SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 6485251de594ce6cd32fdc9ab686b0606e1f362f.
Database Entry
| SHA1 Fingerprint: | 6485251de594ce6cd32fdc9ab686b0606e1f362f |
|---|---|
| Certificate Common Name (CN): | ty.r.bluewave-shipping.com |
| Issuer Distinguished Name (DN): | E8 |
| TLS Version: | TLS 1.2 |
| First seen: | 2025-10-11 18:28:20 UTC |
| Last seen: | 2025-10-13 11:06:15 UTC |
| Status: | Blacklisted |
| Listing reason: | Vidar C&C |
| Listing date: | 2025-10-14 11:51:08 |
| Malware samples: | 24 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2025-10-13 11:06:15 | 368fac33415b63284d49643f498afb70 | n/a | 49.13.38.173:443 | |
| 2025-10-13 10:19:17 | b6ba170cb787448e1b5991c15463111e | n/a | 49.13.38.173:443 | |
| 2025-10-13 09:51:28 | fdfbd16f4ef3addaa6eedf5c57521627 | n/a | 49.13.38.173:443 | |
| 2025-10-13 09:42:51 | 3650aa66a16ff7589658a779f2e2ea4c | n/a | 49.13.38.173:443 | |
| 2025-10-13 08:36:00 | 84d1fd645a8dfad423134be6dacfcf3d | n/a | 49.13.38.173:443 | |
| 2025-10-13 06:36:49 | eba8f2aba2b5d020899f12a765941f91 | n/a | 49.13.38.173:443 | |
| 2025-10-13 05:38:12 | 282c473effbc201dc24ce74a80b12562 | n/a | 49.13.38.173:443 | |
| 2025-10-13 04:08:09 | 83dd82e5846579a38fa1702f34dc2d1d | n/a | 49.13.38.173:443 | |
| 2025-10-13 01:29:33 | 28486a2cd0870097e8670d78e564d628 | n/a | 49.13.38.173:443 | |
| 2025-10-12 23:28:30 | 7bd300d28c7e4151cc9e19f7b9802ca1 | n/a | 49.13.38.173:443 | |
| 2025-10-12 22:48:54 | 41bb7261fa72d67e84b87f6dd8611169 | n/a | 49.13.38.173:443 | |
| 2025-10-12 22:13:56 | 44dea592304f9cf7dc62570f8d3c1d61 | n/a | 49.13.38.173:443 | |
| 2025-10-12 20:14:18 | 56318f076f1b6154fac77267a283204f | n/a | 49.13.38.173:443 | |
| 2025-10-12 18:26:27 | 4a420f45502a311eb28cc24a0702e498 | n/a | 49.13.38.173:443 | |
| 2025-10-12 12:29:24 | 22869a1d2dd7d002007940d647d622dc | n/a | 49.13.38.173:443 | |
| 2025-10-12 10:44:10 | 5661b16e814c32d7c581fa04038afa04 | n/a | 49.13.38.173:443 | |
| 2025-10-12 08:16:05 | 93c29d63e895779120068db3c321aa98 | n/a | 49.13.38.173:443 | |
| 2025-10-12 06:51:19 | 901dc16637a0cde4fd2e17abc221dc5e | n/a | 49.13.38.173:443 | |
| 2025-10-12 06:48:42 | bc26adc121b1347ebee67ae2dc5fe616 | n/a | 49.13.38.173:443 | |
| 2025-10-12 01:57:07 | f723677e43deb2501f12b2536354209e | n/a | 49.13.38.173:443 | |
| 2025-10-11 22:05:35 | f555e3606f3e9d82b18ba2385e735585 | n/a | 49.13.38.173:443 | |
| 2025-10-11 18:48:20 | d03cb40fff8f2da555d4ddf2464af830 | n/a | 49.13.38.173:443 | |
| 2025-10-11 18:30:39 | 5dbdfbf0864c8ffff68eb9d2150e8943 | n/a | 49.13.38.173:443 | |
| 2025-10-11 18:28:20 | 1df7d7bd6a317187bae9961eec0bfef6 | n/a | 49.13.38.173:443 |
# of entries: 24 (max: 100)