SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 66be36b5b3c7a9cc91d5149706bb5cd3b7b305c7.
Database Entry
| SHA1 Fingerprint: | 66be36b5b3c7a9cc91d5149706bb5cd3b7b305c7 |
|---|---|
| Certificate Common Name (CN): | 49.12.114.15 |
| Issuer Distinguished Name (DN): | 49.12.114.15 |
| TLS Version: | TLS 1.2 |
| First seen: | 2024-01-08 21:07:55 UTC |
| Last seen: | 2024-01-12 01:22:50 UTC |
| Status: | Blacklisted |
| Listing reason: | Malware C&C |
| Listing date: | 2024-01-12 10:46:26 |
| Malware samples: | 15 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2024-01-12 01:22:50 | 82bea9da33e7271bac4dd7d14b626774 | n/a | Ransomware.Stop | 49.12.114.15:10220 |
| 2024-01-11 20:52:54 | 651c2a294e8fb564a110876b9b683ed1 | n/a | Smoke Loader | 49.12.114.15:10220 |
| 2024-01-11 20:40:21 | 124adf237451ea720d1bbfc144d8fc4e |  27 / 69 (39.13%)
| Stealc | 49.12.114.15:10220 |
| 2024-01-11 18:57:48 | 8dd4414293155efe977a5e0827798c39 | 27 / 69 (39.13%)
| 49.12.114.15:10220 | |
| 2024-01-11 17:17:37 | b8cc0350767e8e8ffb0e50c92aa3b651 | n/a | Stealc | 49.12.114.15:10220 |
| 2024-01-11 09:25:46 | d1a6f9be6f046fcdd20d871cec0e1a42 | 20 / 68 (29.41%)
| Vidar | 49.12.114.15:10220 |
| 2024-01-11 08:35:59 | 2ea565bc6df36a9fa3b9fedb987a74b8 | n/a | Stealc | 49.12.114.15:10220 |
| 2024-01-11 07:06:21 | ae55ff8911f552d42878a93677cff2cc | n/a | Stealc | 49.12.114.15:10220 |
| 2024-01-10 22:02:45 | ca106182fc4543131ef128b77f57c70a | 28 / 68 (41.18%)
| Ransomware.Stop | 49.12.114.15:10220 |
| 2024-01-10 21:44:47 | b2677b893707d7638d34ad05d7f3fb3b | 25 / 68 (36.76%)
| Socks5Systemz | 49.12.114.15:10220 |
| 2024-01-10 11:12:49 | db865e68d402a51a0d2cf4e36847e94d | n/a | Socks5Systemz | 49.12.114.15:10220 |
| 2024-01-10 00:55:49 | de068698ff72064b2868ac938c8c2b0c | n/a | Socks5Systemz | 49.12.114.15:10220 |
| 2024-01-09 12:15:25 | 55cc830f41f9e74fbcfe2259d304c99b | n/a | Stealc | 49.12.114.15:10220 |
| 2024-01-08 23:25:43 | 9c3de6a15dbac7befa3414f812912c90 | 22 / 55 (40.00%)
| Stealc | 49.12.114.15:10220 |
| 2024-01-08 21:07:55 | bebfbe9470a922c295de4bfc642e1652 | 29 / 68 (42.65%)
| Stealc | 49.12.114.15:10220 |
# of entries: 15 (max: 100)