SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 6d80e296c12cf9e60ca623f43ea935903cb73cb8.

Database Entry


SHA1 Fingerprint:6d80e296c12cf9e60ca623f43ea935903cb73cb8
Certificate Common Name (CN):Lozrfykrd
Issuer Distinguished Name (DN):Lozrfykrd
TLS Version:TLSv1
First seen:2025-07-12 00:46:16 UTC
Last seen:2025-08-18 18:12:47 UTC
Status:Blacklisted
Listing reason:ResolverRAT C&C
Listing date:2025-07-12 19:20:40
Malware samples:8
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2025-08-18 18:12:47f970a2439a51c3ac1136da4e37817d3en/a118.107.40.167:56001
2025-08-17 03:11:125f5f1a3128222e3ccd9f1ff3b068b426n/a118.107.40.167:56001
2025-08-08 13:16:0267e34f8cdc6aa6a34207cd59c10ab6b1n/a118.107.40.167:56001
2025-08-07 18:45:392e440081d46bc282989aa953a68dde4an/a118.107.40.167:56001
2025-08-07 18:35:18288c502fa9505ea75386f2e4199ffa5bn/a118.107.40.167:56001
2025-08-04 11:31:323cda96605373ba4f9f473b8e3c3d0b9bn/a118.107.40.167:56001
2025-07-13 08:31:5771b6684f94209c46ad67b493a83f23adn/a118.107.40.167:56001
2025-07-12 00:46:1656a763ade2e3033302a9db2a846999cdn/a118.107.40.167:56001

# of entries: 8 (max: 100)