SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 62fea672d5bd77c0a9b6e7ea502e2216f0771f87.

Database Entry


SHA1 Fingerprint:62fea672d5bd77c0a9b6e7ea502e2216f0771f87
Certificate Common Name (CN):forenzik.kz
Issuer Distinguished Name (DN):forenzik.kz
TLS Version:TLS 1.2' NOTBEF
First seen:2021-05-20 08:15:15 UTC
Last seen:2021-05-20 10:36:39 UTC
Status:Blacklisted
Listing reason:BazaLoader C&C
Listing date:2021-05-20 13:52:12
Malware samples:3
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2021-05-20 10:36:39a2514fac953de1e31ece31471716c852Virustotal results 11 / 68 (16.18%) BazaLoader34.220.99.248:443
2021-05-20 10:36:39a2514fac953de1e31ece31471716c852Virustotal results 11 / 68 (16.18%) BazaLoader34.220.99.248:443
2021-05-20 08:35:4047cd8b6aae996f5510e5963b8fba3438Virustotal results 2 / 65 (3.08%) 34.220.99.248:443
2021-05-20 08:35:4047cd8b6aae996f5510e5963b8fba3438Virustotal results 2 / 65 (3.08%) 34.220.99.248:443
2021-05-20 08:15:1536f95f7e28e486ef9f48990e23a71ab0Virustotal results 16 / 68 (23.53%) BazaLoader34.220.99.248:443
2021-05-20 08:15:1536f95f7e28e486ef9f48990e23a71ab0Virustotal results 16 / 68 (23.53%) BazaLoader34.220.99.248:443

# of entries: 6 (max: 100)