SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 9edc51f3bc900c7eff234276d5d98b5805644e12.
Database Entry
| SHA1 Fingerprint: | 9edc51f3bc900c7eff234276d5d98b5805644e12 |
|---|---|
| Certificate Common Name (CN): | C=XX, L=Default City, O=Default Company Ltd |
| Issuer Distinguished Name (DN): | C=XX, L=Default City, O=Default Company Ltd |
| TLS Version: | TLS 1.2 |
| First seen: | 2015-06-17 19:42:52 UTC |
| Last seen: | 2015-06-25 16:01:19 UTC |
| Status: | Blacklisted |
| Listing reason: | Ransomware C&C |
| Listing date: | 2015-06-25 17:03:30 |
| Malware samples: | 7 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2015-06-25 16:01:19 | 2e1f973a2fbc62f39418d3dc4afab0ba |  3/55 (5.45%)
| Ransomware | 185.86.76.80:443 |
| 2015-06-25 16:01:19 | 2e1f973a2fbc62f39418d3dc4afab0ba | 3/55 (5.45%)
| Ransomware | 185.86.76.80:443 |
| 2015-06-25 15:11:17 | 07511b07cc53df4a0f781d7d5f1c41c1 | 4/56 (7.14%)
| Ransomware | 185.86.76.80:443 |
| 2015-06-25 15:11:17 | 07511b07cc53df4a0f781d7d5f1c41c1 | 4/56 (7.14%)
| Ransomware | 185.86.76.80:443 |
| 2015-06-20 06:25:13 | d48edc8d0b3bc9340f769898e24512f0 | 9/57 (15.79%)
| 185.86.76.80:443 | |
| 2015-06-20 06:25:13 | d48edc8d0b3bc9340f769898e24512f0 | 9/57 (15.79%)
| 185.86.76.80:443 | |
| 2015-06-19 13:09:58 | 04df20b2f479b1410c94e96714b9cdbe | 16/57 (28.07%)
| Ransomware | 185.86.76.80:443 |
| 2015-06-19 13:09:58 | 04df20b2f479b1410c94e96714b9cdbe | 16/57 (28.07%)
| Ransomware | 185.86.76.80:443 |
| 2015-06-19 01:27:39 | 95463e54b1b40bd78976a22979ea3e70 | 2/57 (3.51%)
| Ransomware | 185.86.76.80:443 |
| 2015-06-19 01:27:39 | 95463e54b1b40bd78976a22979ea3e70 | 2/57 (3.51%)
| Ransomware | 185.86.76.80:443 |
| 2015-06-18 14:14:07 | 7a301c123f17e666277e4e201623cd3a | 1/57 (1.75%)
| Ransomware | 185.86.76.80:443 |
| 2015-06-18 14:14:07 | 7a301c123f17e666277e4e201623cd3a | 1/57 (1.75%)
| Ransomware | 185.86.76.80:443 |
| 2015-06-17 19:42:52 | e8765fea3188790275abae258291ecf4 | 4/57 (7.02%)
| Ransomware | 185.86.76.80:443 |
| 2015-06-17 19:42:52 | e8765fea3188790275abae258291ecf4 | 4/57 (7.02%)
| Ransomware | 185.86.76.80:443 |
# of entries: 14 (max: 100)