SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 9ba1f631caafb333f3c8faf82719a72642955927.

Database Entry


SHA1 Fingerprint:9ba1f631caafb333f3c8faf82719a72642955927
Certificate Common Name (CN):Oracle America, Inc.
Issuer Distinguished Name (DN):Oracle America, Inc.
TLS Version:TLSv1
First seen:2017-08-11 23:50:51 UTC
Last seen:2017-12-18 11:51:54 UTC
Status:Blacklisted
Listing reason:Adwind C&C
Listing date:2017-08-22 11:39:36
Malware samples:3
Botnet C&Cs:2

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2017-12-18 11:51:54a38d6d72354dc0bfc7e86906362fded8Virustotal results 10/61 (16.39%) JBifrost 185.227.83.56:3052
2017-12-18 11:51:54a38d6d72354dc0bfc7e86906362fded8Virustotal results 10/61 (16.39%) JBifrost 185.227.83.56:3052
2017-08-25 15:14:49342188fca131f5cac7b166648b9c3c7cn/aAdwind146.255.79.170:7054
2017-08-25 15:14:49342188fca131f5cac7b166648b9c3c7cn/aAdwind146.255.79.170:7054
2017-08-11 23:50:5150fd99165a57cc36edf2f2fb9f1aba3bVirustotal results 11/60 (18.33%) Adwind146.255.79.170:7054
2017-08-11 23:50:5150fd99165a57cc36edf2f2fb9f1aba3bVirustotal results 11/60 (18.33%) Adwind146.255.79.170:7054

# of entries: 6 (max: 100)