SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 7dcf447248994cc80ddeb4c596a53fbe16f739ef.
Database Entry
| SHA1 Fingerprint: | 7dcf447248994cc80ddeb4c596a53fbe16f739ef |
|---|---|
| Certificate Common Name (CN): | localhost |
| Issuer Distinguished Name (DN): | localhost |
| TLS Version: | TLSv1 |
| First seen: | 2016-07-11 22:13:43 UTC |
| Last seen: | 2016-08-30 15:45:57 UTC |
| Status: | Blacklisted |
| Listing reason: | Gootkit C&C |
| Listing date: | 2016-07-12 06:21:11 |
| Malware samples: | 23 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2016-08-30 15:45:57 | 3c20de7279b87769260b8ca6f2cb8f35 |  32/55 (58.18%)
| Shylock | 107.181.19.88:80 |
| 2016-08-30 15:45:57 | 3c20de7279b87769260b8ca6f2cb8f35 | 32/55 (58.18%)
| Shylock | 107.181.19.88:80 |
| 2016-08-30 02:58:37 | 98e9c8ce84ff822efad4e900837964e3 | 5/55 (9.09%)
| Gootkit | 107.181.19.88:80 |
| 2016-08-30 02:58:37 | 98e9c8ce84ff822efad4e900837964e3 | 5/55 (9.09%)
| Gootkit | 107.181.19.88:80 |
| 2016-08-29 11:29:55 | 90ee5136b94eecd7fe3eeaa153af3ac8 | 36/58 (62.07%)
| Gootkit | 107.181.19.88:80 |
| 2016-08-29 11:29:55 | 90ee5136b94eecd7fe3eeaa153af3ac8 | 36/58 (62.07%)
| Gootkit | 107.181.19.88:80 |
| 2016-08-28 00:36:05 | 76b1ddbe960dad097bd4064fe68fa4de | 36/56 (64.29%)
| Gootkit | 107.181.19.88:80 |
| 2016-08-28 00:36:05 | 76b1ddbe960dad097bd4064fe68fa4de | 36/56 (64.29%)
| Gootkit | 107.181.19.88:80 |
| 2016-08-27 05:54:53 | 5fe62c6aa354efd9102149f8c9c18487 | 44/68 (64.71%)
| Gootkit | 107.181.19.88:80 |
| 2016-08-27 05:54:53 | 5fe62c6aa354efd9102149f8c9c18487 | 44/68 (64.71%)
| Gootkit | 107.181.19.88:80 |
| 2016-08-26 09:28:33 | f868f5694c90a9f52fe6006a9d617ebb | n/a | Gootkit | 107.181.19.88:80 |
| 2016-08-26 09:28:33 | f868f5694c90a9f52fe6006a9d617ebb | n/a | Gootkit | 107.181.19.88:80 |
| 2016-08-22 06:58:46 | ead417e7e66530b8e54b97ac2cf27861 | 32/56 (57.14%)
| Shylock | 107.181.19.88:80 |
| 2016-08-22 06:58:46 | ead417e7e66530b8e54b97ac2cf27861 | 32/56 (57.14%)
| Shylock | 107.181.19.88:80 |
| 2016-08-21 16:22:06 | 6677f19c833d4b7d2d0c3f7662b9e26e | n/a | Gootkit | 107.181.19.88:80 |
| 2016-08-21 16:22:06 | 6677f19c833d4b7d2d0c3f7662b9e26e | n/a | Gootkit | 107.181.19.88:80 |
| 2016-08-14 14:52:10 | d1d5c05c55b2cd5ae8551cb6176420ef | 38/58 (65.52%)
| Shylock | 107.181.19.88:80 |
| 2016-08-14 14:52:10 | d1d5c05c55b2cd5ae8551cb6176420ef | 38/58 (65.52%)
| Shylock | 107.181.19.88:80 |
| 2016-08-13 21:49:26 | e4b26737613243fc47e0dd6912b53d96 | 28/54 (51.85%)
| Shylock | 107.181.19.88:80 |
| 2016-08-13 21:49:26 | e4b26737613243fc47e0dd6912b53d96 | 28/54 (51.85%)
| Shylock | 107.181.19.88:80 |
