SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint a20be3240f5e1d39bb9dd0c0cd50c9d22bca8db1.
Database Entry
| SHA1 Fingerprint: | a20be3240f5e1d39bb9dd0c0cd50c9d22bca8db1 |
|---|---|
| Certificate Common Name (CN): | rtx.kaizensamawati.com |
| Issuer Distinguished Name (DN): | E7 |
| TLS Version: | TLS 1.2 |
| First seen: | 2025-10-18 18:32:41 UTC |
| Last seen: | 2025-10-20 13:48:53 UTC |
| Status: | Blacklisted |
| Listing reason: | Vidar C&C |
| Listing date: | 2025-10-20 13:53:40 |
| Malware samples: | 20 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2025-10-20 13:48:53 | 2d6d13107611654c6ea8923277c9a88c | n/a | 49.13.36.231:443 | |
| 2025-10-20 12:29:13 | b1f5a5dd710cb278a5f056a457d23da2 | n/a | 49.13.36.231:443 | |
| 2025-10-20 12:13:35 | 2dc91ce08e75b9fe138ec21e9abbaf4d | n/a | 49.13.36.231:443 | |
| 2025-10-20 11:15:58 | 8a73fa30d1a3a790b6a014a8e087d158 | n/a | 49.13.36.231:443 | |
| 2025-10-20 10:31:12 | b99485b142c3127c767ec1a9411fdf1d | n/a | 49.13.36.231:443 | |
| 2025-10-20 09:48:50 | b9137a3a98c699f4877b4b80dcd68cdd | n/a | 49.13.36.231:443 | |
| 2025-10-20 09:10:18 | 5a34fcadab217137cf4639f43c3dd2df | n/a | 49.13.36.231:443 | |
| 2025-10-20 08:22:41 | 4827f08c6f02d327294520d1833295ab | n/a | 49.13.36.231:443 | |
| 2025-10-20 07:07:57 | 7210c5328ddbef807db11e98d9a27429 | n/a | 49.13.36.231:443 | |
| 2025-10-20 07:00:23 | 1734fa168b0d49d561901d283f77804b | n/a | 49.13.36.231:443 | |
| 2025-10-20 01:20:23 | d300969c24e3e776465f64a70d669c4c | n/a | 49.13.36.231:443 | |
| 2025-10-19 13:23:39 | 2246c2e6a80d07c9977cee88ba8763ae | n/a | 49.13.36.231:443 | |
| 2025-10-19 12:10:44 | cb820bff8fb17a0050ae54cab24b279d | n/a | 49.13.36.231:443 | |
| 2025-10-19 11:16:34 | 7b47402a2d504c0de7ef8d6d9dfba848 | n/a | 49.13.36.231:443 | |
| 2025-10-19 07:21:31 | 652530f7ebe857ae5159f703e4b51572 | n/a | 49.13.36.231:443 | |
| 2025-10-19 05:20:17 | 9cd35b1f49bf864ec132d380180af7af | n/a | 49.13.36.231:443 | |
| 2025-10-19 04:12:21 | 9c5f7f24a4c297f8e76b699e30bfd3be | n/a | 49.13.36.231:443 | |
| 2025-10-19 04:07:43 | b0a4f8d078c30ece481509ca4a64ffd2 | n/a | 49.13.36.231:443 | |
| 2025-10-18 21:54:08 | 8bad94d98177b5fd5ba2112b5f967086 | n/a | 49.13.36.231:443 | |
| 2025-10-18 18:32:41 | f09c1b061f098216f181b9e39cc5feb1 | n/a | 49.13.36.231:443 |
# of entries: 20 (max: 100)