SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 86bca833e8c2805625a0b90a0facc45c7f198f56.

Database Entry

SHA1 Fingerprint:	86bca833e8c2805625a0b90a0facc45c7f198f56
Certificate Common Name (CN):	localhost
Issuer Distinguished Name (DN):	localhost
TLS Version:	SSLv3
First seen:	2014-06-26 15:02:19 UTC
Last seen:	2014-07-01 08:09:03 UTC
Status:	Blacklisted
Listing reason:	Shylock C&C
Listing date:	2014-06-26 17:34:23
Malware samples:	48
Botnet C&Cs:	1

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2014-07-01 08:09:03	b42e4384ac9a7b8db9b776fb3c349db0	22/54 (40.74%)	Shylock	23.89.188.42:443
2014-07-01 08:09:03	b42e4384ac9a7b8db9b776fb3c349db0	22/54 (40.74%)	Shylock	23.89.188.42:443
2014-06-29 06:56:15	ae962cf8a2d1b2d2d96fe876b87ae727	21/54 (38.89%)	Shylock	23.89.188.42:443
2014-06-29 06:56:15	ae962cf8a2d1b2d2d96fe876b87ae727	21/54 (38.89%)	Shylock	23.89.188.42:443
2014-06-29 06:14:58	ac6db4f295f1ecdc27af5956d383bef6	21/54 (38.89%)	Shylock	23.89.188.42:443
2014-06-29 06:14:58	ac6db4f295f1ecdc27af5956d383bef6	21/54 (38.89%)	Shylock	23.89.188.42:443
2014-06-29 05:09:36	a91b39353f4b1184d477d883413fd0b2	24/54 (44.44%)		23.89.188.42:443
2014-06-29 05:09:36	a91b39353f4b1184d477d883413fd0b2	24/54 (44.44%)		23.89.188.42:443
2014-06-28 21:55:07	a2fc094e828cf80cff989d6b3c57c8e7	34/53 (64.15%)	Shylock	23.89.188.42:443
2014-06-28 21:55:07	a2fc094e828cf80cff989d6b3c57c8e7	34/53 (64.15%)	Shylock	23.89.188.42:443
2014-06-28 16:40:58	a14c00868ccf2055513d34e91d30ca25	31/54 (57.41%)	Shylock	23.89.188.42:443
2014-06-28 16:40:58	a14c00868ccf2055513d34e91d30ca25	31/54 (57.41%)	Shylock	23.89.188.42:443
2014-06-28 16:17:15	a13642e2ad8ebf26b9b8d7306e83cb49	22/54 (40.74%)		23.89.188.42:443
2014-06-28 16:17:15	a13642e2ad8ebf26b9b8d7306e83cb49	22/54 (40.74%)		23.89.188.42:443
2014-06-28 11:04:39	90d953be6a814b521ef4197e94775dbe	32/53 (60.38%)	Shylock	23.89.188.42:443
2014-06-28 11:04:39	90d953be6a814b521ef4197e94775dbe	32/53 (60.38%)	Shylock	23.89.188.42:443
2014-06-28 09:56:55	86b5d49ffef1e79da0cabcc2a8e7b35a	17/54 (31.48%)	Shylock	23.89.188.42:443
2014-06-28 09:56:55	86b5d49ffef1e79da0cabcc2a8e7b35a	17/54 (31.48%)	Shylock	23.89.188.42:443
2014-06-28 08:18:31	c7335bfbd52295936c57ae37956ce075	12/54 (22.22%)	Shylock	23.89.188.42:443
2014-06-28 08:18:31	c7335bfbd52295936c57ae37956ce075	12/54 (22.22%)	Shylock	23.89.188.42:443
2014-06-28 07:47:13	2099d27b0866d35d024b7bda7278871b	31/54 (57.41%)	Shylock	23.89.188.42:443
2014-06-28 07:47:13	2099d27b0866d35d024b7bda7278871b	31/54 (57.41%)	Shylock	23.89.188.42:443
2014-06-28 07:39:07	13bf9988b7db0f6b5c6df0966ce179b6	29/54 (53.70%)		23.89.188.42:443
2014-06-28 07:39:07	13bf9988b7db0f6b5c6df0966ce179b6	29/54 (53.70%)		23.89.188.42:443
2014-06-28 07:02:49	c003d0cbf4ab2ca365f3ce4a8371b2a7	4/49 (8.16%)	Shylock	23.89.188.42:443
2014-06-28 07:02:49	c003d0cbf4ab2ca365f3ce4a8371b2a7	4/49 (8.16%)	Shylock	23.89.188.42:443
2014-06-28 05:36:29	36f88de2931eb238d487298af7653172	28/54 (51.85%)	Shylock	23.89.188.42:443
2014-06-28 05:36:29	36f88de2931eb238d487298af7653172	28/54 (51.85%)	Shylock	23.89.188.42:443
