SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 562e7f2f7b3d5913a6ca64f25854d131e56c4ff7.
Database Entry
| SHA1 Fingerprint: | 562e7f2f7b3d5913a6ca64f25854d131e56c4ff7 |
|---|---|
| Certificate Common Name (CN): | localhost.localdomain |
| Issuer Distinguished Name (DN): | localhost.localdomain |
| TLS Version: | TLSv1 |
| First seen: | 2016-12-11 15:35:27 UTC |
| Last seen: | 2020-06-15 06:38:15 UTC |
| Status: | Blacklisted |
| Listing reason: | Quakbot C&C |
| Listing date: | 2017-02-27 13:10:32 |
| Malware samples: | 73 |
| Botnet C&Cs: | 73 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2020-06-15 06:38:15 | 506b8871dde21d759484ec9508c4aba9 | n/a | Quakbot | 117.199.6.72:443 |
| 2020-06-15 06:38:15 | 506b8871dde21d759484ec9508c4aba9 | n/a | Quakbot | 117.199.6.72:443 |
| 2019-11-15 07:06:56 | 4a74d0fb5706442cfe8f23def5a18bdb |  41/57 (71.93%)
| Kovter | 190.1.237.120:443 |
| 2019-11-15 07:06:56 | 4a74d0fb5706442cfe8f23def5a18bdb | 41/57 (71.93%)
| Kovter | 190.1.237.120:443 |
| 2019-09-20 04:27:59 | 261c267e2a0bd45e8cdfe50508bc30db | 46 / 68 (67.65%)
| Kovter | 190.1.245.79:443 |
| 2019-09-20 04:27:59 | 261c267e2a0bd45e8cdfe50508bc30db | 46 / 68 (67.65%)
| Kovter | 190.1.245.79:443 |
| 2018-01-04 19:34:54 | b22f8ed383dad8ec15a53ef9e9fe3a83 | 31/68 (45.59%)
| Kovter | 131.108.170.231:443 |
| 2018-01-04 19:34:54 | b22f8ed383dad8ec15a53ef9e9fe3a83 | 31/68 (45.59%)
| Kovter | 131.108.170.231:443 |
| 2017-09-19 04:35:14 | a53e6ca80419fbe5ecc57c1eeb918106 | 51/65 (78.46%)
| Kovter | 190.1.231.231:443 |
| 2017-09-19 04:35:14 | a53e6ca80419fbe5ecc57c1eeb918106 | 51/65 (78.46%)
| Kovter | 190.1.231.231:443 |
| 2017-07-11 14:16:23 | c9546e0754e694e1d5e2ec497546a1ab | 14/64 (21.88%)
| Kovter | 86.99.122.180:443 |
| 2017-07-11 14:16:23 | c9546e0754e694e1d5e2ec497546a1ab | 14/64 (21.88%)
| Kovter | 86.99.122.180:443 |
| 2017-07-08 22:56:30 | 27973aae04345e00acc6835e0925e364 | 20/64 (31.25%)
| Kovter | 186.114.237.54:443 |
| 2017-07-08 22:56:30 | 27973aae04345e00acc6835e0925e364 | 20/64 (31.25%)
| Kovter | 186.114.237.54:443 |
| 2017-06-26 12:16:05 | 92a5a6158474442f59c891992f92eb6e | n/a | Kovter | 179.33.115.200:443 |
| 2017-06-26 12:16:05 | 92a5a6158474442f59c891992f92eb6e | n/a | Kovter | 179.33.115.200:443 |
| 2017-06-26 05:40:37 | f3d98a87e69f79f204a2b4ddc1ae6215 | n/a | Kovter | 117.200.11.11:443 |
| 2017-06-26 05:40:37 | f3d98a87e69f79f204a2b4ddc1ae6215 | n/a | Kovter | 117.200.11.11:443 |
| 2017-06-26 03:22:06 | 71641dc4268c2cac060eef70d6cda1a6 | n/a | Kovter | 161.10.39.218:443 |
| 2017-06-26 03:22:06 | 71641dc4268c2cac060eef70d6cda1a6 | n/a | Kovter | 161.10.39.218:443 |
| 2017-06-25 09:23:40 | 4da9ec2ea126bfc0248a11261311ca11 | n/a | Kovter | 200.28.113.178:443 |
