SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 8f72082ffea68640e77d185ad0301e8f98c04d52.
Database Entry
| SHA1 Fingerprint: | 8f72082ffea68640e77d185ad0301e8f98c04d52 |
|---|---|
| Certificate Common Name (CN): | tgedrdgther.dz |
| Issuer Distinguished Name (DN): | tgedrdgther.dz |
| TLS Version: | TLSv1 |
| First seen: | 2015-10-21 13:27:08 UTC |
| Last seen: | 2015-10-23 15:12:50 UTC |
| Status: | Blacklisted |
| Listing reason: | Dridex C&C |
| Listing date: | 2015-10-22 08:51:12 |
| Malware samples: | 4 |
| Botnet C&Cs: | 2 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2015-10-23 15:12:50 | d897c1cdab10a2c8cb5ce95bff03411f |  4/55 (7.27%)
| 62.102.249.157:843 | |
| 2015-10-23 15:12:50 | d897c1cdab10a2c8cb5ce95bff03411f | 4/55 (7.27%)
| 62.102.249.157:843 | |
| 2015-10-23 13:51:54 | 4ef57741ccba192388604fd391b25c9d | 3/55 (5.45%)
| 62.102.249.157:843 | |
| 2015-10-23 13:51:54 | 4ef57741ccba192388604fd391b25c9d | 3/55 (5.45%)
| 62.102.249.157:843 | |
| 2015-10-23 07:02:00 | ad03974277f7954c504893db14a64a86 | 13/55 (23.64%)
| Dridex | 62.102.249.157:843 |
| 2015-10-23 07:02:00 | ad03974277f7954c504893db14a64a86 | 13/55 (23.64%)
| Dridex | 62.102.249.157:843 |
| 2015-10-21 13:27:08 | 7f0076993f2d8a4629ea7b0df5b9bddd | 0/56 (0.00%)
| Dridex | 198.50.205.130:443 |
| 2015-10-21 13:27:08 | 7f0076993f2d8a4629ea7b0df5b9bddd | 0/56 (0.00%)
| Dridex | 198.50.205.130:443 |
# of entries: 8 (max: 100)