SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 8574e1e3a41aaa411cb75316f68459140ea34798.

Database Entry


SHA1 Fingerprint:8574e1e3a41aaa411cb75316f68459140ea34798
Certificate Common Name (CN):someof.info
Issuer Distinguished Name (DN):someof.info
TLS Version:TLS 1.2
First seen:2015-06-01 11:36:54 UTC
Last seen:2015-06-10 15:26:01 UTC
Status:Blacklisted
Listing reason:Dridex C&C
Listing date:2015-06-01 13:13:54
Malware samples:8
Botnet C&Cs:3

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2015-06-10 15:26:01de2616381623d314146b24b0dc54831aVirustotal results 2/57 (3.51%) Dridex 87.236.215.151:80
2015-06-08 10:39:4848d496afc9c2c123e1ab0c72822a7975Virustotal results 6/57 (10.53%) Dridex 78.47.136.47:443
2015-06-05 13:49:07e5157385cff4d5ab7ebcc2e52a37045dVirustotal results 1/57 (1.75%) Dridex 87.236.215.151:80
2015-06-05 11:43:504287dfb5e191d92f34ae50e190eee214Virustotal results 5/57 (8.77%) Dridex 87.236.215.151:80
2015-06-04 12:59:1419d38368d25708d0fa6c380202d8590fVirustotal results 3/57 (5.26%) Dridex 87.236.215.151:80
2015-06-04 08:22:3394a0ce042db7f1f76340e660b901f8d7Virustotal results 5/57 (8.77%) Dridex 87.236.215.151:80
2015-06-01 17:13:380d02257ec18b92b3c1cf58b8cb6b3d37Virustotal results 7/56 (12.50%) Dridex 185.91.175.159:443
2015-06-01 11:36:544d38e00fe4cb475ab5d532ccb30d907bVirustotal results 4/56 (7.14%) Dridex 185.91.175.159:443

# of entries: 8 (max: 100)