SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 7cfe275ceae4245c73e08763124d17ccaa19bf44.

Database Entry


SHA1 Fingerprint:7cfe275ceae4245c73e08763124d17ccaa19bf44
Certificate Common Name (CN):suwenzna.com
Issuer Distinguished Name (DN):suwenzna.com
TLS Version:TLS 1.2
First seen:2016-12-06 17:24:55 UTC
Last seen:2016-12-23 09:55:41 UTC
Status:Blacklisted
Listing reason:Vawtrak C&C
Listing date:2016-12-07 10:07:12
Malware samples:13
Botnet C&Cs:4

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2016-12-23 09:55:4159e2debfa683680bf7c8a4082d7d4abbn/aVawtrak 89.223.26.112:443
2016-12-23 09:41:127aa4f77b3bc663217d2d6fbe238391f2n/aVawtrak 89.223.26.112:443
2016-12-23 09:37:364d1b83eaafcbaad84a43655a6d2b9d35n/aVawtrak 89.223.26.112:443
2016-12-23 00:39:0860d9d6a50c6fb883a19383b654bbfa2cn/aVawtrak 89.223.26.112:443
2016-12-22 19:51:2537b552dd80f0297b5888a521f6c81bddn/aVawtrak 89.223.26.112:443
2016-12-15 11:28:34b0b42bc17f241fcb5d9c5dddb9489848Virustotal results 39/57 (68.42%) Vawtrak 78.155.218.234:443
2016-12-15 11:12:176e90c0c4cb20b43db53c88035b94816en/aVawtrak 78.155.218.234:443
2016-12-15 10:53:31519473862c989c6b42c53f9a9255647fn/aVawtrak 78.155.218.234:443
2016-12-14 22:14:36edfc8653b93c693a51c57caac9e715f7n/aVawtrak 78.155.218.234:443
2016-12-10 12:58:46c7363eaf601484d8a002c5669346d9b8n/aVawtrak 185.118.66.80:443
2016-12-09 06:30:02f86a16c9b04826b30e8d245142574cbbn/aVawtrak 185.118.66.80:443
2016-12-08 22:28:189c8e7b4b8980d4770a7583537b8ecbb1n/aVawtrak 185.118.66.80:443
2016-12-06 17:24:5542bf3b09d78f1ce5f7b92b82785fff7fn/aVawtrak 31.24.30.182:443

# of entries: 13 (max: 100)