SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint acfb9265d7971f30872f0ff036dee861e6749d2b.
Database Entry
| SHA1 Fingerprint: | acfb9265d7971f30872f0ff036dee861e6749d2b |
|---|---|
| Certificate Common Name (CN): | 116.202.187.1 |
| Issuer Distinguished Name (DN): | 116.202.187.1 |
| TLS Version: | TLS 1.2 |
| First seen: | 2025-08-15 06:56:39 UTC |
| Last seen: | 2025-08-18 01:43:40 UTC |
| Status: | Blacklisted |
| Listing reason: | Vidar C&C |
| Listing date: | 2025-08-15 15:20:47 |
| Malware samples: | 6 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2025-08-18 01:43:40 | 12f6ea4233d57b8c7258c2306f2e099e | n/a | 116.202.187.1:443 | |
| 2025-08-17 04:23:25 | 7175d87da8b86458ef01a3a92b1c5739 | n/a | 116.202.187.1:443 | |
| 2025-08-15 13:15:55 | ba61aec3578109feaa371c28c19105eb | n/a | 116.202.187.1:443 | |
| 2025-08-15 12:49:25 | 54ae4c362d77c61258867dd8511ebd31 | n/a | 116.202.187.1:443 | |
| 2025-08-15 10:21:49 | c578c0068b35f3c75f170aaab65122fe | n/a | 116.202.187.1:443 | |
| 2025-08-15 06:56:39 | 5cd624bfbb88aac806a4c58436051273 | n/a | 116.202.187.1:443 |
# of entries: 6 (max: 100)