SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 6d98de4aabc33bd10528b73b633ad49ce24f5704.

Database Entry


SHA1 Fingerprint:6d98de4aabc33bd10528b73b633ad49ce24f5704
Certificate Common Name (CN):localhost
Issuer Distinguished Name (DN):localhost
TLS Version:TLSv1
First seen:2015-07-03 17:28:03 UTC
Last seen:2015-08-10 21:06:46 UTC
Status:Blacklisted
Listing reason:VMZeuS C&C
Listing date:2015-07-29 07:06:55
Malware samples:5
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2015-08-10 21:06:4621448f88cc66f7247f52e3aaeb1169c4Virustotal results 3/55 (5.45%) ZeuS 211.230.11.228:443
2015-08-08 01:38:027fb5b8b09cee91fd7bf0116de3a072f4Virustotal results 2/56 (3.57%) ZeuS 211.230.11.228:443
2015-07-29 07:45:01ce0dc1ab104d69ef12337cb60e100501Virustotal results 38/56 (67.86%) ZeuS 211.230.11.228:443
2015-07-28 09:51:30b8f1927cb652dfa4d10dd23905a8b0d9Virustotal results 8/56 (14.29%) ZeuS 211.230.11.228:443
2015-07-03 17:28:035593aa66e1090867e2329ff9de3130f2Virustotal results 2/56 (3.57%) 211.230.11.228:443

# of entries: 5 (max: 100)