SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 723ad7c118e322c5dd0f7184d27b795f0a9b20cf.

Database Entry


SHA1 Fingerprint:723ad7c118e322c5dd0f7184d27b795f0a9b20cf
Certificate Common Name (CN):ywxozojqmcd.com
Issuer Distinguished Name (DN):ywxozojqmcd.com
TLS Version:TLS 1.2
First seen:2016-08-11 13:26:21 UTC
Last seen:2016-11-22 14:46:53 UTC
Status:Blacklisted
Listing reason:Vawtrak C&C
Listing date:2016-08-23 16:19:34
Malware samples:40
Botnet C&Cs:16

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2016-11-22 14:46:5343e2354bb9bab6614ea1f8b154a564f4n/aVawtrak 146.120.110.163:443
2016-11-04 18:41:459c6a5663d83c38781d4bc0eac2c9890an/aVawtrak 93.170.104.146:443
2016-11-04 13:08:334826e1b51599e3eeaa792e9621170324Virustotal results 34/57 (59.65%) Vawtrak 93.170.104.146:443
2016-11-04 13:05:55e930b8184305aa81965cac7f1975851fVirustotal results 27/55 (49.09%) Vawtrak 93.170.104.146:443
2016-10-30 17:05:3534976648b44273c0b336d2ef89e672dbVirustotal results 9/56 (16.07%) Vawtrak 31.184.196.81:443
2016-10-28 09:53:1825f813e97409bf7808756f1913b11102Virustotal results 42/57 (73.68%) Vawtrak 91.203.5.176:443
2016-10-24 10:50:29142ad2c753f1929a3407952fc8ac147dVirustotal results 37/57 (64.91%) Vawtrak 93.171.202.188:443
2016-10-19 22:39:39262a1a847173d3b151a9e049f06f948eVirustotal results 18/55 (32.73%) Vawtrak 93.171.202.188:443
2016-10-18 02:53:27786c43da9212a35dcd3364d9a09fe1b3Virustotal results 36/56 (64.29%) Vawtrak 185.26.120.70:443
2016-10-17 21:36:4534080a4e7c2bb069e525e22e555f60ddVirustotal results 23/57 (40.35%) Vawtrak 185.26.120.70:443
2016-10-17 21:34:57209480561bbd613503a0950211588f4bVirustotal results 31/57 (54.39%) Vawtrak 185.26.120.70:443
2016-10-17 17:01:081dd40a9223e0c43e4e5890aa84da1844Virustotal results 34/56 (60.71%) Vawtrak 185.26.120.70:443
2016-10-13 18:41:35d0583d0c51aae77de743cfb29ecac4f9Virustotal results 25/56 (44.64%) Vawtrak 185.118.166.73:443
2016-10-13 15:33:157ccc57f92ee1132e30141f22bbb385dbVirustotal results 32/56 (57.14%) Vawtrak 185.118.166.73:443
2016-10-11 22:42:25ccc611f636bb96bb9e34c3da97f3b8f8Virustotal results 40/55 (72.73%) Vawtrak 185.118.166.73:443
2016-10-11 22:36:3199f8252f6f396993fde32c1dbbbae61aVirustotal results 18/56 (32.14%) Vawtrak 185.118.166.73:443
2016-10-11 20:12:2031b1e70519d0a8ac1303ea89a0d817dcVirustotal results 23/55 (41.82%) Vawtrak 185.118.166.73:443
2016-10-11 19:59:258927105aaf53fbb0495be81835474d74Virustotal results 36/56 (64.29%) Vawtrak 185.26.120.70:443
2016-10-10 19:25:2016b691b9c41227fb9aaf592d7f49c722Virustotal results 32/56 (57.14%) Vawtrak 185.26.120.70:443
2016-10-10 10:17:347d9b38fad4992247cab2663a1e6ed137Virustotal results 36/56 (64.29%) Vawtrak 185.118.166.73:443
2016-10-10 08:25:116359dffafaf53f1d4b7e2d548a9556cfVirustotal results 35/57 (61.40%) Vawtrak 185.118.166.73:443
2016-10-09 15:34:1728b577ce059b5c3851b469911ca637aaVirustotal results 24/56 (42.86%) Vawtrak 185.118.166.73:443
2016-10-07 23:18:541d59afe9be5899c51c4f62aaa6536e5cVirustotal results 13/57 (22.81%) Vawtrak 185.118.166.73:443
2016-10-07 15:57:30608c9297e685d1037ea72b55474cd9cfn/aVawtrak 185.118.166.73:443
2016-10-06 22:05:34d7b0bfb55d8d46d8f661a4cb46c531aeVirustotal results 41/56 (73.21%) Vawtrak 185.48.56.220:443
2016-10-04 17:33:46845ced65ee8d3ada63fb940f4dfd4e51Virustotal results 26/57 (45.61%) Vawtrak 91.221.37.164:443
2016-10-04 15:09:59199d642f5c50780045085cb5992a52fdVirustotal results 21/56 (37.50%) Vawtrak 85.143.209.126:443
2016-10-04 05:39:24f0bdd217d0552bfd73e6d217cb65a739Virustotal results 12/57 (21.05%) Vawtrak 185.118.166.73:443
2016-10-02 17:21:303c8f1e08e774dd503d7528a1d6d49951Virustotal results 20/57 (35.09%) Vawtrak 91.221.37.164:443
2016-09-30 06:52:206edaef466a97955a842f54e53f205991Virustotal results 4/57 (7.02%) Vawtrak 137.74.199.27:443
2016-09-18 01:29:4986af5b1b003fa2a570dc45ca247a6274Virustotal results 33/56 (58.93%) Vawtrak 137.74.199.27:443
2016-09-16 16:29:246b87d33b169986cb34f913c14a547f75Virustotal results 36/57 (63.16%) Vawtrak 37.46.128.233:443
2016-09-14 11:39:46110458278211d7f6f29180a78fa125c7Virustotal results 33/57 (57.89%) ZeuS 37.46.128.233:443
2016-09-13 23:40:364172363f9ef187f0b26e04f9e331501eVirustotal results 34/56 (60.71%) Vawtrak 37.46.128.233:443
2016-09-09 21:24:38842e2cbdea3abc786332e1eeff20a59aVirustotal results 36/56 (64.29%) ZeuS 37.46.128.233:443
2016-09-05 15:58:53973fb4955add4ca88d4b661dfdaf6edcVirustotal results 1/56 (1.79%) Vawtrak 185.26.120.36:443
2016-08-31 14:08:00c202883ebe5033041aeb9dab8c635f1an/aZeuS 146.185.254.35:443
2016-08-27 00:05:15048d559df99a7fee82fe5fd4dfee900aVirustotal results 6/56 (10.71%) ZeuS 146.185.254.35:443
2016-08-20 15:36:37bf64cbdbcdfff2d00d75c620cc6320ecn/aVawtrak 93.189.40.175:443
2016-08-11 13:26:218ee24f9715b6cc5711557d59a1f10581Virustotal results 21/55 (38.18%) Vawtrak 37.48.90.100:443

# of entries: 40 (max: 100)