SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint a5cc5f0fb63db7ef4f8c99cf4928753cea90295c.

Database Entry

SHA1 Fingerprint:	a5cc5f0fb63db7ef4f8c99cf4928753cea90295c
Certificate Common Name (CN):	vuinuzhz.com
Issuer Distinguished Name (DN):	vuinuzhz.com
TLS Version:	TLS 1.2
First seen:	2016-08-26 08:58:58 UTC
Last seen:	2016-11-23 05:53:21 UTC
Status:	Blacklisted
Listing reason:	Vawtrak C&C
Listing date:	2016-08-29 08:39:00
Malware samples:	27
Botnet C&Cs:	8

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2016-11-23 05:53:21	d5c0a63b25011a48fe2adc13df6544c6	31/57 (54.39%)	Vawtrak	62.76.190.162:443
2016-11-23 05:53:21	d5c0a63b25011a48fe2adc13df6544c6	31/57 (54.39%)	Vawtrak	62.76.190.162:443
2016-11-23 01:30:01	da2e51d8cecb9032da1982f86a2ee9bd	33/56 (58.93%)	Vawtrak	193.218.145.50:443
2016-11-23 01:30:01	da2e51d8cecb9032da1982f86a2ee9bd	33/56 (58.93%)	Vawtrak	193.218.145.50:443
2016-11-21 22:25:58	862c66c9d58f8d123af5305900424249	27/57 (47.37%)	Vawtrak	193.218.145.50:443
2016-11-21 22:25:58	862c66c9d58f8d123af5305900424249	27/57 (47.37%)	Vawtrak	193.218.145.50:443
2016-11-21 18:45:02	b775fd46c9ca07322a2a94ea5e9fc660	n/a	Vawtrak	62.76.190.162:443
2016-11-21 18:45:02	b775fd46c9ca07322a2a94ea5e9fc660	n/a	Vawtrak	62.76.190.162:443
2016-11-20 07:28:16	4b24388545b3eed4ddc918c7809c2d10	6/56 (10.71%)	Vawtrak	193.218.145.50:443
2016-11-20 07:28:16	4b24388545b3eed4ddc918c7809c2d10	6/56 (10.71%)	Vawtrak	193.218.145.50:443
2016-11-19 13:06:26	d97a141964b5cf241577da2cf260d2de	38/57 (66.67%)	Vawtrak	62.76.190.162:443
2016-11-19 13:06:26	d97a141964b5cf241577da2cf260d2de	38/57 (66.67%)	Vawtrak	62.76.190.162:443
2016-11-19 10:18:15	a536e8bb11462e5daffcd7b8ad826a21	32/57 (56.14%)	Vawtrak	193.218.145.50:443
2016-11-19 10:18:15	a536e8bb11462e5daffcd7b8ad826a21	32/57 (56.14%)	Vawtrak	193.218.145.50:443
2016-10-19 09:56:37	759ce1e1bc6dae009673ad0029f2eee9	34/56 (60.71%)	Vawtrak	212.116.113.163:443
2016-10-19 09:56:37	759ce1e1bc6dae009673ad0029f2eee9	34/56 (60.71%)	Vawtrak	212.116.113.163:443
2016-10-13 22:42:47	a12a4840d1917f0162ef4afa746f63d8	8/56 (14.29%)	Vawtrak	212.116.113.163:443
2016-10-13 22:42:47	a12a4840d1917f0162ef4afa746f63d8	8/56 (14.29%)	Vawtrak	212.116.113.163:443
2016-10-08 18:01:56	5eccd40fe6382531b0522356d636b29f	14/57 (24.56%)	ZeuS	212.116.113.163:443
2016-10-08 18:01:56	5eccd40fe6382531b0522356d636b29f	14/57 (24.56%)	ZeuS	212.116.113.163:443
2016-10-08 05:57:22	0f224615564f250b28888953fa1b2775	8/57 (14.04%)	ZeuS	212.116.113.163:443
2016-10-08 05:57:22	0f224615564f250b28888953fa1b2775	8/57 (14.04%)	ZeuS	212.116.113.163:443
2016-10-07 19:11:05	c20e19c78e6a5ebcadee3107a1ffe187	36/57 (63.16%)	Vawtrak	92.63.111.178:443
2016-10-07 19:11:05	c20e19c78e6a5ebcadee3107a1ffe187	36/57 (63.16%)	Vawtrak	92.63.111.178:443
