SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 69d69d6deec4efa2c8ea37698d1570b6a03cce0a.

Database Entry

SHA1 Fingerprint:	69d69d6deec4efa2c8ea37698d1570b6a03cce0a
Certificate Common Name (CN):	fg2eq34df
Issuer Distinguished Name (DN):	fg2eq34df
TLS Version:	TLS 1.2
First seen:	2016-08-29 00:51:13 UTC
Last seen:	2016-10-31 10:40:05 UTC
Status:	Blacklisted
Listing reason:	TrickBot C&C
Listing date:	2016-10-31 10:11:39
Malware samples:	14
Botnet C&Cs:	1

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2016-10-31 10:40:05	d58cd6a8d6632edcb6d9354fb094d395	26/46 (56.52%)	TrickBot	80.79.114.179:443
2016-10-31 10:40:05	d58cd6a8d6632edcb6d9354fb094d395	26/46 (56.52%)	TrickBot	80.79.114.179:443
2016-10-31 10:40:05	d58cd6a8d6632edcb6d9354fb094d395	26/46 (56.52%)	TrickBot	80.79.114.179:443
2016-10-31 10:40:05	d58cd6a8d6632edcb6d9354fb094d395	26/46 (56.52%)	TrickBot	80.79.114.179:443
2016-10-31 05:42:26	a2968a42c8714aebfea34e7e26e01d6a	35/57 (61.40%)	TrickBot	80.79.114.179:443
2016-10-31 05:42:26	a2968a42c8714aebfea34e7e26e01d6a	35/57 (61.40%)	TrickBot	80.79.114.179:443
2016-10-31 05:42:26	a2968a42c8714aebfea34e7e26e01d6a	35/57 (61.40%)	TrickBot	80.79.114.179:443
2016-10-31 05:42:26	a2968a42c8714aebfea34e7e26e01d6a	35/57 (61.40%)	TrickBot	80.79.114.179:443
2016-10-31 00:03:35	104923556ace17b4f1e52a50be7a8ea0	10/56 (17.86%)	TrickBot	80.79.114.179:443
2016-10-31 00:03:35	104923556ace17b4f1e52a50be7a8ea0	10/56 (17.86%)	TrickBot	80.79.114.179:443
2016-10-31 00:03:35	104923556ace17b4f1e52a50be7a8ea0	10/56 (17.86%)	TrickBot	80.79.114.179:443
2016-10-31 00:03:35	104923556ace17b4f1e52a50be7a8ea0	10/56 (17.86%)	TrickBot	80.79.114.179:443
2016-10-28 02:59:26	61a5ab379e4ef65f61a1fa2e5ef218fa	46/56 (82.14%)	TrickBot	80.79.114.179:443
2016-10-28 02:59:26	61a5ab379e4ef65f61a1fa2e5ef218fa	46/56 (82.14%)	TrickBot	80.79.114.179:443
2016-10-28 02:59:26	61a5ab379e4ef65f61a1fa2e5ef218fa	46/56 (82.14%)	TrickBot	80.79.114.179:443
2016-10-28 02:59:26	61a5ab379e4ef65f61a1fa2e5ef218fa	46/56 (82.14%)	TrickBot	80.79.114.179:443
2016-10-28 01:12:40	c1ff67039ef2f99ab9977c6d148c4a74	46/56 (82.14%)	TrickBot	80.79.114.179:443
2016-10-28 01:12:40	c1ff67039ef2f99ab9977c6d148c4a74	46/56 (82.14%)	TrickBot	80.79.114.179:443
2016-10-28 01:12:40	c1ff67039ef2f99ab9977c6d148c4a74	46/56 (82.14%)	TrickBot	80.79.114.179:443
2016-10-28 01:12:40	c1ff67039ef2f99ab9977c6d148c4a74	46/56 (82.14%)	TrickBot	80.79.114.179:443
2016-10-23 23:12:31	fe99e479244c6dddf0104923d1b52ef0	37/57 (64.91%)	TrickBot	80.79.114.179:443
2016-10-23 23:12:31	fe99e479244c6dddf0104923d1b52ef0	37/57 (64.91%)	TrickBot	80.79.114.179:443
2016-10-23 23:12:31	fe99e479244c6dddf0104923d1b52ef0	37/57 (64.91%)	TrickBot	80.79.114.179:443
2016-10-23 23:12:31	fe99e479244c6dddf0104923d1b52ef0	37/57 (64.91%)	TrickBot	80.79.114.179:443
2016-10-23 19:45:27	b6551acb6de46a0d8f9d92d577b978f1	9/56 (16.07%)	TrickBot	80.79.114.179:443
