SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 8dbbad6531d9d301b8ae64097e5f9c8ca2c901ef.
Database Entry
| SHA1 Fingerprint: | 8dbbad6531d9d301b8ae64097e5f9c8ca2c901ef |
|---|---|
| Certificate Common Name (CN): | www.kvkakyb9.com/O=kvkakyb9./C=US |
| Issuer Distinguished Name (DN): | www.kvkakyb9.com/O=kvkakyb9./C=US |
| TLS Version: | TLS 1.2 |
| First seen: | 2016-09-13 22:19:38 UTC |
| Last seen: | 2016-09-15 09:57:17 UTC |
| Status: | Blacklisted |
| Listing reason: | Gootkit C&C |
| Listing date: | 2016-09-16 04:51:12 |
| Malware samples: | 5 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2016-09-15 09:57:17 | 25c3d179018592ef126f65d672900eb9 |  9/58 (15.52%)
| Gootkit | 192.157.241.136:80 |
| 2016-09-15 09:57:17 | 25c3d179018592ef126f65d672900eb9 | 9/58 (15.52%)
| Gootkit | 192.157.241.136:80 |
| 2016-09-15 05:10:25 | 5d054549ae974e0506a2f6311a2e1af1 | 35/57 (61.40%)
| Gootkit | 192.157.241.136:80 |
| 2016-09-15 05:10:25 | 5d054549ae974e0506a2f6311a2e1af1 | 35/57 (61.40%)
| Gootkit | 192.157.241.136:80 |
| 2016-09-14 19:41:29 | 32698c95d9bfdf818e205c1366cedf2e | 36/57 (63.16%)
| Gootkit | 192.157.241.136:80 |
| 2016-09-14 19:41:29 | 32698c95d9bfdf818e205c1366cedf2e | 36/57 (63.16%)
| Gootkit | 192.157.241.136:80 |
| 2016-09-13 22:37:16 | f79bc1d3e0b3049b8d16e84ce72fe827 | 5/56 (8.93%)
| Gootkit | 192.157.241.136:80 |
| 2016-09-13 22:37:16 | f79bc1d3e0b3049b8d16e84ce72fe827 | 5/56 (8.93%)
| Gootkit | 192.157.241.136:80 |
| 2016-09-13 22:19:38 | d671ea693123986a3eb206dcb19d5a9b | 36/57 (63.16%)
| Gootkit | 192.157.241.136:80 |
| 2016-09-13 22:19:38 | d671ea693123986a3eb206dcb19d5a9b | 36/57 (63.16%)
| Gootkit | 192.157.241.136:80 |
# of entries: 10 (max: 100)