SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 65a77d36d1b53665f60d19718924504f7d3f9508.

Database Entry

SHA1 Fingerprint:	65a77d36d1b53665f60d19718924504f7d3f9508
Certificate Common Name (CN):	server265
Issuer Distinguished Name (DN):	server265
TLS Version:	SSLv3
First seen:	2014-04-27 14:08:58 UTC
Last seen:	2014-08-15 13:17:09 UTC
Status:	Blacklisted
Listing reason:	KINS C&C
Listing date:	2014-05-04 08:10:50
Malware samples:	49
Botnet C&Cs:	13

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2014-08-15 13:17:09	f4b7e3cd10f27f53a8d5ae17a0c9ddf8	16/54 (29.63%)	ZeuS	109.163.233.151:443
2014-08-15 13:17:09	f4b7e3cd10f27f53a8d5ae17a0c9ddf8	16/54 (29.63%)	ZeuS	109.163.233.151:443
2014-08-14 13:00:42	feaac9fef15d78a04691f9e09189a178	6/52 (11.54%)	ZeuS	185.10.57.158:443
2014-08-14 13:00:42	feaac9fef15d78a04691f9e09189a178	6/52 (11.54%)	ZeuS	185.10.57.158:443
2014-08-14 06:02:06	b4a2afab74638628c013780352b5776d	31/54 (57.41%)	ZeuS	185.10.57.158:443
2014-08-14 06:02:06	b4a2afab74638628c013780352b5776d	31/54 (57.41%)	ZeuS	185.10.57.158:443
2014-08-13 21:14:47	a18c613574ba3ce9bd318c7235eefdf7	6/54 (11.11%)	ZeuS	208.76.52.36:443
2014-08-13 21:14:47	a18c613574ba3ce9bd318c7235eefdf7	6/54 (11.11%)	ZeuS	208.76.52.36:443
2014-08-01 22:12:37	a5f784e335b6a9dbf05a94bd682e769e	2/54 (3.70%)	ZeuS	31.192.105.57:443
2014-08-01 22:12:37	a5f784e335b6a9dbf05a94bd682e769e	2/54 (3.70%)	ZeuS	31.192.105.57:443
2014-07-30 09:59:41	c174542652f9a2824980e54d74cda806	16/54 (29.63%)	ZeuS	208.76.52.36:443
2014-07-30 09:59:41	c174542652f9a2824980e54d74cda806	16/54 (29.63%)	ZeuS	208.76.52.36:443
2014-07-29 21:28:33	d5a7aef1a111c8cbf2715add5c161fb2	16/54 (29.63%)	ZeuS	108.61.51.174:443
2014-07-29 21:28:33	d5a7aef1a111c8cbf2715add5c161fb2	16/54 (29.63%)	ZeuS	108.61.51.174:443
2014-07-29 19:49:06	184df1b1cc54112e5b626e82c129e2f6	13/52 (25.00%)	ZeuS	208.76.52.36:443
2014-07-29 19:49:06	184df1b1cc54112e5b626e82c129e2f6	13/52 (25.00%)	ZeuS	208.76.52.36:443
2014-07-29 14:05:39	cd94ba57f1019efb2fe4a7c2025da24b	16/54 (29.63%)	ZeuS	108.61.51.174:443
2014-07-29 14:05:39	cd94ba57f1019efb2fe4a7c2025da24b	16/54 (29.63%)	ZeuS	108.61.51.174:443
2014-07-29 09:01:09	9091975e231afd9e8944d659cb4e9153	4/53 (7.55%)	ZeuS	208.76.52.36:443
2014-07-29 09:01:09	9091975e231afd9e8944d659cb4e9153	4/53 (7.55%)	ZeuS	208.76.52.36:443
