SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint aac64caa32df3e078436713d8320a4b06b5dd67d.

Database Entry


SHA1 Fingerprint:aac64caa32df3e078436713d8320a4b06b5dd67d
Certificate Common Name (CN):junrio.com
Issuer Distinguished Name (DN):RapidSSL CA
TLS Version:SSLv3
First seen:2014-05-23 13:13:02 UTC
Last seen:2014-08-11 14:43:55 UTC
Status:Blacklisted
Listing reason:KINS C&C
Listing date:2014-05-24 09:48:33
Malware samples:6
Botnet C&Cs:6

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2014-08-11 14:43:552649a4ecda151b85523cdb879ca0204cVirustotal results 23/54 (42.59%) ZeuS 109.87.62.190:443
2014-07-19 00:15:259ebe1e70e1d4c86914c91fecbc9304bdVirustotal results 22/53 (41.51%) ZeuS 188.138.177.32:443
2014-06-13 01:16:30abadbb1163e9b99dc511065ac60f0d10Virustotal results 31/51 (60.78%) ZeuS 109.104.183.141:443
2014-05-27 10:18:370cba7ec4d4799997a778fdadfe601db1Virustotal results 27/53 (50.94%) ZeuS 94.100.95.109:443
2014-05-26 01:09:1477ab3cdfd859e1c06adfb8942a5e340fVirustotal results 16/51 (31.37%) ZeuS 87.224.225.224:443
2014-05-23 13:13:027536c219451d09b018d62cf4f933432fVirustotal results 28/51 (54.90%) ZeuS 216.58.117.114:443

# of entries: 6 (max: 100)