| 2017-06-25 09:23:40 | 4da9ec2ea126bfc0248a11261311ca11 | n/a | Kovter | 200.28.113.178:443 |
| 2017-06-17 05:43:56 | 059bbc232262fb517eac27961f7fa57b | n/a | Kovter | 161.10.192.68:443 |
| 2017-06-17 05:43:56 | 059bbc232262fb517eac27961f7fa57b | n/a | Kovter | 161.10.192.68:443 |
| 2017-06-12 23:09:39 | 7df9302d4adffb5d004b2c9153c01841 | 41/61 (67.21%)
| Kovter | 31.215.129.180:443 |
| 2017-06-12 23:09:39 | 7df9302d4adffb5d004b2c9153c01841 | 41/61 (67.21%)
| Kovter | 31.215.129.180:443 |
| 2017-06-03 19:10:50 | 62c5e7138b56ae18e7c3168cc75a4265 | n/a | Kovter | 59.98.97.170:443 |
| 2017-06-03 19:10:50 | 62c5e7138b56ae18e7c3168cc75a4265 | n/a | Kovter | 59.98.97.170:443 |
| 2017-05-28 14:14:32 | fe06c96613dde19573bbbf86477a373c | 40/62 (64.52%)
| Kovter | 181.234.125.7:443 |
| 2017-05-28 14:14:32 | fe06c96613dde19573bbbf86477a373c | 40/62 (64.52%)
| Kovter | 181.234.125.7:443 |
| 2017-05-23 11:27:55 | 7027cb4a812607815a534b3d02463b59 | 39/62 (62.90%)
| Kovter | 181.234.131.143:443 |
| 2017-05-23 11:27:55 | 7027cb4a812607815a534b3d02463b59 | 39/62 (62.90%)
| Kovter | 181.234.131.143:443 |
| 2017-05-19 21:53:38 | 2e136a4e258d2deedbaca0112b79e613 | n/a | Kovter | 181.234.110.59:443 |
| 2017-05-19 21:53:38 | 2e136a4e258d2deedbaca0112b79e613 | n/a | Kovter | 181.234.110.59:443 |
| 2017-05-19 12:50:27 | 29027a62ed7386ce79c76959dd2119cf | n/a | Kovter | 217.164.82.62:443 |
| 2017-05-19 12:50:27 | 29027a62ed7386ce79c76959dd2119cf | n/a | Kovter | 217.164.82.62:443 |
| 2017-05-12 18:37:49 | 91cd856a6beecb956f37bdafd4604a23 | 47/59 (79.66%)
| Kovter | 217.19.223.20:443 |
| 2017-05-12 18:37:49 | 91cd856a6beecb956f37bdafd4604a23 | 47/59 (79.66%)
| Kovter | 217.19.223.20:443 |
| 2017-05-10 21:27:16 | a07200fce4023ad614b059a0ee45c1e8 | 43/62 (69.35%)
| Kovter | 117.199.204.238:443 |
| 2017-05-10 21:27:16 | a07200fce4023ad614b059a0ee45c1e8 | 43/62 (69.35%)
| Kovter | 117.199.204.238:443 |
| 2017-04-26 13:40:50 | 32cf8d7a52a315ea499d96df7808ad9c | n/a | Kovter | 186.27.192.36:443 |
| 2017-04-26 13:40:50 | 32cf8d7a52a315ea499d96df7808ad9c | n/a | Kovter | 186.27.192.36:443 |
| 2017-04-22 11:16:20 | b4f0938b9d60e7db13ebbfc32a426d18 | 11/62 (17.74%)
| Kovter | 117.99.183.127:443 |
| 2017-04-22 11:16:20 | b4f0938b9d60e7db13ebbfc32a426d18 | 11/62 (17.74%)
| Kovter | 117.99.183.127:443 |
| 2017-04-09 04:44:30 | 3f4bf563be7cae20a30031b01c3f61c1 | n/a | Kovter | 186.107.17.157:443 |
| 2017-04-09 04:44:30 | 3f4bf563be7cae20a30031b01c3f61c1 | n/a | Kovter | 186.107.17.157:443 |
| 2017-03-20 20:51:11 | 3cac6b2b65f5b8eea2bca5f763f7ff69 | n/a | Kovter | 117.204.131.25:443 |
| 2017-03-20 20:51:11 | 3cac6b2b65f5b8eea2bca5f763f7ff69 | n/a | Kovter | 117.204.131.25:443 |