2014-07-29 03:23:28	5a03ee668bab69dc3a8a08355a63e8ea	19/54 (35.19%)	ZeuS	208.76.52.36:443
2014-07-29 03:23:28	5a03ee668bab69dc3a8a08355a63e8ea	19/54 (35.19%)	ZeuS	208.76.52.36:443
2014-07-29 01:34:55	789a5526c21925bca508eeceb52124f0	19/54 (35.19%)	ZeuS	208.76.52.36:443
2014-07-29 01:34:55	789a5526c21925bca508eeceb52124f0	19/54 (35.19%)	ZeuS	208.76.52.36:443
2014-07-29 01:31:05	6d048fc1ebc9fc937b0cac36d722c4e0	13/53 (24.53%)	ZeuS	208.76.52.36:443
2014-07-29 01:31:05	6d048fc1ebc9fc937b0cac36d722c4e0	13/53 (24.53%)	ZeuS	208.76.52.36:443
2014-07-27 22:30:23	6db18ffc1498eae402eeb670b5d6cc04	19/54 (35.19%)	ZeuS	108.61.51.174:443
2014-07-27 22:30:23	6db18ffc1498eae402eeb670b5d6cc04	19/54 (35.19%)	ZeuS	108.61.51.174:443
2014-07-25 16:38:35	2488f56b022a3a0b98a9e1979cb0c203	24/52 (46.15%)	ZeuS	5.39.222.155:443
2014-07-25 16:38:35	2488f56b022a3a0b98a9e1979cb0c203	24/52 (46.15%)	ZeuS	5.39.222.155:443
2014-07-09 13:49:24	2e202421f204fc0c543604530d30acca	32/54 (59.26%)	ZeuS	31.192.105.57:443
2014-07-09 13:49:24	2e202421f204fc0c543604530d30acca	32/54 (59.26%)	ZeuS	31.192.105.57:443
2014-06-15 00:34:54	a7a2332307021a4de89495d3eb3a7435	22/53 (41.51%)	ZeuS	37.59.47.74:443
2014-06-15 00:34:54	a7a2332307021a4de89495d3eb3a7435	22/53 (41.51%)	ZeuS	37.59.47.74:443
2014-06-08 06:59:55	d082a5252c1610890e652c129af3107e	6/52 (11.54%)	ZeuS	37.59.47.74:443
2014-06-08 06:59:55	d082a5252c1610890e652c129af3107e	6/52 (11.54%)	ZeuS	37.59.47.74:443
2014-06-06 15:59:44	c45d7f40c43b7b5c6c46c9b3d4c2e445	19/52 (36.54%)	ZeuS	192.161.182.214:443
2014-06-06 15:59:44	c45d7f40c43b7b5c6c46c9b3d4c2e445	19/52 (36.54%)	ZeuS	192.161.182.214:443
2014-05-30 07:57:50	1a315c3eef2fe11d9a7e661538aa4cf7	5/52 (9.62%)	ZeuS	192.161.182.178:443
2014-05-30 07:57:50	1a315c3eef2fe11d9a7e661538aa4cf7	5/52 (9.62%)	ZeuS	192.161.182.178:443
2014-05-30 05:01:16	3072316bf64dee31a0927ba8569ce712	20/53 (37.74%)	ZeuS	37.59.47.74:443
2014-05-30 05:01:16	3072316bf64dee31a0927ba8569ce712	20/53 (37.74%)	ZeuS	37.59.47.74:443
2014-05-29 16:52:22	843046eb1404a49910ab433424d64c6b	25/53 (47.17%)	ZeuS	192.161.182.178:443
2014-05-29 16:52:22	843046eb1404a49910ab433424d64c6b	25/53 (47.17%)	ZeuS	192.161.182.178:443
2014-05-29 01:54:13	b89a3fa96c68c54cdd9ffd18f4043fe7	9/53 (16.98%)	ZeuS	37.59.47.74:443
2014-05-29 01:54:13	b89a3fa96c68c54cdd9ffd18f4043fe7	9/53 (16.98%)	ZeuS	37.59.47.74:443