2014-06-28 04:43:03	573bdb8e4c4469457fe3f38d3f47e7d0	1/49 (2.04%)		23.89.188.42:443
2014-06-28 04:43:03	573bdb8e4c4469457fe3f38d3f47e7d0	1/49 (2.04%)		23.89.188.42:443
2014-06-28 03:53:26	e42b63c6b823daa592601e84d10b644b	2/53 (3.77%)		23.89.188.42:443
2014-06-28 03:53:26	e42b63c6b823daa592601e84d10b644b	2/53 (3.77%)		23.89.188.42:443
2014-06-28 03:13:19	3466b72cb85131945088f8719d4abc81	28/54 (51.85%)	Shylock	23.89.188.42:443
2014-06-28 03:13:19	3466b72cb85131945088f8719d4abc81	28/54 (51.85%)	Shylock	23.89.188.42:443
2014-06-28 01:55:56	78677caef6d2b5eef9d18fd3f9e9d47f	22/53 (41.51%)		23.89.188.42:443
2014-06-28 01:55:56	78677caef6d2b5eef9d18fd3f9e9d47f	22/53 (41.51%)		23.89.188.42:443
2014-06-28 01:43:22	e95ebe6e0880a3671d36db7be2b959f7	32/55 (58.18%)		23.89.188.42:443
2014-06-28 01:43:22	e95ebe6e0880a3671d36db7be2b959f7	32/55 (58.18%)		23.89.188.42:443
2014-06-28 01:16:03	fbc421bbf925679181435a00514de22e	19/54 (35.19%)	Shylock	23.89.188.42:443
2014-06-28 01:16:03	fbc421bbf925679181435a00514de22e	19/54 (35.19%)	Shylock	23.89.188.42:443
2014-06-28 01:10:21	60931f684ada0f63b01b91c42dfc0962	24/54 (44.44%)	Shylock	23.89.188.42:443
2014-06-28 01:10:21	60931f684ada0f63b01b91c42dfc0962	24/54 (44.44%)	Shylock	23.89.188.42:443
2014-06-28 00:49:37	26f12e5a888812dff5566b22bfe173dc	14/54 (25.93%)	Shylock	23.89.188.42:443
2014-06-28 00:49:37	26f12e5a888812dff5566b22bfe173dc	14/54 (25.93%)	Shylock	23.89.188.42:443
2014-06-28 00:22:27	0105aaa2a29d51f6fe31c284a2c8e9a9	25/54 (46.30%)	Shylock	23.89.188.42:443
2014-06-28 00:22:27	0105aaa2a29d51f6fe31c284a2c8e9a9	25/54 (46.30%)	Shylock	23.89.188.42:443
2014-06-27 23:21:33	7ddd34c2f5f010b8672bc19da4616154	19/54 (35.19%)	Shylock	23.89.188.42:443
2014-06-27 23:21:33	7ddd34c2f5f010b8672bc19da4616154	19/54 (35.19%)	Shylock	23.89.188.42:443
2014-06-27 23:10:50	2b6fab77a7ef9174f72f9fc29a51100d	30/54 (55.56%)	Shylock	23.89.188.42:443
2014-06-27 23:10:50	2b6fab77a7ef9174f72f9fc29a51100d	30/54 (55.56%)	Shylock	23.89.188.42:443
2014-06-27 22:49:15	ea0086c610bcd2cda59860a924934727	22/54 (40.74%)	Shylock	23.89.188.42:443
2014-06-27 22:49:15	ea0086c610bcd2cda59860a924934727	22/54 (40.74%)	Shylock	23.89.188.42:443
2014-06-27 22:48:32	e79b2a72ba890f6b8b2c7d6e7e4f6f4a	27/54 (50.00%)		23.89.188.42:443
2014-06-27 22:48:32	e79b2a72ba890f6b8b2c7d6e7e4f6f4a	27/54 (50.00%)		23.89.188.42:443
2014-06-27 22:31:20	52e9041ce02d28739852b04411ef5b99	34/53 (64.15%)		23.89.188.42:443
2014-06-27 22:31:20	52e9041ce02d28739852b04411ef5b99	34/53 (64.15%)		23.89.188.42:443
2014-06-27 21:59:06	6f3239d72cc0e4eb70bbdc594defcac0	30/54 (55.56%)		23.89.188.42:443
2014-06-27 21:59:06	6f3239d72cc0e4eb70bbdc594defcac0	30/54 (55.56%)		23.89.188.42:443
2014-06-27 21:50:17	f0e124b9a8ad06b25d915273e0897897	8/54 (14.81%)	Shylock	23.89.188.42:443
2014-06-27 21:50:17	f0e124b9a8ad06b25d915273e0897897	8/54 (14.81%)	Shylock	23.89.188.42:443
2014-06-27 20:33:28	ec36a2efb3b348687a47b14d5d43b618	24/53 (45.28%)	Shylock	23.89.188.42:443
2014-06-27 20:33:28	ec36a2efb3b348687a47b14d5d43b618	24/53 (45.28%)	Shylock	23.89.188.42:443
2014-06-27 12:18:13	c934d1d3055777f9fb53286b80bdf5f9	2/54 (3.70%)	Shylock	23.89.188.42:443
