SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 903dfdbe81a8016d5fc405e1e76f229ddee5045c.
Database Entry
| SHA1 Fingerprint: | 903dfdbe81a8016d5fc405e1e76f229ddee5045c |
|---|---|
| Certificate Common Name (CN): | localhost |
| Issuer Distinguished Name (DN): | localhost |
| TLS Version: | TLSv1 |
| First seen: | 2016-07-20 18:56:28 UTC |
| Last seen: | 2016-07-21 05:20:09 UTC |
| Status: | Blacklisted |
| Listing reason: | Gootkit C&C |
| Listing date: | 2016-07-21 07:37:39 |
| Malware samples: | 3 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2016-07-21 05:20:09 | 2b6afc28886884329c754b1c4f841b0f |  32/55 (58.18%)
| Gootkit | 27.93.201.99:80 |
| 2016-07-21 05:20:09 | 2b6afc28886884329c754b1c4f841b0f | 32/55 (58.18%)
| Gootkit | 27.93.201.99:80 |
| 2016-07-20 19:07:03 | 3150101d06f9c576df10046f68dba7ea | 19/55 (34.55%)
| Gootkit | 27.93.201.99:80 |
| 2016-07-20 19:07:03 | 3150101d06f9c576df10046f68dba7ea | 19/55 (34.55%)
| Gootkit | 27.93.201.99:80 |
| 2016-07-20 18:56:28 | a5b8a53f524fde825fb30c648e0b420c | 34/55 (61.82%)
| Gootkit | 27.93.201.99:80 |
| 2016-07-20 18:56:28 | a5b8a53f524fde825fb30c648e0b420c | 34/55 (61.82%)
| Gootkit | 27.93.201.99:80 |
# of entries: 6 (max: 100)