SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 5f15b50e24f14e097df45bfc67d6c44ba131d673.

Database Entry


SHA1 Fingerprint:5f15b50e24f14e097df45bfc67d6c44ba131d673
Certificate Common Name (CN):terriblekira.su
Issuer Distinguished Name (DN):COMODO RSA Domain Validation Secure Server CA
TLS Version:TLS 1.2
First seen:2015-05-17 21:47:14 UTC
Last seen:2015-09-13 12:24:35 UTC
Status:Blacklisted
Listing reason:KINS C&C
Listing date:2015-05-18 06:41:33
Malware samples:100
Botnet C&Cs:95

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2015-09-13 12:24:3537eed4781100a571b5d1519af9417191n/aRedyms94.41.203.23:443
2015-09-13 12:24:3537eed4781100a571b5d1519af9417191n/aRedyms94.41.203.23:443
2015-09-12 13:54:4712bf488ef7e9e500f191290e30961893n/aRedyms134.249.40.43:443
2015-09-12 13:54:4712bf488ef7e9e500f191290e30961893n/aRedyms134.249.40.43:443
2015-09-11 15:58:14e6e690a3e5b51c28a90b3485d76d0367n/aRedyms176.113.149.167:443
2015-09-11 15:58:14e6e690a3e5b51c28a90b3485d76d0367n/aRedyms176.113.149.167:443
2015-09-11 10:22:40e37fe11744cf1d0b8a290b0c391765b6Virustotal results 3/57 (5.26%) Redyms188.190.220.74:443
2015-09-11 10:22:40e37fe11744cf1d0b8a290b0c391765b6Virustotal results 3/57 (5.26%) Redyms188.190.220.74:443
2015-09-11 01:47:1688ca9d722baae6603490f3251ed48efdn/aRedyms46.98.198.6:443
2015-09-11 01:47:1688ca9d722baae6603490f3251ed48efdn/aRedyms46.98.198.6:443
2015-09-10 10:33:20b062c959945f79e1917babedd7db2560Virustotal results 4/57 (7.02%) Redyms24.122.211.18:443
2015-09-10 10:33:20b062c959945f79e1917babedd7db2560Virustotal results 4/57 (7.02%) Redyms24.122.211.18:443
2015-09-10 10:03:513580c0b86a7ed85040d4c956a4a00eden/aRedyms178.151.116.140:443
2015-09-10 10:03:513580c0b86a7ed85040d4c956a4a00eden/aRedyms178.151.116.140:443
2015-09-09 13:42:28d25991fda1822f0eeec92e2985001b0fVirustotal results 4/56 (7.14%) Redyms46.174.241.113:443
2015-09-09 13:42:28d25991fda1822f0eeec92e2985001b0fVirustotal results 4/56 (7.14%) Redyms46.174.241.113:443
2015-09-09 09:56:0288c0cbe94ec45ddd1729e819ed144ef3n/aRedyms46.46.90.65:443
2015-09-09 09:56:0288c0cbe94ec45ddd1729e819ed144ef3n/aRedyms46.46.90.65:443
2015-09-09 09:24:542af2497d537fa0db9dd9e6d7e7d3b5faVirustotal results 6/57 (10.53%) Redyms134.249.43.14:443
2015-09-09 09:24:542af2497d537fa0db9dd9e6d7e7d3b5faVirustotal results 6/57 (10.53%) Redyms134.249.43.14:443
2015-09-09 07:42:11e49e6563c878fa7b024120faacd253e4Virustotal results 3/57 (5.26%) Redyms188.230.31.190:443
2015-09-09 07:42:11e49e6563c878fa7b024120faacd253e4Virustotal results 3/57 (5.26%) Redyms188.230.31.190:443
2015-09-08 18:06:49889bbc9069c5ce719e0818a8977b7af2n/aRedyms176.99.101.48:443
2015-09-08 18:06:49889bbc9069c5ce719e0818a8977b7af2n/aRedyms176.99.101.48:443
2015-09-08 14:29:204047f55ff42e49218f9857c6d046a034n/aRedyms176.113.233.228:443
2015-09-08 14:29:204047f55ff42e49218f9857c6d046a034n/aRedyms176.113.233.228:443
2015-09-08 08:08:415212522ec9c0917e66327456985d4787n/aRedyms194.79.60.87:443
2015-09-08 08:08:415212522ec9c0917e66327456985d4787n/aRedyms194.79.60.87:443
2015-09-08 06:50:462bb5fbbcae91318d127b7c9b33b11e8fn/aRedyms193.189.127.121:443
2015-09-08 06:50:462bb5fbbcae91318d127b7c9b33b11e8fn/aRedyms193.189.127.121:443
2015-09-07 23:43:4596cbe449b3dc40180eb6a10d84ab9870Virustotal results 3/57 (5.26%) Redyms46.151.252.174:443
