SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint acfb9265d7971f30872f0ff036dee861e6749d2b.

Database Entry


SHA1 Fingerprint:acfb9265d7971f30872f0ff036dee861e6749d2b
Certificate Common Name (CN):116.202.187.1
Issuer Distinguished Name (DN):116.202.187.1
TLS Version:TLS 1.2
First seen:2025-08-15 06:56:39 UTC
Last seen:2025-08-18 01:43:40 UTC
Status:Blacklisted
Listing reason:Vidar C&C
Listing date:2025-08-15 15:20:47
Malware samples:6
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2025-08-18 01:43:4012f6ea4233d57b8c7258c2306f2e099en/a116.202.187.1:443
2025-08-17 04:23:257175d87da8b86458ef01a3a92b1c5739n/a116.202.187.1:443
2025-08-15 13:15:55ba61aec3578109feaa371c28c19105ebn/a116.202.187.1:443
2025-08-15 12:49:2554ae4c362d77c61258867dd8511ebd31n/a116.202.187.1:443
2025-08-15 10:21:49c578c0068b35f3c75f170aaab65122fen/a116.202.187.1:443
2025-08-15 06:56:395cd624bfbb88aac806a4c58436051273n/a116.202.187.1:443

# of entries: 6 (max: 100)