SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 63fa4b1257cf187deed052b0970f2de2e5925426.
Database Entry
| SHA1 Fingerprint: | 63fa4b1257cf187deed052b0970f2de2e5925426 |
|---|---|
| Certificate Common Name (CN): | 116.203.13.148 |
| Issuer Distinguished Name (DN): | 116.203.13.148 |
| TLS Version: | TLS 1.2 |
| First seen: | 2025-08-21 15:32:02 UTC |
| Last seen: | 2025-08-22 09:14:31 UTC |
| Status: | Blacklisted |
| Listing reason: | Vidar C&C |
| Listing date: | 2025-08-22 14:40:44 |
| Malware samples: | 4 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2025-08-22 09:14:31 | e2a8c347caacc48e67cb354ed5a7330d | n/a | 116.203.13.148:443 | |
| 2025-08-22 08:40:22 | d88c583edcdf4c601ef2ad982062813f | n/a | 116.203.13.148:443 | |
| 2025-08-22 00:51:38 | 99d6c2dedacf6d7e2f4d8e16dce67231 | n/a | 116.203.13.148:443 | |
| 2025-08-21 15:32:02 | 0c90c5a315b8b8ee47fe719cd2f95f9e | n/a | 116.203.13.148:443 |
# of entries: 4 (max: 100)