SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 884b85290c109635c56d9f776840cfd370e0e2d4.
Database Entry
| SHA1 Fingerprint: | 884b85290c109635c56d9f776840cfd370e0e2d4 |
|---|---|
| Certificate Common Name (CN): | Quasar Server CA |
| Issuer Distinguished Name (DN): | Quasar Server CA |
| TLS Version: | TLS 1.2' NOTBEF |
| First seen: | 2020-12-25 05:27:45 UTC |
| Last seen: | 2020-12-29 00:09:29 UTC |
| Status: | Blacklisted |
| Listing reason: | QuasarRAT C&C |
| Listing date: | 2020-12-25 07:53:08 |
| Malware samples: | 2 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2020-12-29 00:09:29 | 5934e6333c7581e6bcf0850aee157c8a |  38 / 64 (59.38%)
| Formbook | 139.59.23.248:3439 |
| 2020-12-29 00:09:29 | 5934e6333c7581e6bcf0850aee157c8a | 38 / 64 (59.38%)
| Formbook | 139.59.23.248:3439 |
| 2020-12-25 05:27:45 | fcd1ba8bb8467a830518d0c1b5ffed69 | 40 / 71 (56.34%)
| QuasarRAT | 139.59.23.248:3439 |
| 2020-12-25 05:27:45 | fcd1ba8bb8467a830518d0c1b5ffed69 | 40 / 71 (56.34%)
| QuasarRAT | 139.59.23.248:3439 |
# of entries: 4 (max: 100)