SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 6d9c39e6b781fe482538f8ba564db4d7710d9af8.

Database Entry

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2020-05-12 14:35:41	addc83d3e15623184b49a05c88ad5106	43 / 70 (61.43%)		139.28.222.104:443
2020-05-12 14:35:41	addc83d3e15623184b49a05c88ad5106	43 / 70 (61.43%)		139.28.222.104:443
2020-05-12 09:06:15	a130ea6004059ac395f66e32c35c50b9	53 / 72 (73.61%)		139.28.222.104:443
2020-05-12 09:06:15	a130ea6004059ac395f66e32c35c50b9	53 / 72 (73.61%)		139.28.222.104:443
2020-05-09 10:28:49	903e374b0c3ea2411a013f8406529b0b	51 / 71 (71.83%)		139.28.222.104:443
2020-05-09 10:28:49	903e374b0c3ea2411a013f8406529b0b	51 / 71 (71.83%)		139.28.222.104:443
2020-05-06 10:17:45	d50975e7b9a0f495df2ea0791a733f0a	42 / 73 (57.53%)		139.28.222.104:443
2020-05-06 10:17:45	d50975e7b9a0f495df2ea0791a733f0a	42 / 73 (57.53%)		139.28.222.104:443
2020-05-03 17:14:31	853f6e02c88f2cf9856e568960a07334	46 / 72 (63.89%)	FormBook	139.28.222.104:443
2020-05-03 17:14:31	853f6e02c88f2cf9856e568960a07334	46 / 72 (63.89%)	FormBook	139.28.222.104:443
2020-05-01 03:34:52	74d3b0a4545af898fca06d2f07d1e817	23 / 73 (31.51%)		139.28.222.104:443
2020-05-01 03:34:52	74d3b0a4545af898fca06d2f07d1e817	23 / 73 (31.51%)		139.28.222.104:443
2020-04-29 09:21:38	9163f1f4f16ac8ec82eaa0a274850c36	n/a		139.28.222.104:443
2020-04-29 09:21:38	9163f1f4f16ac8ec82eaa0a274850c36	n/a		139.28.222.104:443
2020-04-29 06:20:36	0ddae592b336a2821f3975770165ed40	22 / 70 (31.43%)		139.28.222.104:443
2020-04-29 06:20:36	0ddae592b336a2821f3975770165ed40	22 / 70 (31.43%)		139.28.222.104:443

# of entries: 16 (max: 100)