2016-10-05 18:13:53	c661bce38524bfbabdc43420d85ecbd9	32/56 (57.14%)	Vawtrak	212.116.113.163:443
2016-10-05 18:13:53	c661bce38524bfbabdc43420d85ecbd9	32/56 (57.14%)	Vawtrak	212.116.113.163:443
2016-10-05 10:55:48	6e929352a66ccaef8fcf0721071a9ef2	33/56 (58.93%)	Vawtrak	212.116.113.163:443
2016-10-05 10:55:48	6e929352a66ccaef8fcf0721071a9ef2	33/56 (58.93%)	Vawtrak	212.116.113.163:443
2016-10-01 12:16:29	a413bff6f7acb24d45557a6dcc335c57	17/57 (29.82%)	Vawtrak	212.116.113.163:443
2016-10-01 12:16:29	a413bff6f7acb24d45557a6dcc335c57	17/57 (29.82%)	Vawtrak	212.116.113.163:443
2016-09-30 05:49:10	b769e6069137459e5147a64f0780d690	9/57 (15.79%)	Vawtrak	212.116.113.163:443
2016-09-30 05:49:10	b769e6069137459e5147a64f0780d690	9/57 (15.79%)	Vawtrak	212.116.113.163:443
2016-09-29 19:14:24	5ad8cf5f84d66045d578ce3d51d8027e	17/56 (30.36%)	Vawtrak	81.177.13.242:443
2016-09-29 19:14:24	5ad8cf5f84d66045d578ce3d51d8027e	17/56 (30.36%)	Vawtrak	81.177.13.242:443
2016-09-29 18:57:59	5d755cde8df37696915675335f933424	n/a	Vawtrak	81.177.13.242:443
2016-09-29 18:57:59	5d755cde8df37696915675335f933424	n/a	Vawtrak	81.177.13.242:443
2016-09-25 05:22:23	c9ea8cf37bbdaefdfdb442a942962a61	36/58 (62.07%)	Vawtrak	81.177.13.242:443
2016-09-25 05:22:23	c9ea8cf37bbdaefdfdb442a942962a61	36/58 (62.07%)	Vawtrak	81.177.13.242:443
2016-09-24 12:35:12	7b4d47c3cb7b575e01204ffb2d6d0c8e	n/a	Vawtrak	81.177.13.242:443
2016-09-24 12:35:12	7b4d47c3cb7b575e01204ffb2d6d0c8e	n/a	Vawtrak	81.177.13.242:443
2016-09-22 08:43:24	94788589b2aaf83e92863606cb493f86	5/57 (8.77%)	Vawtrak	81.177.13.242:443
2016-09-22 08:43:24	94788589b2aaf83e92863606cb493f86	5/57 (8.77%)	Vawtrak	81.177.13.242:443
2016-09-19 19:37:43	00aabf75187f97799c1674c5b6e551fb	22/57 (38.60%)	Vawtrak	81.177.13.242:443
2016-09-19 19:37:43	00aabf75187f97799c1674c5b6e551fb	22/57 (38.60%)	Vawtrak	81.177.13.242:443
2016-09-14 09:05:00	c3c45c35ecd4f72dd9cff41938705df4	9/57 (15.79%)	Vawtrak	95.46.98.89:443
2016-09-14 09:05:00	c3c45c35ecd4f72dd9cff41938705df4	9/57 (15.79%)	Vawtrak	95.46.98.89:443
2016-09-03 20:06:28	52d49b6bd8b476e7e832dfd2e76f2483	7/53 (13.21%)	Vawtrak	91.219.31.12:443
2016-09-03 20:06:28	52d49b6bd8b476e7e832dfd2e76f2483	7/53 (13.21%)	Vawtrak	91.219.31.12:443
2016-08-26 18:33:04	a2d0ed6eb5f2d55b06c1865e066d0c60	30/55 (54.55%)	Vawtrak	91.235.129.178:443
2016-08-26 18:33:04	a2d0ed6eb5f2d55b06c1865e066d0c60	30/55 (54.55%)	Vawtrak	91.235.129.178:443
2016-08-26 14:50:21	720e5d59f9475a5a7f6ccaf2f9181290	42/57 (73.68%)	Vawtrak	91.235.129.178:443
2016-08-26 14:50:21	720e5d59f9475a5a7f6ccaf2f9181290	42/57 (73.68%)	Vawtrak	91.235.129.178:443
2016-08-26 08:58:58	4066bdecd9365fb86ba9854718cb15d0	29/56 (51.79%)	Vawtrak	91.235.129.178:443
2016-08-26 08:58:58	4066bdecd9365fb86ba9854718cb15d0	29/56 (51.79%)	Vawtrak	91.235.129.178:443

# of entries: 54 (max: 100)