SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint a838ffd695033908b3a3f0bad7653c38edceebb4.
Database Entry
| SHA1 Fingerprint: | a838ffd695033908b3a3f0bad7653c38edceebb4 |
|---|---|
| Certificate Common Name (CN): | www.oj7i7ldi.com/O=5fa5g66r./C=US |
| Issuer Distinguished Name (DN): | www.oj7i7ldi.com/O=5fa5g66r./C=US |
| TLS Version: | TLSv1 |
| First seen: | 2015-11-09 20:20:23 UTC |
| Last seen: | 2015-11-14 00:07:04 UTC |
| Status: | Blacklisted |
| Listing reason: | Gootkit C&C |
| Listing date: | 2015-11-10 10:02:09 |
| Malware samples: | 10 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2015-11-14 00:07:04 | fcfe658b77f0526e3af9391b2928dfc1 |  8/55 (14.55%)
| Gootkit | 176.123.29.23:80 |
| 2015-11-14 00:07:04 | fcfe658b77f0526e3af9391b2928dfc1 | 8/55 (14.55%)
| Gootkit | 176.123.29.23:80 |
| 2015-11-13 07:37:53 | 29b1bb49a40b3a11850b62298435771e | n/a | Gootkit | 176.123.29.23:80 |
| 2015-11-13 07:37:53 | 29b1bb49a40b3a11850b62298435771e | n/a | Gootkit | 176.123.29.23:80 |
| 2015-11-13 07:36:48 | 2963e29c9e05bfbff14c88b0efb7d495 | n/a | Gootkit | 176.123.29.23:80 |
| 2015-11-13 07:36:48 | 2963e29c9e05bfbff14c88b0efb7d495 | n/a | Gootkit | 176.123.29.23:80 |
| 2015-11-13 07:29:52 | 477b0b14766d3fd5f51831eaf3918deb | 30/55 (54.55%)
| Gootkit | 176.123.29.23:80 |
| 2015-11-13 07:29:52 | 477b0b14766d3fd5f51831eaf3918deb | 30/55 (54.55%)
| Gootkit | 176.123.29.23:80 |
| 2015-11-13 07:06:09 | 11327731908d0554b7fe913c97e87871 | 28/56 (50.00%)
| Gootkit | 176.123.29.23:80 |
| 2015-11-13 07:06:09 | 11327731908d0554b7fe913c97e87871 | 28/56 (50.00%)
| Gootkit | 176.123.29.23:80 |
| 2015-11-13 04:59:40 | 4d598197d099c734fe8b8790cc04cbbf | n/a | Gootkit | 176.123.29.23:80 |
| 2015-11-13 04:59:40 | 4d598197d099c734fe8b8790cc04cbbf | n/a | Gootkit | 176.123.29.23:80 |
| 2015-11-12 22:18:46 | cb5ed3eae23e336e4a9681925761f7e2 | 32/56 (57.14%)
| Gootkit | 176.123.29.23:80 |
| 2015-11-12 22:18:46 | cb5ed3eae23e336e4a9681925761f7e2 | 32/56 (57.14%)
| Gootkit | 176.123.29.23:80 |
| 2015-11-12 19:11:24 | 5d470c55cdcb45795dadaf254136c9e1 | 13/55 (23.64%)
| Gootkit | 176.123.29.23:80 |
| 2015-11-12 19:11:24 | 5d470c55cdcb45795dadaf254136c9e1 | 13/55 (23.64%)
| Gootkit | 176.123.29.23:80 |
| 2015-11-10 22:39:35 | f80de329d75c9f30a18517b34c84d776 | 14/56 (25.00%)
| Gootkit | 176.123.29.23:80 |
| 2015-11-10 22:39:35 | f80de329d75c9f30a18517b34c84d776 | 14/56 (25.00%)
| Gootkit | 176.123.29.23:80 |
| 2015-11-09 20:20:23 | 38864c75bd258bb07e2c954a1686140f | 30/56 (53.57%)
| Gootkit | 176.123.29.23:80 |
| 2015-11-09 20:20:23 | 38864c75bd258bb07e2c954a1686140f | 30/56 (53.57%)
| Gootkit | 176.123.29.23:80 |
# of entries: 20 (max: 100)