SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 875a1cf4a0d5d64b87dd4736c8ecb4a2d401d13e.

Database Entry


SHA1 Fingerprint:875a1cf4a0d5d64b87dd4736c8ecb4a2d401d13e
Certificate Common Name (CN):Quasar Server CA
Issuer Distinguished Name (DN):Quasar Server CA
TLS Version:TLSv1' NOTBEFOR
First seen:2019-04-22 17:36:02 UTC
Last seen:2019-04-27 11:18:51 UTC
Status:Blacklisted
Listing reason:QuasarRAT C&C
Listing date:2019-04-26 11:30:22
Malware samples:6
Botnet C&Cs:2

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2019-04-27 11:18:51a0a848bd9aeb745f9c30b7d2943c1cccn/a82.62.44.126:6315
2019-04-26 17:45:02aa09bce2a95971696d7174f0f4c78b6cVirustotal results 38/73 (52.05%) 79.1.42.72:5147
2019-04-26 12:44:046ac64bc5d7ceafb4928c8e02331ff6f5Virustotal results 18/67 (26.87%) QuasarRAT79.1.42.72:5147
2019-04-26 10:35:060e0444e422cb3ad59d841ebc3bc57f3fVirustotal results 22/72 (30.56%) QuasarRAT79.1.42.72:5147
2019-04-24 03:32:59f277ad7499c4a219206cecbbd68d55cdVirustotal results 20/67 (29.85%) 79.1.42.72:5147
2019-04-22 17:36:0252b212fc1c70798a4827fc8575795002Virustotal results 27/72 (37.50%) 79.1.42.72:5147

# of entries: 6 (max: 100)