SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 9c6d80bd524275aaab7c35f9e1c8d17aca14da56.
Database Entry
| SHA1 Fingerprint: | 9c6d80bd524275aaab7c35f9e1c8d17aca14da56 |
|---|---|
| Certificate Common Name (CN): | O=Nextcloud |
| Issuer Distinguished Name (DN): | O=Nextcloud |
| TLS Version: | TLS 1.2 |
| First seen: | 2024-01-16 17:32:48 UTC |
| Last seen: | 2024-01-21 15:11:27 UTC |
| Status: | Blacklisted |
| Listing reason: | AsyncRAT C&C |
| Listing date: | 2024-01-21 16:08:39 |
| Malware samples: | 24 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2024-01-21 15:11:27 | 70283026ba9695e80afb00878f717166 | n/a | RedLineStealer | 45.15.156.13:443 |
| 2024-01-21 10:33:09 | bfc9048b5381ff08e29ca318b0cacd70 | n/a | RiseProStealer | 45.15.156.13:443 |
| 2024-01-21 07:15:13 | 33cb562a49f8030eb993c210f4fb1221 | n/a | TeamBot | 45.15.156.13:443 |
| 2024-01-21 06:40:35 | 4bf40a595b37b88d2f0967eb52a30d7d | n/a | RiseProStealer | 45.15.156.13:443 |
| 2024-01-20 23:11:28 | 219e7425b61f8b9f627e1a4659901f2d | n/a | RiseProStealer | 45.15.156.13:443 |
| 2024-01-20 17:29:12 | f6ff3a0cbac3c500cbb81c2b4b7ad4bc | n/a | RedLineStealer | 45.15.156.13:443 |
| 2024-01-20 14:49:59 | 2a8acf7f94a29576615a032a66cbcff1 | n/a | TeamBot | 45.15.156.13:443 |
| 2024-01-20 13:18:49 | 557499e92f38268a8c2dbc0df429af45 | n/a | Stealc | 45.15.156.13:443 |
| 2024-01-20 10:14:17 | 3dd9bb3ade421f4eab256da0f42646a3 | n/a | RedLineStealer | 45.15.156.13:443 |
| 2024-01-20 06:22:21 | 71f8c64c8401696c1b9ac019a41a5560 |  29 / 68 (42.65%)
| RedLineStealer | 45.15.156.13:443 |
| 2024-01-20 02:09:04 | 13945cbf3c3e5b489d31d4b455cbaecf | 47 / 69 (68.12%)
| RedLineStealer | 45.15.156.13:443 |
| 2024-01-20 00:28:44 | fd6e2c2a7ec65fad669f417889f84c01 | n/a | RedLineStealer | 45.15.156.13:443 |
| 2024-01-19 19:58:00 | 868515a887db8abcc95220ee552fff24 | n/a | RedLineStealer | 45.15.156.13:443 |
| 2024-01-19 18:48:18 | 0518d9c6db9a614769bf43fbff180167 | n/a | Stealc | 45.15.156.13:443 |
| 2024-01-19 16:58:01 | cecd3d6f1c7b8d576d8cf06dcea88fb3 | n/a | Amadey | 45.15.156.13:443 |
| 2024-01-19 16:52:59 | 43c66bb7924057abaf91e8ac6cc54072 | n/a | RedLineStealer | 45.15.156.13:443 |
| 2024-01-19 13:12:04 | 11549be2ba97133ebb7fefa2ab72f07e | 27 / 66 (40.91%)
| RedLineStealer | 45.15.156.13:443 |
| 2024-01-19 10:59:27 | 59948cd893faf099be39f2f29772f819 | n/a | RedLineStealer | 45.15.156.13:443 |
| 2024-01-18 10:23:27 | 458210ef2582bca66b0afd0f218cfabe | n/a | LummaStealer | 45.15.156.13:443 |
| 2024-01-17 23:26:35 | 670c15df899a987829b0a7c80635a7a0 | n/a | RedLineStealer | 45.15.156.13:443 |
| 2024-01-17 08:10:34 | 541a947f3486e027e9b0272e040753ad | n/a | RedLineStealer | 45.15.156.13:443 |
| 2024-01-17 06:04:23 | 8240eb3d826794476f74b0fc5da88bfd | 23 / 63 (36.51%)
| TeamBot | 45.15.156.13:443 |
| 2024-01-17 00:45:14 | c270f55b4f6be6256d136dd2932993d9 | 25 / 68 (36.76%)
| TeamBot | 45.15.156.13:443 |
| 2024-01-16 17:32:48 | 3f5253347efcd059dbd4c0ac9d571fb2 | 24 / 69 (34.78%)
| RedLineStealer | 45.15.156.13:443 |
# of entries: 24 (max: 100)