2014-05-26 17:27:54	3f4920a60c97f84aee3e55ebaae996a8	18/52 (34.62%)	ZeuS	5.39.222.190:443
2014-05-26 17:27:54	3f4920a60c97f84aee3e55ebaae996a8	18/52 (34.62%)	ZeuS	5.39.222.190:443
2014-05-22 00:59:49	f9e27e716a37b8d3da4f98b466a72f31	24/53 (45.28%)	ZeuS	5.39.222.190:443
2014-05-22 00:59:49	f9e27e716a37b8d3da4f98b466a72f31	24/53 (45.28%)	ZeuS	5.39.222.190:443
2014-05-18 12:32:20	ff60783ae9bd53fbd8ac55d2cac51d22	22/51 (43.14%)	ZeuS	5.39.222.254:443
2014-05-18 12:32:20	ff60783ae9bd53fbd8ac55d2cac51d22	22/51 (43.14%)	ZeuS	5.39.222.254:443
2014-05-18 10:24:11	d7e322ac13f4546fc0fc9a78630c4273	36/54 (66.67%)	ZeuS	85.25.153.9:443
2014-05-18 10:24:11	d7e322ac13f4546fc0fc9a78630c4273	36/54 (66.67%)	ZeuS	85.25.153.9:443
2014-05-16 08:19:00	b33ffc7b39380023f9f67e6ddf86bd02	3/52 (5.77%)	ZeuS	5.39.222.254:443
2014-05-16 08:19:00	b33ffc7b39380023f9f67e6ddf86bd02	3/52 (5.77%)	ZeuS	5.39.222.254:443
2014-05-15 19:38:46	7bfc781c3a17178d0a45beeb9a67f977	23/53 (43.40%)	ZeuS	5.39.222.254:443
2014-05-15 19:38:46	7bfc781c3a17178d0a45beeb9a67f977	23/53 (43.40%)	ZeuS	5.39.222.254:443
2014-05-14 08:50:52	ff55adb88654e99e648cd53a7ac90c0c	26/52 (50.00%)	ZeuS	5.39.222.254:443
2014-05-14 08:50:52	ff55adb88654e99e648cd53a7ac90c0c	26/52 (50.00%)	ZeuS	5.39.222.254:443
2014-05-11 08:39:29	0fac9e558d8e97cfcdda01b6befabb24	15/50 (30.00%)	ZeuS	5.39.222.254:443
2014-05-11 08:39:29	0fac9e558d8e97cfcdda01b6befabb24	15/50 (30.00%)	ZeuS	5.39.222.254:443
2014-04-30 05:50:51	984ba7c9e572008b29d90b78af443e04	1/51 (1.96%)	ZeuS	5.39.222.254:443
2014-04-30 05:50:51	984ba7c9e572008b29d90b78af443e04	1/51 (1.96%)	ZeuS	5.39.222.254:443
2014-04-29 06:43:00	b0b9acf9b1b96aa1741a86988167a20c	29/51 (56.86%)	ZeuS	5.39.222.132:443
2014-04-29 06:43:00	b0b9acf9b1b96aa1741a86988167a20c	29/51 (56.86%)	ZeuS	5.39.222.132:443
2014-04-28 08:03:20	dcada4e3f12a0e95b675992e95c0bccb	4/51 (7.84%)	ZeuS	5.39.222.132:443
2014-04-28 08:03:20	dcada4e3f12a0e95b675992e95c0bccb	4/51 (7.84%)	ZeuS	5.39.222.132:443
2014-04-28 03:22:00	5d3c0e09d8cab61e5e42ee410a971e43	7/51 (13.73%)	ZeuS	5.39.222.254:443
2014-04-28 03:22:00	5d3c0e09d8cab61e5e42ee410a971e43	7/51 (13.73%)	ZeuS	5.39.222.254:443
2014-04-28 01:25:13	6d51b78115d25bca8cfd5d0a72a5f27b	27/50 (54.00%)		5.39.222.254:443
2014-04-28 01:25:13	6d51b78115d25bca8cfd5d0a72a5f27b	27/50 (54.00%)		5.39.222.254:443
