SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 5666476ee83f70a6ac219366d7aa67b6c19cd929.
Database Entry
| SHA1 Fingerprint: | 5666476ee83f70a6ac219366d7aa67b6c19cd929 |
|---|---|
| Certificate Common Name (CN): | CÔNG TY TNHH GIA?I PHA?P CÔNG NGHÊ? SÔ? VIÊ?T |
| Issuer Distinguished Name (DN): | OneSign OV Code Signing CA |
| TLS Version: | TLSv1 |
| First seen: | 2021-06-18 14:07:23 UTC |
| Last seen: | 2022-11-26 06:58:21 UTC |
| Status: | Blacklisted |
| Listing reason: | AsyncRAT C&C |
| Listing date: | 2022-11-26 10:14:01 |
| Malware samples: | 16 |
| Botnet C&Cs: | 3 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2022-11-26 06:58:21 | aeaa96d217f16baf7f860bfbbaf278eb |  52 / 72 (72.22%)
| AsyncRAT | 45.76.184.89:92 |
| 2022-10-13 15:04:48 | 668afcef932d8b12daf3317be8e23906 | 34 / 72 (47.22%)
| AsyncRAT | 45.76.184.89:90 |
| 2022-10-12 17:07:53 | 3ff05610c10c56b5910c6d4156bc7efa | 47 / 72 (65.28%)
| AsyncRAT | 45.76.184.89:92 |
| 2022-10-12 15:34:08 | 3d84a53df3cf8f27bfc526bdea6780f4 | 35 / 71 (49.30%)
| 45.76.184.89:92 | |
| 2022-10-12 12:44:00 | 383cae2b03b0dffa0b93f7d00cc341fb | 31 / 71 (43.66%)
| AsyncRAT | 45.76.184.89:92 |
| 2022-10-11 11:53:09 | 12f9e230edae5c7357ee0c57b2d0d486 | 38 / 72 (52.78%)
| AsyncRAT | 45.76.184.89:92 |
| 2022-08-03 20:22:22 | 3c85df8456a5889bd7de2d1b7a9b2233 | 35 / 71 (49.30%)
| AsyncRAT | 103.142.218.119:99 |
| 2022-08-03 09:14:55 | 2e174cf760707e848dc87c828ddc00ba | 30 / 69 (43.48%)
| AsyncRAT | 103.142.218.119:99 |
| 2022-08-03 08:48:41 | 2c8b978b5ed8f763d25c034b6c6d96e9 | 24 / 68 (35.29%)
| AsyncRAT | 103.142.218.119:99 |
| 2022-08-03 01:20:17 | 008112f95cb7f3fc8cb315a1265a84c5 | 21 / 51 (41.18%)
| 103.142.218.119:99 | |
| 2022-07-29 09:35:08 | 3d29b636e2b5f95770930e2f4980c83d | 23 / 68 (33.82%)
| AsyncRAT | 103.142.218.119:99 |
| 2022-07-20 21:18:51 | 1a9e3f2e4eb8cb2e61e0472f532d1b41 | 22 / 70 (31.43%)
| 103.142.218.119:99 | |
| 2022-07-16 20:38:32 | 579fd4de7fbaf17df319115c18c2c05d | 19 / 70 (27.14%)
| AsyncRAT | 103.142.218.119:99 |
| 2021-07-06 12:06:01 | f94dc71dddbaf9076b96a81fb3f6e2aa | 39 / 70 (55.71%)
| 139.99.126.75:92 | |
| 2021-06-23 16:16:47 | 5e0417d44a6ad2b786b7e88b5f0ef445 | 34 / 70 (48.57%)
| 139.99.126.75:91 | |
| 2021-06-18 14:07:23 | f989e1b8f6c2d2454c6bc2a2270ee4f6 | 22 / 69 (31.88%)
| 139.99.126.75:90 |
# of entries: 16 (max: 100)