
| 2022-10-02 18:03:03 | a476b9f8156dec68502ecaf34ac716c3 | n/a | RecordBreaker | 80.76.51.137:4782 |
| 2022-10-02 17:54:58 | 235920237c07cb8decfa53e9c92d72e6 | n/a | RedLineStealer | 80.76.51.137:4782 |
# of entries: 3 (max: 100)