SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 9398665081c94043360a0b48b35ea84bee5d883d.
Database Entry
| SHA1 Fingerprint: | 9398665081c94043360a0b48b35ea84bee5d883d |
|---|---|
| Certificate Common Name (CN): | wx.qq.com |
| Issuer Distinguished Name (DN): | wx.qq.com |
| TLS Version: | TLS 1.2' NOTBEF |
| First seen: | 2020-08-27 10:25:58 UTC |
| Last seen: | 2021-01-24 22:09:36 UTC |
| Status: | Blacklisted |
| Listing reason: | CobaltStrike C&C |
| Listing date: | 2020-08-28 05:37:29 |
| Malware samples: | 2 |
| Botnet C&Cs: | 2 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2021-01-24 22:09:36 | 0ea53733061df4e8ee06b8a3c1e2da94 |  28 / 71 (39.44%)
| CobaltStrike | 119.29.18.190:8090 |
| 2021-01-24 22:09:36 | 0ea53733061df4e8ee06b8a3c1e2da94 | 28 / 71 (39.44%)
| CobaltStrike | 119.29.18.190:8090 |
| 2020-08-27 10:25:58 | 9851c1ef63b370e0b49d4ee88168b8ed | 52 / 69 (75.36%)
| CobaltStrike | 66.42.39.79:443 |
| 2020-08-27 10:25:58 | 9851c1ef63b370e0b49d4ee88168b8ed | 52 / 69 (75.36%)
| CobaltStrike | 66.42.39.79:443 |
# of entries: 4 (max: 100)