SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 50def7da0eb236fcb1d55eb802039ddd95049da9.
Database Entry
| SHA1 Fingerprint: | 50def7da0eb236fcb1d55eb802039ddd95049da9 |
|---|---|
| Certificate Common Name (CN): | hro.hanel.work |
| Issuer Distinguished Name (DN): | E7 |
| TLS Version: | TLS 1.2 |
| First seen: | 2025-12-11 08:00:30 UTC |
| Last seen: | 2025-12-11 13:36:46 UTC |
| Status: | Blacklisted |
| Listing reason: | Vidar C&C |
| Listing date: | 2025-12-11 13:34:11 |
| Malware samples: | 6 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2025-12-11 13:36:46 | 123ff5de77863f8e20401a4162bbe70b | n/a | 157.180.22.193:443 | |
| 2025-12-11 13:17:10 | 109451d265aae647565d10eb9e591569 | n/a | 157.180.22.193:443 | |
| 2025-12-11 12:55:21 | 9936464099cf90ca225a3ac4ab94db83 | n/a | 157.180.22.193:443 | |
| 2025-12-11 12:14:46 | 48e104b95f6526fbdf9d1f28b32ac036 | n/a | 157.180.22.193:443 | |
| 2025-12-11 11:22:25 | 0e562ea0325f75bdc8799f3a1e55be7a | n/a | 157.180.22.193:443 | |
| 2025-12-11 08:00:30 | 3ba6245d3628d5160d7b59af0b165388 | n/a | 157.180.22.193:443 |
# of entries: 6 (max: 100)