SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 9b23d7e9965ead257cda9b8ad51a8a4deede18eb.

Database Entry

SHA1 Fingerprint:	9b23d7e9965ead257cda9b8ad51a8a4deede18eb
Certificate Common Name (CN):	myspecialdot.com
Issuer Distinguished Name (DN):	WE1
TLS Version:	TLSv1
First seen:	2025-02-19 13:39:08 UTC
Last seen:	2025-03-02 04:57:16 UTC
Status:	Blacklisted
Listing reason:	LummaStealer C&C
Listing date:	2025-03-02 12:08:51
Malware samples:	14
Botnet C&Cs:	2

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Botnet C&C (IP:port)
2025-03-02 04:57:16	78d7c37e1c46f454b76eb816e09072bf	n/a	172.67.136.89:443
2025-03-01 22:06:38	5b00e3114d80f529ddf20fec00793315	n/a	172.67.136.89:443
2025-03-01 08:22:52	c4a0c12b2a91e43cc8617c963b7935c7	n/a	104.21.86.196:443
2025-02-28 22:02:42	8e57739b0ddda0475c66480adfa605b6	n/a	172.67.136.89:443
2025-02-28 09:04:30	f6aa5fcddd34b5f057f9f69786f3710a	n/a	104.21.86.196:443
2025-02-28 05:08:03	c286b6188600117135df008c014ebaf2	n/a	104.21.86.196:443
2025-02-28 04:40:44	bb5a19146467793b6a071f9fe29c69b1	n/a	172.67.136.89:443
2025-02-28 00:03:28	33b3f0e73a96d996dc0260ad8bc310a2	n/a	104.21.86.196:443
2025-02-26 10:52:13	d103bea5048d634a7dbf57ce3a113aa7	n/a	104.21.86.196:443
2025-02-24 01:35:47	5ea4ce823caaae9a38fda72323f5c82a	n/a	104.21.86.196:443
2025-02-23 13:34:30	1eb93a06febdaa1687a4ce7b10d88f8b	n/a	104.21.86.196:443
2025-02-22 00:42:38	8862e9e3f3d5ef050dd05ba9f6e98fc7	n/a	104.21.86.196:443
2025-02-21 21:01:59	60c1eec996304bb53a3ed2e537c42dec	n/a	104.21.86.196:443
2025-02-19 13:39:08	62533bbbbad79dc3a6d0cd980e93b351	n/a	172.67.136.89:443

# of entries: 14 (max: 100)