SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint a092979fdc86be59f60fb69c6e3539f36cba6599.

Database Entry

SHA1 Fingerprint:a092979fdc86be59f60fb69c6e3539f36cba6599
Certificate Common Name (CN):www.yIWvCpDi.com/O=VHJph29qcTK8V1vE./C=US
Issuer Distinguished Name (DN):www.yIWvCpDi.com/O=VHJph29qcTK8V1vE./C=US
TLS Version:TLSv1
First seen:2015-11-13 21:12:33 UTC
Last seen:2016-01-11 02:42:55 UTC
Status:Blacklisted
Listing reason:Gootkit C&C
Listing date:2015-11-16 11:33:42
Malware samples:23
Botnet C&Cs:9

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2016-01-11 02:42:55a29d4cd45e51abd24114735764777d63Virustotal results 9/54 (16.67%) Gootkit 5.255.78.133:443
2016-01-11 02:42:55a29d4cd45e51abd24114735764777d63Virustotal results 9/54 (16.67%) Gootkit 5.255.78.133:443
2015-11-29 12:27:510885fe17ecf453cf66b8216b1ddc0c9bn/aGootkit 198.23.164.196:443
2015-11-29 12:27:510885fe17ecf453cf66b8216b1ddc0c9bn/aGootkit 198.23.164.196:443
2015-11-28 22:47:188deade68256c59cdaaeda6a591abd6c3n/aGootkit 79.98.104.59:443
2015-11-28 22:47:188deade68256c59cdaaeda6a591abd6c3n/aGootkit 79.98.104.59:443
2015-11-25 09:00:501a75ab4240c4987afb9a2e3e0a13050aVirustotal results 8/56 (14.29%) Gootkit 163.53.247.14:443
2015-11-25 09:00:501a75ab4240c4987afb9a2e3e0a13050aVirustotal results 8/56 (14.29%) Gootkit 163.53.247.14:443
2015-11-24 16:22:45ed566a0cac1526f4767f56cc9eea74abVirustotal results 14/54 (25.93%) Gootkit 77.55.254.156:443
2015-11-24 16:22:45ed566a0cac1526f4767f56cc9eea74abVirustotal results 14/54 (25.93%) Gootkit 77.55.254.156:443
2015-11-24 08:35:109254a631e5eea45f53c31246ecce378aVirustotal results 21/56 (37.50%) Gootkit 77.55.254.156:443
2015-11-24 08:35:109254a631e5eea45f53c31246ecce378aVirustotal results 21/56 (37.50%) Gootkit 77.55.254.156:443
2015-11-24 08:33:5111bad60bf119d6b1b2132163784b0786Virustotal results 7/55 (12.73%) Gootkit 77.55.254.156:443
2015-11-24 08:33:5111bad60bf119d6b1b2132163784b0786Virustotal results 7/55 (12.73%) Gootkit 77.55.254.156:443
2015-11-23 11:00:30e0de0cfa444fe61f1ef39e12ca2320a4Virustotal results 6/56 (10.71%) Gootkit 185.12.14.8:443
2015-11-23 11:00:30e0de0cfa444fe61f1ef39e12ca2320a4Virustotal results 6/56 (10.71%) Gootkit 185.12.14.8:443
2015-11-23 09:50:2007803290f57e00b1bd10b2a3006c8e84Virustotal results 8/56 (14.29%) Gootkit 92.114.92.116:443
2015-11-23 09:50:2007803290f57e00b1bd10b2a3006c8e84Virustotal results 8/56 (14.29%) Gootkit 92.114.92.116:443
2015-11-22 15:49:297631174f0c05a60751fd2f8f7ed03cf0Virustotal results 18/55 (32.73%) Gootkit 5.255.78.133:443
2015-11-22 15:49:297631174f0c05a60751fd2f8f7ed03cf0Virustotal results 18/55 (32.73%) Gootkit 5.255.78.133:443
2015-11-22 12:45:5866c2ed693f29ccfaa3319d67855fb039Virustotal results 22/56 (39.29%) Gootkit 185.12.14.8:443
