SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 5336381a246b848e4dab1f248fc75cd4b5ce71f3.
Database Entry
| SHA1 Fingerprint: | 5336381a246b848e4dab1f248fc75cd4b5ce71f3 |
|---|---|
| Certificate Common Name (CN): | pornhub.xxx |
| Issuer Distinguished Name (DN): | pornhub.xxx |
| TLS Version: | SSLv3 |
| First seen: | 2015-05-22 22:42:02 UTC |
| Last seen: | 2015-05-23 07:54:02 UTC |
| Status: | Blacklisted |
| Listing reason: | Dridex C&C |
| Listing date: | 2015-06-07 18:10:30 |
| Malware samples: | 4 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2015-05-23 07:54:02 | 4d877072fd81b5b18c2c585f5a58a56e |  1/57 (1.75%)
| Dridex | 178.250.247.28:8443 |
| 2015-05-23 07:54:02 | 4d877072fd81b5b18c2c585f5a58a56e | 1/57 (1.75%)
| Dridex | 178.250.247.28:8443 |
| 2015-05-23 07:01:40 | 9c6398de0101e6b3811cf35de6fc7b79 | 17/57 (29.82%)
| 178.250.247.28:8443 | |
| 2015-05-23 07:01:40 | 9c6398de0101e6b3811cf35de6fc7b79 | 17/57 (29.82%)
| 178.250.247.28:8443 | |
| 2015-05-23 01:13:31 | abc69e0d444536e41016754cfee3ff90 | 24/57 (42.11%)
| Andromeda | 178.250.247.28:8443 |
| 2015-05-23 01:13:31 | abc69e0d444536e41016754cfee3ff90 | 24/57 (42.11%)
| Andromeda | 178.250.247.28:8443 |
| 2015-05-22 22:42:02 | 600e5df303765ff73dccff1c3e37c03a | 18/56 (32.14%)
| Andromeda | 178.250.247.28:8443 |
| 2015-05-22 22:42:02 | 600e5df303765ff73dccff1c3e37c03a | 18/56 (32.14%)
| Andromeda | 178.250.247.28:8443 |
# of entries: 8 (max: 100)