2014-06-27 12:18:13	c934d1d3055777f9fb53286b80bdf5f9	2/54 (3.70%)	Shylock	23.89.188.42:443
2014-06-27 10:30:18	98a9ee8d9de53e11cfaa340983ee2458	34/54 (62.96%)	Shylock	23.89.188.42:443
2014-06-27 10:30:18	98a9ee8d9de53e11cfaa340983ee2458	34/54 (62.96%)	Shylock	23.89.188.42:443
2014-06-27 10:16:52	95f3a44f7319e2f4187c9e0ac2eaaef3	25/54 (46.30%)		23.89.188.42:443
2014-06-27 10:16:52	95f3a44f7319e2f4187c9e0ac2eaaef3	25/54 (46.30%)		23.89.188.42:443
2014-06-27 09:53:42	91659c03d61c2e3046acac05afbe27bd	23/53 (43.40%)		23.89.188.42:443
2014-06-27 09:53:42	91659c03d61c2e3046acac05afbe27bd	23/53 (43.40%)		23.89.188.42:443
2014-06-27 09:23:26	d7c92bba5c971046f13af93750ca4a5e	5/53 (9.43%)	Shylock	23.89.188.42:443
2014-06-27 09:23:26	d7c92bba5c971046f13af93750ca4a5e	5/53 (9.43%)	Shylock	23.89.188.42:443
2014-06-27 06:43:28	0157c17a8a0c21a435020709ccd1be0d	21/53 (39.62%)	ZeuS	23.89.188.42:443
2014-06-27 06:43:28	0157c17a8a0c21a435020709ccd1be0d	21/53 (39.62%)	ZeuS	23.89.188.42:443
2014-06-27 06:26:00	585f740472c6dd86ed22d3355d15f29a	28/54 (51.85%)	Shylock	23.89.188.42:443
2014-06-27 06:26:00	585f740472c6dd86ed22d3355d15f29a	28/54 (51.85%)	Shylock	23.89.188.42:443
2014-06-27 05:07:32	f1fa8ad9f56d5814b664c65356a62d2e	7/54 (12.96%)	Shylock	23.89.188.42:443
2014-06-27 05:07:32	f1fa8ad9f56d5814b664c65356a62d2e	7/54 (12.96%)	Shylock	23.89.188.42:443
2014-06-27 03:54:04	01f3e04bb97603983abd4f10e9e423ff	22/54 (40.74%)	Shylock	23.89.188.42:443
2014-06-27 03:54:04	01f3e04bb97603983abd4f10e9e423ff	22/54 (40.74%)	Shylock	23.89.188.42:443
2014-06-27 03:38:28	72fc85b1cfd104d99a84b070ca09cee5	27/54 (50.00%)	Shylock	23.89.188.42:443
2014-06-27 03:38:28	72fc85b1cfd104d99a84b070ca09cee5	27/54 (50.00%)	Shylock	23.89.188.42:443
2014-06-27 02:07:19	455b23ec7277dd5d2ce6071013fefb95	20/53 (37.74%)	Shylock	23.89.188.42:443
2014-06-27 02:07:19	455b23ec7277dd5d2ce6071013fefb95	20/53 (37.74%)	Shylock	23.89.188.42:443
2014-06-27 00:04:37	7a5864883d7412b607868743650a6e5c	25/54 (46.30%)	Shylock	23.89.188.42:443
2014-06-27 00:04:37	7a5864883d7412b607868743650a6e5c	25/54 (46.30%)	Shylock	23.89.188.42:443
2014-06-26 22:46:55	facbe15d5ace2c9c540b092aeccd10a0	26/54 (48.15%)	Shylock	23.89.188.42:443
2014-06-26 22:46:55	facbe15d5ace2c9c540b092aeccd10a0	26/54 (48.15%)	Shylock	23.89.188.42:443
2014-06-26 19:44:42	485d50b5e553eb927975b43406b80973	36/54 (66.67%)	Shylock	23.89.188.42:443
2014-06-26 19:44:42	485d50b5e553eb927975b43406b80973	36/54 (66.67%)	Shylock	23.89.188.42:443
2014-06-26 19:37:12	5d9aa2c8b52fa22c24874987fabe2a9f	9/54 (16.67%)	Shylock	23.89.188.42:443
2014-06-26 19:37:12	5d9aa2c8b52fa22c24874987fabe2a9f	9/54 (16.67%)	Shylock	23.89.188.42:443
2014-06-26 19:25:04	3fcb8946770adb60dd2ea10fed5caae1	19/54 (35.19%)	Shylock	23.89.188.42:443
2014-06-26 19:25:04	3fcb8946770adb60dd2ea10fed5caae1	19/54 (35.19%)	Shylock	23.89.188.42:443
2014-06-26 15:02:19	4a65b3f98a678a6c00f54f7844a61d65	30/54 (55.56%)	Shylock	23.89.188.42:443
2014-06-26 15:02:19	4a65b3f98a678a6c00f54f7844a61d65	30/54 (55.56%)	Shylock	23.89.188.42:443

# of entries: 96 (max: 100)