SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 5e4691b567c8ab03316c7f583cd80a133ce4917e.

Database Entry

SHA1 Fingerprint:	5e4691b567c8ab03316c7f583cd80a133ce4917e
Certificate Common Name (CN):	Bronte.space
Issuer Distinguished Name (DN):	Bronte.space
TLS Version:	TLS 1.2
First seen:	2019-03-05 23:26:01 UTC
Last seen:	2019-04-06 02:48:37 UTC
Status:	Blacklisted
Listing reason:	IcedID C&C
Listing date:	2019-03-06 08:49:05
Malware samples:	6
Botnet C&Cs:	2

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2019-04-06 02:48:37	6552c422daff0ba6e77770b5d2cfc816	8/71 (11.27%)	IcedID	77.72.135.237:443
2019-04-06 02:48:37	6552c422daff0ba6e77770b5d2cfc816	8/71 (11.27%)	IcedID	77.72.135.237:443
2019-04-04 11:54:09	e68d2ec4141516e9876e29a4c135d90f	19/68 (27.94%)	IcedID	77.72.135.237:443
2019-04-04 11:54:09	e68d2ec4141516e9876e29a4c135d90f	19/68 (27.94%)	IcedID	77.72.135.237:443
2019-03-27 12:29:00	93ef74249e34d0cfeb3a569b625e4aac	21/64 (32.81%)		77.72.135.237:443
2019-03-27 12:29:00	93ef74249e34d0cfeb3a569b625e4aac	21/64 (32.81%)		77.72.135.237:443
2019-03-07 13:00:07	844c10e1ba396663bda5fbfc0619437c	42/63 (66.67%)	IcedID	77.72.135.237:443
2019-03-07 13:00:07	844c10e1ba396663bda5fbfc0619437c	42/63 (66.67%)	IcedID	77.72.135.237:443
2019-03-06 07:38:46	a18bff6b95b2d9dafa4f9286853be7cc	39/64 (60.94%)	IcedID	109.248.147.173:443
2019-03-06 07:38:46	a18bff6b95b2d9dafa4f9286853be7cc	39/64 (60.94%)	IcedID	109.248.147.173:443
2019-03-05 23:26:01	bcdbe9eed23ed9f2cb5cb35c2433c55e	40/63 (63.49%)	IcedID	109.248.147.173:443
2019-03-05 23:26:01	bcdbe9eed23ed9f2cb5cb35c2433c55e	40/63 (63.49%)	IcedID	109.248.147.173:443

# of entries: 12 (max: 100)