SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 94a16d3f87db44957564e98f1b2dab9f8ff0ec46.
Database Entry
| SHA1 Fingerprint: | 94a16d3f87db44957564e98f1b2dab9f8ff0ec46 |
|---|---|
| Certificate Common Name (CN): | cultivating.com |
| Issuer Distinguished Name (DN): | cultivating.com |
| TLS Version: | TLS 1.2 |
| First seen: | 2019-10-29 20:58:15 UTC |
| Last seen: | 2019-11-06 12:01:35 UTC |
| Status: | Blacklisted |
| Listing reason: | IcedID C&C |
| Listing date: | 2019-10-31 06:53:38 |
| Malware samples: | 12 |
| Botnet C&Cs: | 2 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2019-11-06 12:01:35 | 407cde16473474c15f66651307e42d9b |  16 / 71 (22.54%)
| TrickBot | 95.213.139.105:443 |
| 2019-11-06 12:01:35 | 407cde16473474c15f66651307e42d9b | 16 / 71 (22.54%)
| TrickBot | 95.213.139.105:443 |
| 2019-11-06 12:01:35 | 407cde16473474c15f66651307e42d9b | 16 / 71 (22.54%)
| TrickBot | 95.213.139.105:443 |
| 2019-11-06 12:01:35 | 407cde16473474c15f66651307e42d9b | 16 / 71 (22.54%)
| TrickBot | 95.213.139.105:443 |
| 2019-11-04 14:06:03 | c04f5dc534fa5b1acef3c08d9ab3f3cb | 32/70 (45.71%)
| TrickBot | 95.213.139.105:443 |
| 2019-11-04 14:06:03 | c04f5dc534fa5b1acef3c08d9ab3f3cb | 32/70 (45.71%)
| TrickBot | 95.213.139.105:443 |
| 2019-11-04 14:06:03 | c04f5dc534fa5b1acef3c08d9ab3f3cb | 32/70 (45.71%)
| TrickBot | 95.213.139.105:443 |
| 2019-11-04 14:06:03 | c04f5dc534fa5b1acef3c08d9ab3f3cb | 32/70 (45.71%)
| TrickBot | 95.213.139.105:443 |
| 2019-11-01 11:50:28 | ac7659fa41799b6956211b538fdac062 | 15 / 69 (21.74%)
| IcedID | 217.182.188.118:443 |
| 2019-11-01 11:50:28 | ac7659fa41799b6956211b538fdac062 | 15 / 69 (21.74%)
| IcedID | 217.182.188.118:443 |
| 2019-11-01 10:26:28 | 0da8923bcf3eaa4af888ea191cb3b842 | n/a | IcedID | 217.182.188.118:443 |
| 2019-11-01 10:26:28 | 0da8923bcf3eaa4af888ea191cb3b842 | n/a | IcedID | 217.182.188.118:443 |
| 2019-11-01 09:28:17 | 4e0e3f8c44dc6181d1bbd68abf52d02b | n/a | IcedID | 217.182.188.118:443 |
| 2019-11-01 09:28:17 | 4e0e3f8c44dc6181d1bbd68abf52d02b | n/a | IcedID | 217.182.188.118:443 |
| 2019-11-01 03:45:31 | 0b746ddf7b4dbfb67731022ba4ed05d7 | n/a | IcedID | 217.182.188.118:443 |
| 2019-11-01 03:45:31 | 0b746ddf7b4dbfb67731022ba4ed05d7 | n/a | IcedID | 217.182.188.118:443 |
| 2019-10-31 15:56:59 | c4dc3b3625286c747351914db949dfbf | 46/71 (64.79%)
| IcedID | 217.182.188.118:443 |
| 2019-10-31 15:56:59 | c4dc3b3625286c747351914db949dfbf | 46/71 (64.79%)
| IcedID | 217.182.188.118:443 |
| 2019-10-31 15:52:46 | d7a998397aa57a6f2685253ed5aef047 | 9 / 69 (13.04%)
| IcedID | 217.182.188.118:443 |
| 2019-10-31 15:52:46 | d7a998397aa57a6f2685253ed5aef047 | 9 / 69 (13.04%)
| IcedID | 217.182.188.118:443 |
| 2019-10-31 00:19:57 | 7cb197c492a9a0b639cbe19f5ee8e424 | 12 / 67 (17.91%)
| IcedID | 217.182.188.118:443 |
| 2019-10-31 00:19:57 | 7cb197c492a9a0b639cbe19f5ee8e424 | 12 / 67 (17.91%)
| IcedID | 217.182.188.118:443 |
| 2019-10-30 09:30:54 | b4344f7c095814ff046b36512c0abfa0 | 5 / 60 (8.33%)
| IcedID | 217.182.188.118:443 |
| 2019-10-30 09:30:54 | b4344f7c095814ff046b36512c0abfa0 | 5 / 60 (8.33%)
| IcedID | 217.182.188.118:443 |
| 2019-10-30 08:51:01 | 6759fd1bfe09a837f807313c543a1bfc | 11 / 70 (15.71%)
| IcedID | 217.182.188.118:443 |
| 2019-10-30 08:51:01 | 6759fd1bfe09a837f807313c543a1bfc | 11 / 70 (15.71%)
| IcedID | 217.182.188.118:443 |
| 2019-10-29 20:58:15 | b0dec1a922058d73d9c66a2859e73165 | 4/61 (6.56%)
| IcedID | 217.182.188.118:443 |
| 2019-10-29 20:58:15 | b0dec1a922058d73d9c66a2859e73165 | 4/61 (6.56%)
| IcedID | 217.182.188.118:443 |
# of entries: 28 (max: 100)