| 2017-03-20 12:54:44 | 71a9669c14b06d6d9f0297972f8db533 | 50/61 (81.97%)
| Kovter | 161.10.212.151:443 |
| 2017-03-20 12:54:44 | 71a9669c14b06d6d9f0297972f8db533 | 50/61 (81.97%)
| Kovter | 161.10.212.151:443 |
| 2017-03-17 14:54:17 | 5b55cbda68d32fd6a73771feec756b1c | 39/62 (62.90%)
| Kovter | 5.237.63.68:443 |
| 2017-03-17 14:54:17 | 5b55cbda68d32fd6a73771feec756b1c | 39/62 (62.90%)
| Kovter | 5.237.63.68:443 |
| 2017-03-16 18:11:17 | bd4bc06fb3ba537d5a4f6d4297f3b6cc | 47/62 (75.81%)
| Kovter | 190.99.203.251:443 |
| 2017-03-16 18:11:17 | bd4bc06fb3ba537d5a4f6d4297f3b6cc | 47/62 (75.81%)
| Kovter | 190.99.203.251:443 |
| 2017-03-16 02:27:06 | aff1e831c0dc57d97e5459ac04f89319 | 46/61 (75.41%)
| Kovter | 186.112.78.150:443 |
| 2017-03-16 02:27:06 | aff1e831c0dc57d97e5459ac04f89319 | 46/61 (75.41%)
| Kovter | 186.112.78.150:443 |
| 2017-03-16 00:35:25 | d7a8b46838ac9e6715b5a0307a4944f8 | 39/61 (63.93%)
| Kovter | 190.68.87.97:443 |
| 2017-03-16 00:35:25 | d7a8b46838ac9e6715b5a0307a4944f8 | 39/61 (63.93%)
| Kovter | 190.68.87.97:443 |
| 2017-03-14 23:16:03 | cdf083422b66b0af0db46cbb118c8299 | 45/61 (73.77%)
| Kovter | 186.112.44.52:443 |
| 2017-03-14 23:16:03 | cdf083422b66b0af0db46cbb118c8299 | 45/61 (73.77%)
| Kovter | 186.112.44.52:443 |
| 2017-03-13 09:24:55 | 4bde0d7a6723aaf3129fef741a1303dd | 38/59 (64.41%)
| Kovter | 191.110.143.138:443 |
| 2017-03-13 09:24:55 | 4bde0d7a6723aaf3129fef741a1303dd | 38/59 (64.41%)
| Kovter | 191.110.143.138:443 |
| 2017-03-12 21:55:36 | 09bda4bc85a5de45484b69ae968ff720 | n/a | Kovter | 61.3.147.231:443 |
| 2017-03-12 21:55:36 | 09bda4bc85a5de45484b69ae968ff720 | n/a | Kovter | 61.3.147.231:443 |
| 2017-03-11 12:52:29 | 4097d6da5a51a804299c9bde23abd533 | n/a | Kovter | 186.114.103.155:443 |
| 2017-03-11 12:52:29 | 4097d6da5a51a804299c9bde23abd533 | n/a | Kovter | 186.114.103.155:443 |
| 2017-03-09 23:01:05 | 7ec6de8d6ab7a9d703ace1df1e73117a | n/a | Kovter | 179.32.209.39:443 |
| 2017-03-09 23:01:05 | 7ec6de8d6ab7a9d703ace1df1e73117a | n/a | Kovter | 179.32.209.39:443 |
| 2017-03-09 14:47:25 | 000b2562ba78d0d46bed03d0dc5cd7af | 42/60 (70.00%)
| Kovter | 186.27.246.62:443 |
| 2017-03-09 14:47:25 | 000b2562ba78d0d46bed03d0dc5cd7af | 42/60 (70.00%)
| Kovter | 186.27.246.62:443 |
| 2017-03-07 12:53:31 | 686a2949ecc8427cc1260699cea297c1 | 13/58 (22.41%)
| Kovter | 58.182.10.7:443 |
| 2017-03-07 12:53:31 | 686a2949ecc8427cc1260699cea297c1 | 13/58 (22.41%)
| Kovter | 58.182.10.7:443 |
| 2017-03-06 19:27:00 | 81753a028b09ab7c4b6bfe3b257136d1 | 31/60 (51.67%)
| Kovter | 190.67.98.69:443 |
| 2017-03-06 19:27:00 | 81753a028b09ab7c4b6bfe3b257136d1 | 31/60 (51.67%)
| Kovter | 190.67.98.69:443 |
