SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 501e280c05ae94fe21d7b74db60860b7636a9306.
Database Entry
| SHA1 Fingerprint: | 501e280c05ae94fe21d7b74db60860b7636a9306 |
|---|---|
| Certificate Common Name (CN): | es-megadom.com |
| Issuer Distinguished Name (DN): | R3 |
| TLS Version: | TLS 1.2 |
| First seen: | 2023-03-21 05:58:09 UTC |
| Last seen: | 2023-04-20 15:53:48 UTC |
| Status: | Blacklisted |
| Listing reason: | Nemesis C&C |
| Listing date: | 2023-04-20 16:02:50 |
| Malware samples: | 3 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2023-04-20 15:53:48 | cdbe0feb82b1caf164c7da42cb9a20be |  23 / 70 (32.86%)
| Nemesis | 23.227.193.141:443 |
| 2023-04-19 20:42:03 | d59df219b2d328e85deb4c6c3e3af66c | 47 / 70 (67.14%)
| Nemesis | 23.227.193.141:443 |
| 2023-03-21 05:58:09 | 273743dae912e34afe847ff81432b61b | 2 / 69 (2.90%)
| Meterpreter | 23.227.193.141:443 |
# of entries: 3 (max: 100)