| 2016-08-13 16:49:34 | 710f2ab18a09175565f48bd87257dc9e | n/a | Shylock | 107.181.19.88:80 |
| 2016-08-13 16:49:34 | 710f2ab18a09175565f48bd87257dc9e | n/a | Shylock | 107.181.19.88:80 |
| 2016-08-08 21:28:27 | dc6a70a2fdabb3ba89c928d1c407069a | n/a | Gootkit | 107.181.19.88:80 |
| 2016-08-08 21:28:27 | dc6a70a2fdabb3ba89c928d1c407069a | n/a | Gootkit | 107.181.19.88:80 |
| 2016-08-04 05:58:48 | 24989249cdfc13db9df22f210a7b444a | 36/55 (65.45%)
| Shylock | 107.181.19.88:80 |
| 2016-08-04 05:58:48 | 24989249cdfc13db9df22f210a7b444a | 36/55 (65.45%)
| Shylock | 107.181.19.88:80 |
| 2016-08-03 13:28:06 | f1d8c5dee273d8c987676cef9bd9a483 | 42/56 (75.00%)
| Gootkit | 107.181.19.88:80 |
| 2016-08-03 13:28:06 | f1d8c5dee273d8c987676cef9bd9a483 | 42/56 (75.00%)
| Gootkit | 107.181.19.88:80 |
| 2016-07-28 19:05:40 | 0c55f141974e11efb93b0e701874e675 | 24/55 (43.64%)
| Shylock | 107.181.19.88:80 |
| 2016-07-28 19:05:40 | 0c55f141974e11efb93b0e701874e675 | 24/55 (43.64%)
| Shylock | 107.181.19.88:80 |
| 2016-07-25 19:25:43 | fdda1a2f14e7a715db8c0c92d459ce16 | 22/55 (40.00%)
| Shylock | 107.181.19.88:80 |
| 2016-07-25 19:25:43 | fdda1a2f14e7a715db8c0c92d459ce16 | 22/55 (40.00%)
| Shylock | 107.181.19.88:80 |
| 2016-07-24 23:59:58 | a03299c4537f907660e06dd660b564d4 | 40/58 (68.97%)
| Shylock | 107.181.19.88:80 |
| 2016-07-24 23:59:58 | a03299c4537f907660e06dd660b564d4 | 40/58 (68.97%)
| Shylock | 107.181.19.88:80 |
| 2016-07-24 10:32:42 | 9f2c7c8e35d1ab9b33d91bc72d5a3c4c | n/a | Shylock | 107.181.19.88:80 |
| 2016-07-24 10:32:42 | 9f2c7c8e35d1ab9b33d91bc72d5a3c4c | n/a | Shylock | 107.181.19.88:80 |
| 2016-07-15 16:35:50 | dc7de0e21d0570195838eb6290689ec0 | 29/54 (53.70%)
| Shylock | 107.181.19.88:80 |
| 2016-07-15 16:35:50 | dc7de0e21d0570195838eb6290689ec0 | 29/54 (53.70%)
| Shylock | 107.181.19.88:80 |
| 2016-07-14 02:48:38 | 5bf56ab5ddcfa24fbb67ab8b2a9cf295 | 22/55 (40.00%)
| Shylock | 107.181.19.88:80 |
| 2016-07-14 02:48:38 | 5bf56ab5ddcfa24fbb67ab8b2a9cf295 | 22/55 (40.00%)
| Shylock | 107.181.19.88:80 |
| 2016-07-13 22:47:07 | 084aa01a5a42f150c1729df5aad8223b | n/a | Shylock | 107.181.19.88:80 |
| 2016-07-13 22:47:07 | 084aa01a5a42f150c1729df5aad8223b | n/a | Shylock | 107.181.19.88:80 |
| 2016-07-12 01:16:27 | 2b7945c084b87105783233f7d13a4fe7 | n/a | Gootkit | 107.181.19.88:80 |
| 2016-07-12 01:16:27 | 2b7945c084b87105783233f7d13a4fe7 | n/a | Gootkit | 107.181.19.88:80 |
| 2016-07-11 22:13:43 | 0e57ffa8be421c16ead3573d62019aac | 40/67 (59.70%)
| Gootkit | 107.181.19.88:80 |
| 2016-07-11 22:13:43 | 0e57ffa8be421c16ead3573d62019aac | 40/67 (59.70%)
| Gootkit | 107.181.19.88:80 |
# of entries: 46 (max: 100)