SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 6d80e296c12cf9e60ca623f43ea935903cb73cb8.
Database Entry
| SHA1 Fingerprint: | 6d80e296c12cf9e60ca623f43ea935903cb73cb8 |
|---|---|
| Certificate Common Name (CN): | Lozrfykrd |
| Issuer Distinguished Name (DN): | Lozrfykrd |
| TLS Version: | TLSv1 |
| First seen: | 2025-07-12 00:46:16 UTC |
| Last seen: | 2025-08-18 18:12:47 UTC |
| Status: | Blacklisted |
| Listing reason: | ResolverRAT C&C |
| Listing date: | 2025-07-12 19:20:40 |
| Malware samples: | 8 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2025-08-18 18:12:47 | f970a2439a51c3ac1136da4e37817d3e | n/a | 118.107.40.167:56001 | |
| 2025-08-17 03:11:12 | 5f5f1a3128222e3ccd9f1ff3b068b426 | n/a | 118.107.40.167:56001 | |
| 2025-08-08 13:16:02 | 67e34f8cdc6aa6a34207cd59c10ab6b1 | n/a | 118.107.40.167:56001 | |
| 2025-08-07 18:45:39 | 2e440081d46bc282989aa953a68dde4a | n/a | 118.107.40.167:56001 | |
| 2025-08-07 18:35:18 | 288c502fa9505ea75386f2e4199ffa5b | n/a | 118.107.40.167:56001 | |
| 2025-08-04 11:31:32 | 3cda96605373ba4f9f473b8e3c3d0b9b | n/a | 118.107.40.167:56001 | |
| 2025-07-13 08:31:57 | 71b6684f94209c46ad67b493a83f23ad | n/a | 118.107.40.167:56001 | |
| 2025-07-12 00:46:16 | 56a763ade2e3033302a9db2a846999cd | n/a | 118.107.40.167:56001 |
# of entries: 8 (max: 100)