SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 929b101cd60f9b02b9e8b11b891c34918accfb7a.
Database Entry
| SHA1 Fingerprint: | 929b101cd60f9b02b9e8b11b891c34918accfb7a |
|---|---|
| Certificate Common Name (CN): | Pkefhhv, OU=Tvsknfm, ST=sxtgmlmkqeh, O=Eqnkfbiegnb, C=GI, L=Pvfmehmb |
| Issuer Distinguished Name (DN): | Pkefhhv, OU=Tvsknfm, ST=sxtgmlmkqeh, O=Eqnkfbiegnb, C=GI, L=Pvfmehmb |
| TLS Version: | TLS 1.2 |
| First seen: | 2023-02-22 19:36:23 UTC |
| Last seen: | 2023-03-02 02:55:12 UTC |
| Status: | Blacklisted |
| Listing reason: | DanaBot C&C |
| Listing date: | 2023-03-02 07:42:32 |
| Malware samples: | 3 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2023-03-02 02:55:12 | 7893d7bddd2bdc61184c82550fa37b86 |  21 / 69 (30.43%)
| DanaBot | 23.254.253.134:443 |
| 2023-02-26 14:25:25 | a83f3b76b162aaa8e001be11bc7e4f08 | 36 / 70 (51.43%)
| 23.254.253.134:443 | |
| 2023-02-22 19:36:23 | 6008aa925e3288e2e575841aba860313 | 32 / 66 (48.48%)
| Smoke Loader | 23.254.253.134:443 |
# of entries: 3 (max: 100)