SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 92a0b1daaa7fcd4ee0759397d8c38c3503c6ce01.

Database Entry


SHA1 Fingerprint:92a0b1daaa7fcd4ee0759397d8c38c3503c6ce01
Certificate Common Name (CN):ayatatrin.lv
Issuer Distinguished Name (DN):ayatatrin.lv
TLS Version:TLSv1
First seen:2015-10-30 19:23:28 UTC
Last seen:2016-01-08 19:19:15 UTC
Status:Blacklisted
Listing reason:Dridex C&C
Listing date:2015-11-07 20:48:50
Malware samples:5
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2016-01-08 19:19:15a74c6dc81ef24ed55d287f3f45ec5716Virustotal results 6/55 (10.91%) Dridex 5.187.4.183:473
2015-11-09 05:36:37e0d09a5ce075d622162cf5575440fff8Virustotal results 6/55 (10.91%) Dridex 5.187.4.183:473
2015-11-07 00:17:19497a261a91be31fce655c8df2ccaf7eeVirustotal results 5/54 (9.26%) Dridex 5.187.4.183:473
2015-11-04 19:06:06f2b660069dfdf8d79139ea083d45ece2Virustotal results 27/56 (48.21%) 5.187.4.183:473
2015-10-30 19:23:288b27c369dc690b4cb31b3c6ff114c7bfVirustotal results 23/56 (41.07%) 5.187.4.183:473

# of entries: 5 (max: 100)