SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint aac64caa32df3e078436713d8320a4b06b5dd67d.

Database Entry

SHA1 Fingerprint:	aac64caa32df3e078436713d8320a4b06b5dd67d
Certificate Common Name (CN):	junrio.com
Issuer Distinguished Name (DN):	RapidSSL CA
TLS Version:	SSLv3
First seen:	2014-05-23 13:13:02 UTC
Last seen:	2014-08-11 14:43:55 UTC
Status:	Blacklisted
Listing reason:	KINS C&C
Listing date:	2014-05-24 09:48:33
Malware samples:	6
Botnet C&Cs:	6

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2014-08-11 14:43:55	2649a4ecda151b85523cdb879ca0204c	23/54 (42.59%)	ZeuS	109.87.62.190:443
2014-08-11 14:43:55	2649a4ecda151b85523cdb879ca0204c	23/54 (42.59%)	ZeuS	109.87.62.190:443
2014-07-19 00:15:25	9ebe1e70e1d4c86914c91fecbc9304bd	22/53 (41.51%)	ZeuS	188.138.177.32:443
2014-07-19 00:15:25	9ebe1e70e1d4c86914c91fecbc9304bd	22/53 (41.51%)	ZeuS	188.138.177.32:443
2014-06-13 01:16:30	abadbb1163e9b99dc511065ac60f0d10	31/51 (60.78%)	ZeuS	109.104.183.141:443
2014-06-13 01:16:30	abadbb1163e9b99dc511065ac60f0d10	31/51 (60.78%)	ZeuS	109.104.183.141:443
2014-05-27 10:18:37	0cba7ec4d4799997a778fdadfe601db1	27/53 (50.94%)	ZeuS	94.100.95.109:443
2014-05-27 10:18:37	0cba7ec4d4799997a778fdadfe601db1	27/53 (50.94%)	ZeuS	94.100.95.109:443
2014-05-26 01:09:14	77ab3cdfd859e1c06adfb8942a5e340f	16/51 (31.37%)	ZeuS	87.224.225.224:443
2014-05-26 01:09:14	77ab3cdfd859e1c06adfb8942a5e340f	16/51 (31.37%)	ZeuS	87.224.225.224:443
2014-05-23 13:13:02	7536c219451d09b018d62cf4f933432f	28/51 (54.90%)	ZeuS	216.58.117.114:443
2014-05-23 13:13:02	7536c219451d09b018d62cf4f933432f	28/51 (54.90%)	ZeuS	216.58.117.114:443

# of entries: 12 (max: 100)