| 2017-03-05 20:03:38 | 2b0b4381ab0734d63f730787a6bce051 | 39/59 (66.10%)
| Kovter | 190.66.212.225:443 |
| 2017-03-05 20:03:38 | 2b0b4381ab0734d63f730787a6bce051 | 39/59 (66.10%)
| Kovter | 190.66.212.225:443 |
| 2017-03-05 18:00:50 | 93b913dcfe7d773bde40781c9e0d9b86 | 49/62 (79.03%)
| Kovter | 117.221.26.63:443 |
| 2017-03-05 18:00:50 | 93b913dcfe7d773bde40781c9e0d9b86 | 49/62 (79.03%)
| Kovter | 117.221.26.63:443 |
| 2017-03-05 00:52:05 | 4726e4b7e91db790c724d8c6a066de9d | 40/59 (67.80%)
| Kovter | 161.18.100.218:443 |
| 2017-03-05 00:52:05 | 4726e4b7e91db790c724d8c6a066de9d | 40/59 (67.80%)
| Kovter | 161.18.100.218:443 |
| 2017-03-04 18:02:32 | db21d13a6684747a83b9e8dbf5b12774 | 38/59 (64.41%)
| Kovter | 186.27.233.210:443 |
| 2017-03-04 18:02:32 | db21d13a6684747a83b9e8dbf5b12774 | 38/59 (64.41%)
| Kovter | 186.27.233.210:443 |
| 2017-03-01 17:12:56 | a00aca94936621cf0904b2230f8b1756 | 25/58 (43.10%)
| Kovter | 190.238.62.69:443 |
| 2017-03-01 17:12:56 | a00aca94936621cf0904b2230f8b1756 | 25/58 (43.10%)
| Kovter | 190.238.62.69:443 |
| 2017-02-28 11:42:01 | b980be49d74cc53e4adc4e60a2f04c35 | 41/59 (69.49%)
| Kovter | 190.69.239.72:443 |
| 2017-02-28 11:42:01 | b980be49d74cc53e4adc4e60a2f04c35 | 41/59 (69.49%)
| Kovter | 190.69.239.72:443 |
| 2017-02-27 12:22:55 | d9e3743274df3ce00fa99b5bf6270bf0 | n/a | Quakbot | 59.96.182.66:443 |
| 2017-02-27 12:22:55 | d9e3743274df3ce00fa99b5bf6270bf0 | n/a | Quakbot | 59.96.182.66:443 |
| 2017-02-23 17:02:53 | a3a1d6e4cf9976155538e46e97d00db1 | 42/58 (72.41%)
| Kovter | 31.14.145.250:443 |
| 2017-02-23 17:02:53 | a3a1d6e4cf9976155538e46e97d00db1 | 42/58 (72.41%)
| Kovter | 31.14.145.250:443 |
| 2017-02-20 18:04:55 | 1996ff4b9fa9a3d816f6d85b5be3c6b9 | n/a | Kovter | 122.174.13.63:443 |
| 2017-02-20 18:04:55 | 1996ff4b9fa9a3d816f6d85b5be3c6b9 | n/a | Kovter | 122.174.13.63:443 |
| 2017-02-19 14:22:49 | aeae26ebdca0c23e7a33660b83080047 | n/a | Kovter | 190.99.143.23:443 |
| 2017-02-19 14:22:49 | aeae26ebdca0c23e7a33660b83080047 | n/a | Kovter | 190.99.143.23:443 |
| 2017-02-14 13:52:45 | 829d3b2d9a5e2bbfc7425fd21e643c65 | n/a | Kovter | 5.107.46.130:443 |
| 2017-02-14 13:52:45 | 829d3b2d9a5e2bbfc7425fd21e643c65 | n/a | Kovter | 5.107.46.130:443 |
| 2017-02-12 18:26:26 | a55ad868fc17b03f5f883e8a841a6333 | 35/59 (59.32%)
| Kovter | 186.119.35.127:443 |
| 2017-02-12 18:26:26 | a55ad868fc17b03f5f883e8a841a6333 | 35/59 (59.32%)
| Kovter | 186.119.35.127:443 |
| 2017-02-12 14:59:41 | 6fe666739603ed69072b16d09f3ba024 | 8/57 (14.04%)
| Kovter | 2.190.245.212:443 |
| 2017-02-12 14:59:41 | 6fe666739603ed69072b16d09f3ba024 | 8/57 (14.04%)
| Kovter | 2.190.245.212:443 |
# of entries: 100 (max: 100)