SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 8865fb17f050fcea174f4bcc68b9b5339eb698d3.

Database Entry


SHA1 Fingerprint:8865fb17f050fcea174f4bcc68b9b5339eb698d3
Certificate Common Name (CN):domain.com/O=My Company Name LTD./C=US
Issuer Distinguished Name (DN):domain.com/O=My Company Name LTD./C=US
TLS Version:TLS 1.2
First seen:2018-03-02 19:43:11 UTC
Last seen:2018-03-24 04:28:45 UTC
Status:Blacklisted
Listing reason:PandaZeuS C&C
Listing date:2018-03-23 14:14:08
Malware samples:9
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2018-03-24 04:28:45ffe8e2504b69905dd637799f09b3cac2Virustotal results 11/66 (16.67%) Smoke Loader 91.243.80.21:443
2018-03-23 01:33:44a65e064ed9e99667da9c2c12608f74beVirustotal results 30/64 (46.88%) PandaZeuS 91.243.80.21:443
2018-03-19 16:39:13e1f1666d5f38eaaade0d46420d4cf884Virustotal results 24/67 (35.82%) Smoke Loader 91.243.80.21:443
2018-03-18 00:32:410d0aeb767ffd45de58c66b8f191f5b31Virustotal results 34/66 (51.52%) Smoke Loader 91.243.80.21:443
2018-03-16 18:11:20c319d421b039ad5f71bca8ad35308f9dVirustotal results 21/68 (30.88%) PandaZeuS 91.243.80.21:443
2018-03-12 05:17:5180201082a00c9c6a6865f86357d4777bVirustotal results 16/68 (23.53%) Smoke Loader 91.243.80.21:443
2018-03-09 16:09:424666a7b14b4c35261f879ad5c2528cdfVirustotal results 35/68 (51.47%) Smoke Loader 91.243.80.21:443
2018-03-05 04:32:305ca1dce26304cf97bcbb30ce0ea46058Virustotal results 36/68 (52.94%) PandaZeuS 91.243.80.21:443
2018-03-02 19:43:11526632bfcbfa1d1eb54d46ea2503edc5Virustotal results 34/68 (50.00%) PandaZeuS 91.243.80.21:443

# of entries: 9 (max: 100)