SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 5b38cd658f78a02010ba1ee6efd52b97809209c3.
Database Entry
| SHA1 Fingerprint: | 5b38cd658f78a02010ba1ee6efd52b97809209c3 |
|---|---|
| Certificate Common Name (CN): | main.info |
| Issuer Distinguished Name (DN): | main.info |
| TLS Version: | TLS 1.2 |
| First seen: | 2018-11-07 13:06:13 UTC |
| Last seen: | 2018-12-03 14:11:47 UTC |
| Status: | Blacklisted |
| Listing reason: | IcedID C&C |
| Listing date: | 2018-11-11 09:09:47 |
| Malware samples: | 274 |
| Botnet C&Cs: | 7 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2018-12-03 14:11:47 | 24bfcda28a0ea336f4df75519adb7c17 |  24/70 (34.29%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 14:11:47 | 24bfcda28a0ea336f4df75519adb7c17 | 24/70 (34.29%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 12:27:15 | 6cead42012a75f6f0b9e070c962fac70 | 16/69 (23.19%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 12:27:15 | 6cead42012a75f6f0b9e070c962fac70 | 16/69 (23.19%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 11:43:51 | 7deac378c15cde2d18ad9805e24699ca | 35/69 (50.72%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 11:43:51 | 7deac378c15cde2d18ad9805e24699ca | 35/69 (50.72%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 11:29:53 | 6959f0435d32fe8d251691dc64134746 | 37/69 (53.62%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 11:29:53 | 6959f0435d32fe8d251691dc64134746 | 37/69 (53.62%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 11:20:02 | 9c745495bf7cc8211f2c3e62b2341889 | 29/70 (41.43%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 11:20:02 | 9c745495bf7cc8211f2c3e62b2341889 | 29/70 (41.43%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 11:15:52 | 8b54e034cc77d03c3b5345e03e08198f | 32/70 (45.71%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 11:15:52 | 8b54e034cc77d03c3b5345e03e08198f | 32/70 (45.71%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 11:14:33 | 18540463934ebd5688685a453da58c5c | 34/69 (49.28%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 11:14:33 | 18540463934ebd5688685a453da58c5c | 34/69 (49.28%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 11:05:58 | bd3537a56339236cb2b258b88d1b2c25 | 29/68 (42.65%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 11:05:58 | bd3537a56339236cb2b258b88d1b2c25 | 29/68 (42.65%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 10:30:30 | 27825c5cf4c290f1a07982d11befe87c | 39/69 (56.52%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 10:30:30 | 27825c5cf4c290f1a07982d11befe87c | 39/69 (56.52%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 10:16:04 | ad2a226c5a47a262a7b3fe765ec9dcaa | 31/70 (44.29%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 10:16:04 | ad2a226c5a47a262a7b3fe765ec9dcaa | 31/70 (44.29%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 09:00:50 | 9c81f2e5b5a08aa2156e05d70829749e | 38/69 (55.07%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 09:00:50 | 9c81f2e5b5a08aa2156e05d70829749e | 38/69 (55.07%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 08:47:11 | 1e0c2fa15b461bd39adf2f4aadc83891 | 24/69 (34.78%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 08:47:11 | 1e0c2fa15b461bd39adf2f4aadc83891 | 24/69 (34.78%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 08:29:16 | b0f600a995dfcb430b883dad43ea92f6 | 32/69 (46.38%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 08:29:16 | b0f600a995dfcb430b883dad43ea92f6 | 32/69 (46.38%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 07:42:00 | f755aff51d3bedb6163e780887bb1027 | 34/70 (48.57%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 07:42:00 | f755aff51d3bedb6163e780887bb1027 | 34/70 (48.57%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 07:39:46 | 95637a385be1813bf1d1cb0bc14c621c | 24/70 (34.29%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 07:39:46 | 95637a385be1813bf1d1cb0bc14c621c | 24/70 (34.29%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 07:30:33 | dc7f48a0580c804affb55fd4c4f4623d | 37/69 (53.62%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 07:30:33 | dc7f48a0580c804affb55fd4c4f4623d | 37/69 (53.62%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 07:22:32 | 0936540191adbcf893fce3cfc6a2128f | 36/70 (51.43%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 07:22:32 | 0936540191adbcf893fce3cfc6a2128f | 36/70 (51.43%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 07:20:37 | 603af74157d3debd4fd323567bf74cd4 | 34/59 (57.63%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 07:20:37 | 603af74157d3debd4fd323567bf74cd4 | 34/59 (57.63%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 07:08:58 | 4ef56707a8efb7f538f85fa79eaf6c27 | 23/69 (33.33%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 07:08:58 | 4ef56707a8efb7f538f85fa79eaf6c27 | 23/69 (33.33%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 06:09:28 | 5c90437b4326e284bf647997b49a6b34 | 38/69 (55.07%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 06:09:28 | 5c90437b4326e284bf647997b49a6b34 | 38/69 (55.07%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 06:00:57 | 291b95d7e0e0407f9cbdf00d4726f029 | 23/70 (32.86%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 06:00:57 | 291b95d7e0e0407f9cbdf00d4726f029 | 23/70 (32.86%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 05:06:45 | 0c78718f5783b840c511043356561e26 | 35/70 (50.00%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 05:06:45 | 0c78718f5783b840c511043356561e26 | 35/70 (50.00%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 05:06:12 | 7d2eda76a51346a8be5493364792428f | 23/69 (33.33%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 05:06:12 | 7d2eda76a51346a8be5493364792428f | 23/69 (33.33%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 04:58:19 | 82634a12da99285972e9b70b6991b020 | 28/70 (40.00%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 04:58:19 | 82634a12da99285972e9b70b6991b020 | 28/70 (40.00%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 03:36:17 | 650ab68a1b9aa91db2c946f0f8093410 | 38/68 (55.88%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 03:36:17 | 650ab68a1b9aa91db2c946f0f8093410 | 38/68 (55.88%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 03:11:46 | 533460773d65d35c2a929dd5e57aac42 | 22/69 (31.88%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 03:11:46 | 533460773d65d35c2a929dd5e57aac42 | 22/69 (31.88%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 01:28:23 | 5937238d45c8f6b26f5ea47139608726 | 32/70 (45.71%)