2014-04-27 17:09:10	064a6f36c4d3f37e2eb44baa4f546865	6/51 (11.76%)	ZeuS	5.39.222.254:443
2014-04-27 17:09:10	064a6f36c4d3f37e2eb44baa4f546865	6/51 (11.76%)	ZeuS	5.39.222.254:443
2014-04-27 16:40:36	1b2d091bc28731a03398bed0cfe12b66	4/50 (8.00%)	ZeuS	5.39.222.254:443
2014-04-27 16:40:36	1b2d091bc28731a03398bed0cfe12b66	4/50 (8.00%)	ZeuS	5.39.222.254:443
2014-04-27 14:16:08	43c915678fc791d4a17fb2e494acb66a	8/51 (15.69%)		5.39.222.254:443
2014-04-27 14:16:08	43c915678fc791d4a17fb2e494acb66a	8/51 (15.69%)		5.39.222.254:443
2014-04-27 14:08:58	3125e67645b7778788293b4abf24c0ae	20/51 (39.22%)	ZeuS	5.39.222.254:443
2014-04-27 14:08:58	3125e67645b7778788293b4abf24c0ae	20/51 (39.22%)	ZeuS	5.39.222.254:443
2014-04-27 14:08:58	33bcd29912962720a44f4afc5bff1142	3/49 (6.12%)	ZeuS	5.39.222.254:443
2014-04-27 14:08:58	3e02d9edefd58db97b533d2aed058672	16/50 (32.00%)	ZeuS	5.39.222.254:443
2014-04-27 14:08:58	66b57d05411a2e63443217e3eac0dd10	8/51 (15.69%)	ZeuS	5.39.222.254:443
2014-04-27 14:08:58	7deb261c962bb9761e2531ec9aff35f9	5/51 (9.80%)	ZeuS	5.39.222.132:443
2014-04-27 14:08:58	8a90d62284672f22cc79b69881353f13	20/51 (39.22%)	ZeuS	5.39.222.254:443
2014-04-27 14:08:58	8b2115cd1b39d1f4da502eb889e3ea89	4/51 (7.84%)	ZeuS	5.39.222.254:443
2014-04-27 14:08:58	c6cb02415fa088ced052d2e30a728746	6/51 (11.76%)	ZeuS	5.39.222.254:443
2014-04-27 14:08:58	e4f9401da9fa56a8cbeea3838cff661d	4/51 (7.84%)	ZeuS	5.39.222.254:443
2014-04-27 14:08:58	efed342fe83b880174f91649dd39ab5f	2/51 (3.92%)	ZeuS	5.39.222.132:443
2014-04-27 14:08:58	efed342fe83b880174f91649dd39ab5f	2/51 (3.92%)	ZeuS	5.39.222.132:443
2014-04-27 14:08:58	33bcd29912962720a44f4afc5bff1142	3/49 (6.12%)	ZeuS	5.39.222.254:443
2014-04-27 14:08:58	3e02d9edefd58db97b533d2aed058672	16/50 (32.00%)	ZeuS	5.39.222.254:443
2014-04-27 14:08:58	66b57d05411a2e63443217e3eac0dd10	8/51 (15.69%)	ZeuS	5.39.222.254:443
2014-04-27 14:08:58	7deb261c962bb9761e2531ec9aff35f9	5/51 (9.80%)	ZeuS	5.39.222.132:443
2014-04-27 14:08:58	8a90d62284672f22cc79b69881353f13	20/51 (39.22%)	ZeuS	5.39.222.254:443
2014-04-27 14:08:58	8b2115cd1b39d1f4da502eb889e3ea89	4/51 (7.84%)	ZeuS	5.39.222.254:443
2014-04-27 14:08:58	c6cb02415fa088ced052d2e30a728746	6/51 (11.76%)	ZeuS	5.39.222.254:443
2014-04-27 14:08:58	e4f9401da9fa56a8cbeea3838cff661d	4/51 (7.84%)	ZeuS	5.39.222.254:443

# of entries: 98 (max: 100)