2016-10-23 19:45:27	b6551acb6de46a0d8f9d92d577b978f1	9/56 (16.07%)	TrickBot	80.79.114.179:443
2016-10-23 19:45:27	b6551acb6de46a0d8f9d92d577b978f1	9/56 (16.07%)	TrickBot	80.79.114.179:443
2016-10-23 19:45:27	b6551acb6de46a0d8f9d92d577b978f1	9/56 (16.07%)	TrickBot	80.79.114.179:443
2016-10-23 16:50:05	fc431f69760c598098f34eec337c8415	36/57 (63.16%)	TrickBot	80.79.114.179:443
2016-10-23 16:50:05	fc431f69760c598098f34eec337c8415	36/57 (63.16%)	TrickBot	80.79.114.179:443
2016-10-23 16:50:05	fc431f69760c598098f34eec337c8415	36/57 (63.16%)	TrickBot	80.79.114.179:443
2016-10-23 16:50:05	fc431f69760c598098f34eec337c8415	36/57 (63.16%)	TrickBot	80.79.114.179:443
2016-10-22 21:28:12	c4ea8104af713582afb76f773a037f28	32/57 (56.14%)	TrickBot	80.79.114.179:443
2016-10-22 21:28:12	c4ea8104af713582afb76f773a037f28	32/57 (56.14%)	TrickBot	80.79.114.179:443
2016-10-22 21:28:12	c4ea8104af713582afb76f773a037f28	32/57 (56.14%)	TrickBot	80.79.114.179:443
2016-10-22 21:28:12	c4ea8104af713582afb76f773a037f28	32/57 (56.14%)	TrickBot	80.79.114.179:443
2016-10-18 09:35:15	f24384228fb49f9271762253b0733123	22/56 (39.29%)	TrickBot	80.79.114.179:443
2016-10-18 09:35:15	f24384228fb49f9271762253b0733123	22/56 (39.29%)	TrickBot	80.79.114.179:443
2016-10-18 09:35:15	f24384228fb49f9271762253b0733123	22/56 (39.29%)	TrickBot	80.79.114.179:443
2016-10-18 09:35:15	f24384228fb49f9271762253b0733123	22/56 (39.29%)	TrickBot	80.79.114.179:443
2016-10-16 05:09:48	d8e61a4b91874956780252c4061dd513	39/56 (69.64%)	TrickBot	80.79.114.179:443
2016-10-16 05:09:48	d8e61a4b91874956780252c4061dd513	39/56 (69.64%)	TrickBot	80.79.114.179:443
2016-10-16 05:09:48	d8e61a4b91874956780252c4061dd513	39/56 (69.64%)	TrickBot	80.79.114.179:443
2016-10-16 05:09:48	d8e61a4b91874956780252c4061dd513	39/56 (69.64%)	TrickBot	80.79.114.179:443
2016-10-13 11:17:37	f26649fc31ede7594b18f8cd7cdbbc15	44/57 (77.19%)	TrickBot	80.79.114.179:443
2016-10-13 11:17:37	f26649fc31ede7594b18f8cd7cdbbc15	44/57 (77.19%)	TrickBot	80.79.114.179:443
2016-10-13 11:17:37	f26649fc31ede7594b18f8cd7cdbbc15	44/57 (77.19%)	TrickBot	80.79.114.179:443
2016-10-13 11:17:37	f26649fc31ede7594b18f8cd7cdbbc15	44/57 (77.19%)	TrickBot	80.79.114.179:443
2016-10-02 21:21:23	6a03c9ec2f71ec72ef87895e8313efdd	31/57 (54.39%)	TrickBot	80.79.114.179:443
2016-10-02 21:21:23	6a03c9ec2f71ec72ef87895e8313efdd	31/57 (54.39%)	TrickBot	80.79.114.179:443
2016-10-02 21:21:23	6a03c9ec2f71ec72ef87895e8313efdd	31/57 (54.39%)	TrickBot	80.79.114.179:443
2016-10-02 21:21:23	6a03c9ec2f71ec72ef87895e8313efdd	31/57 (54.39%)	TrickBot	80.79.114.179:443
2016-08-29 00:51:13	38503c00be6b7f7eeb5076c0bd071b4c	29/52 (55.77%)	TrickBot	80.79.114.179:443
2016-08-29 00:51:13	38503c00be6b7f7eeb5076c0bd071b4c	29/52 (55.77%)	TrickBot	80.79.114.179:443
2016-08-29 00:51:13	38503c00be6b7f7eeb5076c0bd071b4c	29/52 (55.77%)	TrickBot	80.79.114.179:443
2016-08-29 00:51:13	38503c00be6b7f7eeb5076c0bd071b4c	29/52 (55.77%)	TrickBot	80.79.114.179:443

# of entries: 56 (max: 100)