SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 5e4691b567c8ab03316c7f583cd80a133ce4917e.

Database Entry

SHA1 Fingerprint:5e4691b567c8ab03316c7f583cd80a133ce4917e
Certificate Common Name (CN)
Issuer Distinguished Name (DN)
TLS Version:TLS 1.2
First seen:2019-03-05 23:26:01 UTC
Last seen:2019-04-06 02:48:37 UTC
Listing reason:IcedID C&C
Listing date:2019-03-06 08:49:05
Malware samples:6
Botnet C&Cs:2

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2019-04-06 02:48:376552c422daff0ba6e77770b5d2cfc816Virustotal results 8/71 (11.27%)
2019-04-04 11:54:09e68d2ec4141516e9876e29a4c135d90fn/a77.72.135.237:443
2019-03-27 12:29:0093ef74249e34d0cfeb3a569b625e4aacVirustotal results 21/64 (32.81%)
2019-03-07 13:00:07844c10e1ba396663bda5fbfc0619437cVirustotal results 42/63 (66.67%) IcedID
2019-03-06 07:38:46a18bff6b95b2d9dafa4f9286853be7ccVirustotal results 39/64 (60.94%) IcedID
2019-03-05 23:26:01bcdbe9eed23ed9f2cb5cb35c2433c55eVirustotal results 40/63 (63.49%) IcedID

# of entries: 6 (max: 100)