2015-09-07 23:43:4596cbe449b3dc40180eb6a10d84ab9870Virustotal results 3/57 (5.26%) Redyms46.151.252.174:443
2015-09-07 11:25:02c70b4cd4393567a482344a2447f9b79eVirustotal results 2/57 (3.51%) Redyms93.76.64.117:443
2015-09-07 11:25:02c70b4cd4393567a482344a2447f9b79eVirustotal results 2/57 (3.51%) Redyms93.76.64.117:443
2015-09-06 21:04:41c368f1e3450798c4515c1b716bbc921en/aRedyms176.98.20.110:443
2015-09-06 21:04:41c368f1e3450798c4515c1b716bbc921en/aRedyms176.98.20.110:443
2015-09-06 18:44:46f86956f8d18373e2d39b3a149f443ee9Virustotal results 2/57 (3.51%) Redyms79.113.93.158:443
2015-09-06 18:44:46f86956f8d18373e2d39b3a149f443ee9Virustotal results 2/57 (3.51%) Redyms79.113.93.158:443
2015-09-06 03:52:0208da7606f827b5b4f67ed996bea92d2fn/aRedyms46.119.89.198:443
2015-09-06 03:52:0208da7606f827b5b4f67ed996bea92d2fn/aRedyms46.119.89.198:443
2015-09-05 16:07:042395d82a77a020ce859616568999e172Virustotal results 4/56 (7.14%) Redyms31.128.83.65:443
2015-09-05 16:07:042395d82a77a020ce859616568999e172Virustotal results 4/56 (7.14%) Redyms31.128.83.65:443
2015-09-03 05:08:02d1adb248804ab40dcf8f838319ecd2dfVirustotal results 5/57 (8.77%) Redyms78.30.193.128:443
2015-09-03 05:08:02d1adb248804ab40dcf8f838319ecd2dfVirustotal results 5/57 (8.77%) Redyms78.30.193.128:443
2015-09-03 01:51:33cc12ed5954e2369b4cded6ce1c4457f7Virustotal results 6/57 (10.53%) Redyms46.151.250.192:443
2015-09-03 01:51:33cc12ed5954e2369b4cded6ce1c4457f7Virustotal results 6/57 (10.53%) Redyms46.151.250.192:443
2015-09-01 17:33:590471dfac3512f6539e2360ae40223922Virustotal results 12/57 (21.05%) ZeuS 46.211.42.123:443
2015-09-01 17:33:590471dfac3512f6539e2360ae40223922Virustotal results 12/57 (21.05%) ZeuS 46.211.42.123:443
2015-09-01 13:20:540437b36057f5e5bba0fea65b94ca6f26n/aRedyms67.161.171.204:443
2015-09-01 13:20:540437b36057f5e5bba0fea65b94ca6f26n/aRedyms67.161.171.204:443
2015-08-31 08:38:597d2d3d12aa5a5209cf8be80d7d7919adn/aRedyms192.0.198.51:443
2015-08-31 08:38:597d2d3d12aa5a5209cf8be80d7d7919adn/aRedyms192.0.198.51:443
2015-08-31 06:50:22107747a6c0efb89cc0be85ba53e10871Virustotal results 11/57 (19.30%) Redyms125.134.125.208:443
2015-08-31 06:50:22107747a6c0efb89cc0be85ba53e10871Virustotal results 11/57 (19.30%) Redyms125.134.125.208:443
2015-08-29 15:05:02e6695ce4f928b771aee779695a5f1692n/aRedyms77.109.58.97:443
2015-08-29 15:05:02e6695ce4f928b771aee779695a5f1692n/aRedyms77.109.58.97:443
2015-08-29 14:31:548440d64816c4038d3675faee4b1c137cVirustotal results 33/57 (57.89%) ZeuS 46.146.2.34:443
2015-08-29 14:31:548440d64816c4038d3675faee4b1c137cVirustotal results 33/57 (57.89%) ZeuS 46.146.2.34:443
2015-08-29 13:09:252cf4f7cb6e4306da699846ba6ea04053n/aRedyms46.211.18.203:443
2015-08-29 13:09:252cf4f7cb6e4306da699846ba6ea04053n/aRedyms46.211.18.203:443
2015-08-29 07:34:36c9582bc11ebf406eb617985b07fb9939Virustotal results 0/56 (0.00%) ZeuS 212.80.56.118:443
2015-08-29 07:34:36c9582bc11ebf406eb617985b07fb9939Virustotal results 0/56 (0.00%) ZeuS 212.80.56.118:443
2015-08-29 01:27:5798e384ce4cf26b92e4169e62504d9a1fn/aRedyms134.249.65.209:443
2015-08-29 01:27:5798e384ce4cf26b92e4169e62504d9a1fn/aRedyms134.249.65.209:443
2015-08-28 11:01:38c18c8e12f293a352e2be3bcf905c3f5fn/aRedyms62.84.255.35:443
