SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 743ebef69416d429937637b21bb62e393271500d.

Database Entry


SHA1 Fingerprint:743ebef69416d429937637b21bb62e393271500d
Certificate Common Name (CN):proxy_main3/L=Some-city/O=proxy_main3/ST=Some-state/OU=unit
Issuer Distinguished Name (DN):root
TLS Version:TLS 1.2
First seen:2018-02-05 04:10:57 UTC
Last seen:2018-04-11 21:29:58 UTC
Status:Blacklisted
Listing reason:Corebot C&C
Listing date:2018-03-19 10:42:59
Malware samples:18
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2018-04-11 21:29:58d4c82c38ab9ed07515b38b61af8e44afVirustotal results 21/68 (30.88%) Adware.Techsnab84.200.84.224:443
2018-03-14 19:22:06f75ace637cf9eb8637b07dcae12e9324Virustotal results 23/68 (33.82%) Corebot 84.200.84.224:443
2018-03-12 14:29:5716f36c3de4954720cc104f2889538656Virustotal results 35/68 (51.47%) Corebot 84.200.84.224:443
2018-03-11 12:33:4509146daedc9d86c346d4dd8ec1761e41Virustotal results 37/68 (54.41%) Corebot 84.200.84.224:443
2018-03-08 12:59:26a8c161fc515416ef0538eb310f48f92cVirustotal results 13/64 (20.31%) Corebot 84.200.84.224:443
2018-03-07 10:52:393b6a8587be734f146dda2cc88646808dVirustotal results 7/67 (10.45%) Corebot 84.200.84.224:443
2018-03-06 08:17:120f88d74dd40bb8210da3e1b6a90c9b56Virustotal results 13/68 (19.12%) Corebot 84.200.84.224:443
2018-03-02 12:06:504bb35917fd85f18140b1b1ef7850cfaeVirustotal results 6/68 (8.82%) Corebot 84.200.84.224:443
2018-02-28 20:06:109e65dc08d85dc2c1c2a24f8296502d82Virustotal results 46/68 (67.65%) Corebot 84.200.84.224:443
2018-02-28 19:23:272ab246fc202b025a564003d355a5c681Virustotal results 13/67 (19.40%) Corebot 84.200.84.224:443
2018-02-28 07:24:00bbff8cad6bfc32e0579b8f83d132ee44Virustotal results 24/67 (35.82%) Corebot 84.200.84.224:443
2018-02-26 21:13:531ec39cbce836be99db1b181df8adb2ccVirustotal results 6/68 (8.82%) Corebot 84.200.84.224:443
2018-02-21 18:51:51c581505d9e133d49082e7d64903f2a56Virustotal results 16/67 (23.88%) Corebot 84.200.84.224:443
2018-02-20 21:55:33a2f854885beab73c48aa0ab504f0a232Virustotal results 14/67 (20.90%) Corebot 84.200.84.224:443
2018-02-10 04:53:12cdd7c6a98dbcaaeac314ee4bd1108b46Virustotal results 26/68 (38.24%) Corebot 84.200.84.224:443
2018-02-09 16:07:439eb88a485f3c79983c2dd842c844184dVirustotal results 14/68 (20.59%) Corebot 84.200.84.224:443
2018-02-07 21:38:541738bd3e8ea5f11878e01f1fc9ddaca1Virustotal results 30/68 (44.12%) Corebot 84.200.84.224:443
2018-02-05 04:10:58a0a8b63c94e33d9805187166b31e5b62Virustotal results 18/66 (27.27%) Corebot 84.200.84.224:443

# of entries: 18 (max: 100)