2015-11-22 12:45:5866c2ed693f29ccfaa3319d67855fb039Virustotal results 22/56 (39.29%) Gootkit 185.12.14.8:443
2015-11-22 11:22:537abfab8dda2db0d64ead0c3e8e5ce0b3Virustotal results 20/56 (35.71%) Gootkit 185.12.14.8:443
2015-11-22 11:22:537abfab8dda2db0d64ead0c3e8e5ce0b3Virustotal results 20/56 (35.71%) Gootkit 185.12.14.8:443
2015-11-22 10:54:0323f182041d839c723b32319b82447bbfVirustotal results 8/56 (14.29%) Gootkit 5.255.78.133:443
2015-11-22 10:54:0323f182041d839c723b32319b82447bbfVirustotal results 8/56 (14.29%) Gootkit 5.255.78.133:443
2015-11-21 20:03:419b61d9ffd7511171d68feca150fceb6eVirustotal results 13/55 (23.64%) Gootkit 5.255.78.133:443
2015-11-21 20:03:419b61d9ffd7511171d68feca150fceb6eVirustotal results 13/55 (23.64%) Gootkit 5.255.78.133:443
2015-11-21 16:38:01538ec578205727875250c51b9846fb2cVirustotal results 14/54 (25.93%) Gootkit 185.12.14.8:443
2015-11-21 16:38:01538ec578205727875250c51b9846fb2cVirustotal results 14/54 (25.93%) Gootkit 185.12.14.8:443
2015-11-21 14:15:58e9df9a01aa4473ea6ae7ffc74abbc1cdVirustotal results 17/55 (30.91%) Gootkit 5.255.78.133:443
2015-11-21 14:15:58e9df9a01aa4473ea6ae7ffc74abbc1cdVirustotal results 17/55 (30.91%) Gootkit 5.255.78.133:443
2015-11-21 13:10:16b66582816bfef31e0ba99ef0ede97c9bVirustotal results 9/53 (16.98%) Gootkit 185.12.14.8:443
2015-11-21 13:10:16b66582816bfef31e0ba99ef0ede97c9bVirustotal results 9/53 (16.98%) Gootkit 185.12.14.8:443
2015-11-21 13:05:2377029f1567bd5da80aaf8d9be3419c5dVirustotal results 8/54 (14.81%) Gootkit 185.12.14.8:443
2015-11-21 13:05:2377029f1567bd5da80aaf8d9be3419c5dVirustotal results 8/54 (14.81%) Gootkit 185.12.14.8:443
2015-11-21 11:33:3473003dcdcdf9cae4f0412b3a48c5802bVirustotal results 8/55 (14.55%) Gootkit 5.255.78.133:443
2015-11-21 11:33:3473003dcdcdf9cae4f0412b3a48c5802bVirustotal results 8/55 (14.55%) Gootkit 5.255.78.133:443
2015-11-20 12:21:002179cd4b132123c41ae9a8b9a0b9745eVirustotal results 17/56 (30.36%) Gootkit 5.255.78.133:443
2015-11-20 12:21:002179cd4b132123c41ae9a8b9a0b9745eVirustotal results 17/56 (30.36%) Gootkit 5.255.78.133:443
2015-11-20 07:50:09d77cb898f1b8ec59c3fa60a730e85ea2Virustotal results 1/55 (1.82%) Gootkit 194.135.82.127:443
2015-11-20 07:50:09d77cb898f1b8ec59c3fa60a730e85ea2Virustotal results 1/55 (1.82%) Gootkit 194.135.82.127:443
2015-11-14 11:19:4339350b747a238f3ffc6ddd81a059e5b1Virustotal results 1/54 (1.85%) Gootkit 213.202.214.141:443
2015-11-14 11:19:4339350b747a238f3ffc6ddd81a059e5b1Virustotal results 1/54 (1.85%) Gootkit 213.202.214.141:443
2015-11-13 21:12:336c5845c788b04e47ead71ee4c287d769Virustotal results 30/56 (53.57%) Gootkit 213.202.214.141:443
2015-11-13 21:12:336c5845c788b04e47ead71ee4c287d769Virustotal results 30/56 (53.57%) Gootkit 213.202.214.141:443

# of entries: 46 (max: 100)