2015-08-28 11:01:38c18c8e12f293a352e2be3bcf905c3f5fn/aRedyms62.84.255.35:443
2015-08-28 04:59:33ddc7279f05b4154eec789709e7b0f641Virustotal results 0/57 (0.00%) ZeuS 37.229.211.121:443
2015-08-28 04:59:33ddc7279f05b4154eec789709e7b0f641Virustotal results 0/57 (0.00%) ZeuS 37.229.211.121:443
2015-08-28 02:44:29eb86a34b50b3f779caa14320bbc133e0Virustotal results 25/57 (43.86%) ZeuS 31.43.102.34:443
2015-08-28 02:44:29eb86a34b50b3f779caa14320bbc133e0Virustotal results 25/57 (43.86%) ZeuS 31.43.102.34:443
2015-08-27 21:48:43c0787e02e963bde156c2f57f6ab6c2e6Virustotal results 7/57 (12.28%) Redyms24.122.211.18:443
2015-08-27 21:48:43c0787e02e963bde156c2f57f6ab6c2e6Virustotal results 7/57 (12.28%) Redyms24.122.211.18:443
2015-08-27 18:11:408b40a594f990c0bafba35f70325747b1n/aRedyms176.104.75.5:443
2015-08-27 18:11:408b40a594f990c0bafba35f70325747b1n/aRedyms176.104.75.5:443
2015-08-27 13:39:3002323a339a99853e6d069c74a53a6645Virustotal results 11/57 (19.30%) ZeuS 81.162.67.208:443
2015-08-27 13:39:3002323a339a99853e6d069c74a53a6645Virustotal results 11/57 (19.30%) ZeuS 81.162.67.208:443
2015-08-27 11:24:213157a0870ed0355dbced341ca6748c83n/aZeuS 93.127.119.6:443
2015-08-27 11:24:213157a0870ed0355dbced341ca6748c83n/aZeuS 93.127.119.6:443
2015-08-27 05:03:55de04234f4b21a9f1d382369293182c0bn/aZeuS 85.114.216.12:443
2015-08-27 05:03:55de04234f4b21a9f1d382369293182c0bn/aZeuS 85.114.216.12:443
2015-08-27 04:50:515ced6a8db9c334c9be4831eeb12645f8n/aRedyms46.119.173.111:443
2015-08-27 04:50:515ced6a8db9c334c9be4831eeb12645f8n/aRedyms46.119.173.111:443
2015-08-26 22:03:24b1b2f59dae220cef9e991371759be32cn/aZeuS 178.158.203.91:443
2015-08-26 22:03:24b1b2f59dae220cef9e991371759be32cn/aZeuS 178.158.203.91:443
2015-08-26 19:04:43d23103e382d67bfa8ca1d6dd5b00e7ecVirustotal results 0/57 (0.00%) Redyms109.86.210.227:443
2015-08-26 19:04:43d23103e382d67bfa8ca1d6dd5b00e7ecVirustotal results 0/57 (0.00%) Redyms109.86.210.227:443
2015-08-26 08:28:438bc4ae0eb534d56ed1ea6d6340f0beb4n/aRedyms178.151.24.112:443
2015-08-26 08:28:438bc4ae0eb534d56ed1ea6d6340f0beb4n/aRedyms178.151.24.112:443
2015-08-26 05:38:52d6e15cf3e19dd106b1e54fe5a23437efVirustotal results 2/57 (3.51%) Redyms93.126.104.254:443
2015-08-26 05:38:52d6e15cf3e19dd106b1e54fe5a23437efVirustotal results 2/57 (3.51%) Redyms93.126.104.254:443
2015-08-25 19:41:47bd074c41cd757bbf54f2cfc1c3630286n/aRedyms178.158.148.195:443
2015-08-25 19:41:47bd074c41cd757bbf54f2cfc1c3630286n/aRedyms178.158.148.195:443
2015-08-25 18:25:27bff0f9972f83b298c66ac71f3a2a5bcdVirustotal results 2/56 (3.57%) Redyms31.202.213.206:443
2015-08-25 18:25:27bff0f9972f83b298c66ac71f3a2a5bcdVirustotal results 2/56 (3.57%) Redyms31.202.213.206:443
2015-08-25 16:28:31dd699ec220c64d9e2c353c31105f0041n/aRedyms5.248.55.58:443
2015-08-25 16:28:31dd699ec220c64d9e2c353c31105f0041n/aRedyms5.248.55.58:443
2015-08-23 14:31:474d860c331cff0a4af605e3d4f9d64174Virustotal results 2/57 (3.51%) Redyms188.231.147.199:443
2015-08-23 14:31:474d860c331cff0a4af605e3d4f9d64174Virustotal results 2/57 (3.51%) Redyms188.231.147.199:443
2015-08-23 10:14:22ca31f1f114f278de22bbfa08b4fc150fVirustotal results 3/57 (5.26%) Redyms37.229.220.249:443
2015-08-23 10:14:22ca31f1f114f278de22bbfa08b4fc150fVirustotal results 3/57 (5.26%) Redyms37.229.220.249:443

# of entries: 100 (max: 100)