SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 8ff4f4e082f6206bebd7094c76203a387daa7d7f.
Database Entry
| SHA1 Fingerprint: | 8ff4f4e082f6206bebd7094c76203a387daa7d7f |
|---|---|
| Certificate Common Name (CN): | Orcus Server |
| Issuer Distinguished Name (DN): | Orcus Server |
| TLS Version: | TLSv1 |
| First seen: | 2020-04-06 02:15:03 UTC |
| Last seen: | 2020-05-12 12:22:20 UTC |
| Status: | Blacklisted |
| Listing reason: | OrcusRAT C&C |
| Listing date: | 2020-04-06 07:11:37 |
| Malware samples: | 2 |
| Botnet C&Cs: | 2 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2020-05-12 12:22:20 | a500b3373fbb58e5b830db88953f41e4 |  49 / 72 (68.06%)
| OrcusRAT | 45.32.128.117:443 |
| 2020-05-12 12:22:20 | a500b3373fbb58e5b830db88953f41e4 | 49 / 72 (68.06%)
| OrcusRAT | 45.32.128.117:443 |
| 2020-04-06 02:15:03 | b94b04d66604ea35eede65a32747e3a8 | 54 / 72 (75.00%)
| OrcusRAT | 207.246.95.196:443 |
| 2020-04-06 02:15:03 | b94b04d66604ea35eede65a32747e3a8 | 54 / 72 (75.00%)
| OrcusRAT | 207.246.95.196:443 |
# of entries: 4 (max: 100)