SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 63fa4b1257cf187deed052b0970f2de2e5925426.

Database Entry


SHA1 Fingerprint:63fa4b1257cf187deed052b0970f2de2e5925426
Certificate Common Name (CN):116.203.13.148
Issuer Distinguished Name (DN):116.203.13.148
TLS Version:TLS 1.2
First seen:2025-08-21 15:32:02 UTC
Last seen:2025-08-22 09:14:31 UTC
Status:Blacklisted
Listing reason:Vidar C&C
Listing date:2025-08-22 14:40:44
Malware samples:4
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2025-08-22 09:14:31e2a8c347caacc48e67cb354ed5a7330dn/a116.203.13.148:443
2025-08-22 08:40:22d88c583edcdf4c601ef2ad982062813fn/a116.203.13.148:443
2025-08-22 00:51:3899d6c2dedacf6d7e2f4d8e16dce67231n/a116.203.13.148:443
2025-08-21 15:32:020c90c5a315b8b8ee47fe719cd2f95f9en/a116.203.13.148:443

# of entries: 4 (max: 100)