SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 6fb3f5e9059a30d7a6ba4464a37db39bba69e716.

Database Entry

SHA1 Fingerprint:	6fb3f5e9059a30d7a6ba4464a37db39bba69e716
Certificate Common Name (CN):	antrefurniture.top
Issuer Distinguished Name (DN):	Let's Encrypt Authority X3
TLS Version:	TLS 1.1
First seen:	2018-05-04 14:22:32 UTC
Last seen:	2018-05-25 10:50:15 UTC
Status:	Blacklisted
Listing reason:	PandaZeuS C&C
Listing date:	2018-05-24 07:38:34
Malware samples:	26
Botnet C&Cs:	1

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2018-05-25 10:50:15	c14b855563053434562e59382f591063	10/66 (15.15%)	PandaZeuS	195.123.237.208:443
2018-05-25 10:50:15	c14b855563053434562e59382f591063	10/66 (15.15%)	PandaZeuS	195.123.237.208:443
2018-05-25 07:39:15	ebd5b1fe9c8cb6f4925f4baf7d273a57	12/65 (18.46%)	Smoke Loader	195.123.237.208:443
2018-05-25 07:39:15	ebd5b1fe9c8cb6f4925f4baf7d273a57	12/65 (18.46%)	Smoke Loader	195.123.237.208:443
2018-05-24 19:09:48	061c98309d1a703219d1bda21e89c76f	n/a	Smoke Loader	195.123.237.208:443
2018-05-24 19:09:48	061c98309d1a703219d1bda21e89c76f	n/a	Smoke Loader	195.123.237.208:443
2018-05-24 10:30:12	fa7940858243b7210d17fea065e58962	27/65 (41.54%)	PandaZeuS	195.123.237.208:443
2018-05-24 10:30:12	fa7940858243b7210d17fea065e58962	27/65 (41.54%)	PandaZeuS	195.123.237.208:443
2018-05-24 07:25:26	8e0e4e636c24349f58f949ed263d2f52	15/65 (23.08%)	PandaZeuS	195.123.237.208:443
2018-05-24 07:25:26	8e0e4e636c24349f58f949ed263d2f52	15/65 (23.08%)	PandaZeuS	195.123.237.208:443
2018-05-23 16:45:35	9a0c5c47ac88e3ab3ee76a86e0021215	46/68 (67.65%)	PandaZeuS	195.123.237.208:443
2018-05-23 16:45:35	9a0c5c47ac88e3ab3ee76a86e0021215	46/68 (67.65%)	PandaZeuS	195.123.237.208:443
2018-05-23 10:50:52	d8e97093c7434a5de2a527ea42a9af0f	19/66 (28.79%)	PandaZeuS	195.123.237.208:443
2018-05-23 10:50:52	d8e97093c7434a5de2a527ea42a9af0f	19/66 (28.79%)	PandaZeuS	195.123.237.208:443
2018-05-23 05:10:23	f4cc447ad13a6b8642734336d65fc102	9/66 (13.64%)	PandaZeuS	195.123.237.208:443
2018-05-23 05:10:23	f4cc447ad13a6b8642734336d65fc102	9/66 (13.64%)	PandaZeuS	195.123.237.208:443
2018-05-23 04:51:32	b1fb23cb3348d828fc30e1181fbfc970	9/65 (13.85%)	Smoke Loader	195.123.237.208:443
2018-05-23 04:51:32	b1fb23cb3348d828fc30e1181fbfc970	9/65 (13.85%)	Smoke Loader	195.123.237.208:443
2018-05-23 03:36:03	a4b07b4fc2ae42e5c8b68e7cd086be5b	41/65 (63.08%)	PandaZeuS	195.123.237.208:443
2018-05-23 03:36:03	a4b07b4fc2ae42e5c8b68e7cd086be5b	41/65 (63.08%)	PandaZeuS	195.123.237.208:443
2018-05-22 22:51:28	ca2e5706748796cc2723c60452cb093e	15/64 (23.44%)	PandaZeuS	195.123.237.208:443
2018-05-22 22:51:28	ca2e5706748796cc2723c60452cb093e	15/64 (23.44%)	PandaZeuS	195.123.237.208:443
2018-05-22 16:43:39	aab0cdca6a6422790010e698bc631908	10/65 (15.38%)	PandaZeuS	195.123.237.208:443
2018-05-22 16:43:39	aab0cdca6a6422790010e698bc631908	10/65 (15.38%)	PandaZeuS	195.123.237.208:443
