SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 56b2e42c07c9266f599b57b37f4b0404bce6e911.

Database Entry


SHA1 Fingerprint:56b2e42c07c9266f599b57b37f4b0404bce6e911
Certificate Common Name (CN):gently.com
Issuer Distinguished Name (DN):gently.com
TLS Version:TLS 1.2
First seen:2019-12-22 11:06:45 UTC
Last seen:2019-12-27 18:01:59 UTC
Status:Blacklisted
Listing reason:IcedID C&C
Listing date:2019-12-22 11:29:10
Malware samples:42
Botnet C&Cs:3

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2019-12-27 18:01:59cdc8b0a45654de90003f1407f453e1ean/aIcedID 79.174.13.19:443
2019-12-27 17:55:00484b94d007cf36e28d7de2b67219f721n/aIcedID 79.174.13.19:443
2019-12-27 17:28:312a141203b7dbe8bd8e598cebaf61159bn/aIcedID 79.174.13.19:443
2019-12-27 15:09:2677b5794f495a50acce92f213cb11b7f1n/aIcedID 79.174.13.19:443
2019-12-27 14:22:4703970aa1428d57c23d531bd8a3eff251n/aIcedID 79.174.13.19:443
2019-12-27 14:10:1781e7ec6ecb38856e8c57f48838d6a120n/aIcedID 79.174.13.19:443
2019-12-27 13:25:59ab4dc496d3327cbd8dd159d5024c4e8en/aIcedID 79.174.13.19:443
2019-12-27 13:21:45fd43c4ffbe6cb1b96f5c8d9989553605n/aIcedID 79.174.13.19:443
2019-12-27 12:51:16bd00a1753902a233baaa3ed97461ae44n/aIcedID 79.174.13.19:443
2019-12-27 12:40:1513781b6bd9ca5153cf0a96fa3503ddf5n/aIcedID 79.174.13.19:443
2019-12-27 12:06:0629e726b1eae9bd86b62997e8c1646a2cn/aIcedID 79.174.13.19:443
2019-12-27 12:05:473d16405f0707115b97659373dc66acf4n/aIcedID 79.174.13.19:443
2019-12-27 12:04:3386fcd0a8ed161703c06a665517b35555n/aIcedID 79.174.13.19:443
2019-12-27 12:03:188daf78101ccc8576602b95a25f6ef5e9n/aIcedID 79.174.13.19:443
2019-12-27 12:02:383be1c7144138bb92caf93887c4d3b7a1n/aIcedID 79.174.13.19:443
2019-12-27 11:55:2631bea15cad146dc366ed8a01424a36fen/aIcedID 79.174.13.19:443
2019-12-27 11:40:21997936c82e986ad00ee54364549dcfa1n/aIcedID 79.174.13.19:443
2019-12-27 11:36:00a16805ef22966acd599fde939e292d73n/aIcedID 79.174.13.19:443
2019-12-27 11:30:32a95aed8e4f817f43c15cc5cc6fcd2241n/aIcedID 79.174.13.19:443
2019-12-27 11:27:576dbf2ac460991fb53a4bfb30bb90b102n/aIcedID 79.174.13.19:443
2019-12-27 11:17:01d2bb9730d3b39bb859871499643a515bn/aIcedID 79.174.13.19:443
2019-12-27 11:16:001f5b3c034e19bab19967fe8365c28010n/aIcedID 79.174.13.19:443
2019-12-27 10:59:544a576cad54333ccd9bb2acacc02e1657n/aIcedID 79.174.13.19:443
2019-12-27 10:54:36d75d77a2a94397ee5e8097c65b0d5cb2n/aIcedID 79.174.13.19:443
2019-12-27 10:53:221c359244c354d6a551e95b4b13063aaen/aIcedID 79.174.13.19:443
2019-12-27 10:50:44f70c5dcd459a3c6467aa76f8bee0c6b4n/aIcedID 79.174.13.19:443
2019-12-27 10:49:214122dc0472e441b0744c86751d1ad860n/aIcedID 79.174.13.19:443
2019-12-27 10:44:53b87804add5fef962e4306abce2bc222fn/aIcedID 79.174.13.19:443
2019-12-27 10:33:25e1b1d5262fef8a8c9734e2a20c425916n/aIcedID 79.174.13.19:443
2019-12-27 10:33:18528efa41b6bf5408f215024ff8aa5f77n/aIcedID 79.174.13.19:443
2019-12-27 10:31:547a0dec63d3406e3765f42a337403e2a8n/aIcedID 79.174.13.19:443
2019-12-27 10:31:060b85ca021f854d78f0488050d4859d30n/aIcedID 79.174.13.19:443
2019-12-27 10:29:34fe5b6b5333bc3725882629a93178623dn/aIcedID 79.174.13.19:443
2019-12-27 09:59:4965d4c361f27a380c734bcfeb18792453n/aIcedID 79.174.13.19:443
2019-12-27 09:58:1830ff6ed11b70fbb4fc9bfda6b4e388f4n/aIcedID 79.174.13.19:443
2019-12-27 09:56:470924e120f1231fe9bab4f59d57a070b4n/aIcedID 79.174.13.19:443
2019-12-27 09:36:2174dce8e6657dca3030eecba5e3b883bdn/aIcedID 79.174.13.19:443
2019-12-26 19:31:0591b305635cc5360e9de7a507ef0c80a1n/aIcedID 188.127.227.76:443
2019-12-26 13:59:59ee3951d02bde75884b5acdae4931eb5dn/aIcedID 188.127.227.76:443
2019-12-25 23:51:3332cfa432c1bf621b0d7a7d2c66a91691Virustotal results 30 / 71 (42.25%) IcedID 188.127.227.76:443
2019-12-22 11:15:0097abb05d1c1374f879a5b942a9baf2b0Virustotal results 18 / 73 (24.66%) IcedID 185.48.56.111:443
2019-12-22 11:06:45001b88bae2efcc90c703ada6643ede33Virustotal results 25 / 71 (35.21%) IcedID 185.48.56.111:443

# of entries: 42 (max: 100)