| IcedID | 185.197.75.161:443 |
| 2018-12-03 01:28:23 | 5937238d45c8f6b26f5ea47139608726 | 32/70 (45.71%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 23:19:28 | d4b8204160e6753f2367edab54e1f3b0 | 35/70 (50.00%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 23:19:28 | d4b8204160e6753f2367edab54e1f3b0 | 35/70 (50.00%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 20:46:08 | 42cc06496c05e78f1c6920f7252b3860 | 34/67 (50.75%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 20:46:08 | 42cc06496c05e78f1c6920f7252b3860 | 34/67 (50.75%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 20:41:40 | 6f7b4f200e5cbcaf035c2462bf914217 | 21/69 (30.43%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 20:41:40 | 6f7b4f200e5cbcaf035c2462bf914217 | 21/69 (30.43%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 20:31:53 | 49e88a36f3c117586ee17ce86409072c | 32/70 (45.71%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 20:31:53 | 49e88a36f3c117586ee17ce86409072c | 32/70 (45.71%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 19:45:50 | 8364db2787565195e39990f4e4ed212d | 36/68 (52.94%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 19:45:50 | 8364db2787565195e39990f4e4ed212d | 36/68 (52.94%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 19:03:30 | ea8ece50eb404ac53d6469b173261cc0 | 34/70 (48.57%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 19:03:30 | ea8ece50eb404ac53d6469b173261cc0 | 34/70 (48.57%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 18:54:00 | c1790ed38fb958e807d40593b0f80388 | 31/69 (44.93%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 18:54:00 | c1790ed38fb958e807d40593b0f80388 | 31/69 (44.93%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 18:44:02 | 6e27342037ffab55dd1dfd547bf58fdd | 24/70 (34.29%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 18:44:02 | 6e27342037ffab55dd1dfd547bf58fdd | 24/70 (34.29%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 18:23:23 | e8748edd9b844bb3f72241a2abbeba06 | 25/70 (35.71%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 18:23:23 | e8748edd9b844bb3f72241a2abbeba06 | 25/70 (35.71%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 18:12:47 | 78c5a8deab3c1a28094f52fc6a7d48c2 | 22/68 (32.35%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 18:12:47 | 78c5a8deab3c1a28094f52fc6a7d48c2 | 22/68 (32.35%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 17:52:27 | d45ef8c4f97434366995738e44ca327d | 34/69 (49.28%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 17:52:27 | d45ef8c4f97434366995738e44ca327d | 34/69 (49.28%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 17:35:30 | 3fa28405ae23b540d312e3614666a925 | 35/70 (50.00%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 17:35:30 | 3fa28405ae23b540d312e3614666a925 | 35/70 (50.00%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 17:13:19 | 0521ea1fecea0bc456a7e84b128d8985 | 32/70 (45.71%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 17:13:19 | 0521ea1fecea0bc456a7e84b128d8985 | 32/70 (45.71%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 17:01:34 | f297e1ab81a166f0779715da438e1020 | 15/70 (21.43%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 17:01:34 | f297e1ab81a166f0779715da438e1020 | 15/70 (21.43%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 16:39:19 | 64daa374ac3f2d027642c099a2dfe000 | 34/70 (48.57%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 16:39:19 | 64daa374ac3f2d027642c099a2dfe000 | 34/70 (48.57%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 15:57:01 | e1d6368f8133d5bc8df490beb8e39c3c | 17/68 (25.00%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 15:57:01 | e1d6368f8133d5bc8df490beb8e39c3c | 17/68 (25.00%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 15:42:31 | a6c7780a938cef21fca1395a1e834923 | 17/68 (25.00%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 15:42:31 | a6c7780a938cef21fca1395a1e834923 | 17/68 (25.00%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 15:31:01 | 064cff5894fcd359af437695d3bbfd26 | 18/69 (26.09%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 15:31:01 | 064cff5894fcd359af437695d3bbfd26 | 18/69 (26.09%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 15:29:19 | 5521310df7965b520007cc0c6e4ef2ce | 35/69 (50.72%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 15:29:19 | 5521310df7965b520007cc0c6e4ef2ce | 35/69 (50.72%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 15:22:45 | 8c6263b3b245974607232fbd51e32c67 | 21/69 (30.43%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 15:22:45 | 8c6263b3b245974607232fbd51e32c67 | 21/69 (30.43%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 15:10:03 | 647ddb0a60ba32668409865d35a78142 | 29/69 (42.03%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 15:10:03 | 647ddb0a60ba32668409865d35a78142 | 29/69 (42.03%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 14:31:14 | 1fc139b2aff1aa4f3dbd94c2a3fda56e | 35/67 (52.24%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 14:31:14 | 1fc139b2aff1aa4f3dbd94c2a3fda56e | 35/67 (52.24%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 11:50:46 | 9bec8924a9a5a23536a7263ecfe2b99f | 25/70 (35.71%)
| IcedID | 185.197.75.161:443 |
| 2018-12-02 11:50:46 | 9bec8924a9a5a23536a7263ecfe2b99f | 25/70 (35.71%)
| IcedID | 185.197.75.161:443 |
# of entries: 100 (max: 100)