SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint ab1a2f92d7c8312c7ac0401eced5138c5c4c8bb0.
Database Entry
| SHA1 Fingerprint: | ab1a2f92d7c8312c7ac0401eced5138c5c4c8bb0 |
|---|---|
| Certificate Common Name (CN): | 138.226.237.209 |
| Issuer Distinguished Name (DN): | 138.226.237.209 |
| TLS Version: | TLS 1.2 |
| First seen: | 2026-01-20 01:05:53 UTC |
| Last seen: | 2026-01-21 13:16:30 UTC |
| Status: | Blacklisted |
| Listing reason: | Vidar C&C |
| Listing date: | 2026-01-21 17:59:22 |
| Malware samples: | 4 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2026-01-21 13:16:30 | 751b8e25f55fde88d10fe8e7332553ff | n/a | 138.226.237.209:443 | |
| 2026-01-21 07:55:41 | f406a8e403f5e65bf8a5031c904ad0b6 | n/a | 138.226.237.209:443 | |
| 2026-01-20 15:31:40 | dc8e0c52f167329a78409f9833ca7d0a | n/a | 138.226.237.209:443 | |
| 2026-01-20 01:05:53 | 8843c2951a4fd61e8b673c6bfe6596bf | n/a | 138.226.237.209:443 |
# of entries: 4 (max: 100)