SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 657a3d402ab17751d6ad1b712a06f0fad3304380.
Database Entry
| SHA1 Fingerprint: | 657a3d402ab17751d6ad1b712a06f0fad3304380 |
|---|---|
| Certificate Common Name (CN): | DcRat |
| Issuer Distinguished Name (DN): | setup, OU=qwqdanchun, O=DcRat By qwqdanchun, L=SH, C=CN |
| TLS Version: | TLSv1 |
| First seen: | 2022-05-21 15:39:13 UTC |
| Last seen: | 2022-05-22 12:26:45 UTC |
| Status: | Blacklisted |
| Listing reason: | DCRat C&C |
| Listing date: | 2022-05-22 12:07:06 |
| Malware samples: | 2 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2022-05-22 12:26:45 | c5097921cf3eed2cd852ec49e30c1d4d |  31 / 68 (45.59%)
| 62.197.136.165:8080 | |
| 2022-05-21 15:39:13 | be08f9220d17f38314ab4844c572759d | 30 / 69 (43.48%)
| SnakeKeylogger | 62.197.136.165:8080 |
# of entries: 2 (max: 100)