2018-05-21 21:40:15	0fb147e95ab79f572306f60daa8ec0d8	12/67 (17.91%)	PandaZeuS	195.123.237.208:443
2018-05-21 21:40:15	0fb147e95ab79f572306f60daa8ec0d8	12/67 (17.91%)	PandaZeuS	195.123.237.208:443
2018-05-21 09:04:42	b8eb96c6cdaf80d3ae75c9f109608a55	35/67 (52.24%)	Smoke Loader	195.123.237.208:443
2018-05-21 09:04:42	b8eb96c6cdaf80d3ae75c9f109608a55	35/67 (52.24%)	Smoke Loader	195.123.237.208:443
2018-05-21 01:21:12	56b18fafc66ff7656def333c428726e0	37/66 (56.06%)	Smoke Loader	195.123.237.208:443
2018-05-21 01:21:12	56b18fafc66ff7656def333c428726e0	37/66 (56.06%)	Smoke Loader	195.123.237.208:443
2018-05-20 21:00:32	4e715f0663ecd134b52080bf11012081	9/65 (13.85%)	PandaZeuS	195.123.237.208:443
2018-05-20 21:00:32	4e715f0663ecd134b52080bf11012081	9/65 (13.85%)	PandaZeuS	195.123.237.208:443
2018-05-20 16:35:14	7d48ab12146fed43e606565bc2ae3e75	10/65 (15.38%)	Smoke Loader	195.123.237.208:443
2018-05-20 16:35:14	7d48ab12146fed43e606565bc2ae3e75	10/65 (15.38%)	Smoke Loader	195.123.237.208:443
2018-05-20 16:04:29	e54de6ba4c1801acfb0eaadbac40d0b4	12/67 (17.91%)	PandaZeuS	195.123.237.208:443
2018-05-20 16:04:29	e54de6ba4c1801acfb0eaadbac40d0b4	12/67 (17.91%)	PandaZeuS	195.123.237.208:443
2018-05-20 13:12:57	de4b8f758ca0fca8c53a703494337041	46/67 (68.66%)	Smoke Loader	195.123.237.208:443
2018-05-20 13:12:57	de4b8f758ca0fca8c53a703494337041	46/67 (68.66%)	Smoke Loader	195.123.237.208:443
2018-05-19 17:00:28	6bbf5b7393dec032d7b8d9256187e4a1	37/65 (56.92%)	Smoke Loader	195.123.237.208:443
2018-05-19 17:00:28	6bbf5b7393dec032d7b8d9256187e4a1	37/65 (56.92%)	Smoke Loader	195.123.237.208:443
2018-05-19 10:42:09	b8967d7665cb3f9c690d89909c5dfbb9	16/66 (24.24%)	Smoke Loader	195.123.237.208:443
2018-05-19 10:42:09	b8967d7665cb3f9c690d89909c5dfbb9	16/66 (24.24%)	Smoke Loader	195.123.237.208:443
2018-05-19 07:05:33	18ed3e769572e1e3a92023ac5d62adfe	30/67 (44.78%)	PandaZeuS	195.123.237.208:443
2018-05-19 07:05:33	18ed3e769572e1e3a92023ac5d62adfe	30/67 (44.78%)	PandaZeuS	195.123.237.208:443
2018-05-18 11:42:27	78128232afa23519611b3e27ba37c95f	47/66 (71.21%)	PandaZeuS	195.123.237.208:443
2018-05-18 11:42:27	78128232afa23519611b3e27ba37c95f	47/66 (71.21%)	PandaZeuS	195.123.237.208:443
2018-05-16 18:48:34	3c6fd47b12600408121884aa5d42fee0	45/66 (68.18%)	PandaZeuS	195.123.237.208:443
2018-05-16 18:48:34	3c6fd47b12600408121884aa5d42fee0	45/66 (68.18%)	PandaZeuS	195.123.237.208:443
2018-05-14 00:21:33	1bb0e9666a97be631661dc86318d5a9f	37/66 (56.06%)	PandaZeuS	195.123.237.208:443
2018-05-14 00:21:33	1bb0e9666a97be631661dc86318d5a9f	37/66 (56.06%)	PandaZeuS	195.123.237.208:443
2018-05-04 14:22:32	67205bb3c8b372c3dcb7c3f44b3fdb53	40/64 (62.50%)	PandaZeuS	195.123.237.208:443
2018-05-04 14:22:32	67205bb3c8b372c3dcb7c3f44b3fdb53	40/64 (62.50%)	PandaZeuS	195.123.237.208:443

# of entries: 52 (max: 100)