SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint b0238c547a905bfa119c4e8baccaeacf36491ff6.
Database Entry
| SHA1 Fingerprint: | b0238c547a905bfa119c4e8baccaeacf36491ff6 |
|---|---|
| Certificate Common Name (CN): | localhost |
| Issuer Distinguished Name (DN): | localhost |
| TLS Version: | TLS 1.2 |
| First seen: | 2016-07-04 19:13:58 UTC |
| Last seen: | 2021-06-17 15:45:37 UTC |
| Status: | Blacklisted |
| Listing reason: | Ransomware C&C |
| Listing date: | 2016-10-26 14:33:52 |
| Malware samples: | 103 |
| Botnet C&Cs: | 42 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2021-06-17 15:45:37 | 165df5dfd7f64e69df2b7edc556317db |  5 / 62 (8.06%)
| 103.140.251.225:443 | |
| 2021-06-17 15:45:37 | 165df5dfd7f64e69df2b7edc556317db | 5 / 62 (8.06%)
| 103.140.251.225:443 | |
| 2021-04-26 08:11:34 | 0de7b538585d05e895aa4f15cc83f874 | 21 / 71 (29.58%)
| TrickBot | 149.56.80.31:443 |
| 2021-04-26 08:11:34 | 0de7b538585d05e895aa4f15cc83f874 | 21 / 71 (29.58%)
| TrickBot | 149.56.80.31:443 |
| 2021-04-26 08:11:34 | 0de7b538585d05e895aa4f15cc83f874 | 21 / 71 (29.58%)
| TrickBot | 149.56.80.31:443 |
| 2021-04-26 08:11:34 | 0de7b538585d05e895aa4f15cc83f874 | 21 / 71 (29.58%)
| TrickBot | 149.56.80.31:443 |
| 2021-04-22 17:09:20 | 0247222caf3b70431bb17ed46bf2cf94 | 47 / 66 (71.21%)
| 149.56.80.31:443 | |
| 2021-04-22 17:09:20 | 0247222caf3b70431bb17ed46bf2cf94 | 47 / 66 (71.21%)
| 149.56.80.31:443 | |
| 2021-03-20 23:10:43 | 53220b6a8f6519ef3c69dcfda29edf65 | 35 / 71 (49.30%)
| 103.233.195.64:443 | |
| 2021-03-20 23:10:43 | 53220b6a8f6519ef3c69dcfda29edf65 | 35 / 71 (49.30%)
| 103.233.195.64:443 | |
| 2021-03-08 06:04:36 | cb0fed54e34f1602e3c14f5bfc02bf8e | 44 / 70 (62.86%)
| 149.56.80.31:443 | |
| 2021-03-08 06:04:36 | cb0fed54e34f1602e3c14f5bfc02bf8e | 44 / 70 (62.86%)
| 149.56.80.31:443 | |
| 2021-02-14 21:31:10 | 96875c53a3ec4ddbe5a37febcc8a75ca | 54 / 70 (77.14%)
| TrickBot | 54.39.167.242:443 |
| 2021-02-14 21:31:10 | 96875c53a3ec4ddbe5a37febcc8a75ca | 54 / 70 (77.14%)
| TrickBot | 54.39.167.242:443 |
| 2021-02-14 21:31:10 | 96875c53a3ec4ddbe5a37febcc8a75ca | 54 / 70 (77.14%)
| TrickBot | 54.39.167.242:443 |
| 2021-02-14 21:31:10 | 96875c53a3ec4ddbe5a37febcc8a75ca | 54 / 70 (77.14%)
| TrickBot | 54.39.167.242:443 |
| 2021-02-11 01:38:02 | 80c2b23fd18283960097322d145537ca | 2 / 68 (2.94%)
| 145.239.145.114:443 | |
| 2021-02-11 01:38:02 | 80c2b23fd18283960097322d145537ca | 2 / 68 (2.94%)
| 145.239.145.114:443 | |
| 2021-01-27 16:00:00 | c08e3f082b40fee8f50a5de73f85ccf7 | 32 / 71 (45.07%)
| 5.189.166.237:443 | |
| 2021-01-27 16:00:00 | c08e3f082b40fee8f50a5de73f85ccf7 | 32 / 71 (45.07%)
| 5.189.166.237:443 | |
| 2020-11-14 17:31:33 | f127d3fdc71bf788886e77cfa293311b | 10 / 72 (13.89%)
| 37.59.47.123:443 | |
| 2020-11-14 17:31:33 | f127d3fdc71bf788886e77cfa293311b | 10 / 72 (13.89%)
| 37.59.47.123:443 | |
| 2020-11-10 13:23:19 | ea2f8a2e81f7ae986be9f2d76923ec7b | 15 / 66 (22.73%)
| 172.245.26.140:443 | |
| 2020-11-10 13:23:19 | ea2f8a2e81f7ae986be9f2d76923ec7b | 15 / 66 (22.73%)
| 172.245.26.140:443 | |
| 2020-11-06 14:46:02 | ff259efa41b897626ccc4f3f21091a84 | 41 / 70 (58.57%)
| BazaLoader | 185.118.167.189:443 |
| 2020-11-06 14:46:02 | ff259efa41b897626ccc4f3f21091a84 | 41 / 70 (58.57%)
| BazaLoader | 185.118.167.189:443 |
| 2020-11-03 06:46:42 | d8593a2bdba4e643f50b9bf425cc5bd8 | 54 / 71 (76.06%)
| BazaLoader | 185.118.167.189:443 |
| 2020-11-03 06:46:42 | d8593a2bdba4e643f50b9bf425cc5bd8 | 54 / 71 (76.06%)
| BazaLoader | 185.118.167.189:443 |
| 2020-11-03 05:34:29 | c86d167eba34f2e3dc1e29aeea07d100 | 47 / 70 (67.14%)
| BazaLoader | 185.118.167.189:443 |
| 2020-11-03 05:34:29 | c86d167eba34f2e3dc1e29aeea07d100 | 47 / 70 (67.14%)
| BazaLoader | 185.118.167.189:443 |
| 2020-11-02 04:39:30 | 0cd3b3d01cd19eae7c28bff2cce4d96c | 48 / 70 (68.57%)
| BazaLoader | 185.118.167.189:443 |
| 2020-11-02 04:39:30 | 0cd3b3d01cd19eae7c28bff2cce4d96c | 48 / 70 (68.57%)
| BazaLoader | 185.118.167.189:443 |
| 2020-11-02 02:46:38 | 23845d9ac32b37f56081a549905dc973 | 41 / 70 (58.57%)
| BazaLoader | 185.118.167.189:443 |
| 2020-11-02 02:46:38 | 23845d9ac32b37f56081a549905dc973 | 41 / 70 (58.57%)
| BazaLoader | 185.118.167.189:443 |
| 2020-11-01 23:01:48 | 8065bb65d7a7a02726666c8184b5d091 | 47 / 70 (67.14%)
| BazaLoader | 185.118.167.189:443 |
| 2020-11-01 23:01:48 | 8065bb65d7a7a02726666c8184b5d091 | 47 / 70 (67.14%)
| BazaLoader | 185.118.167.189:443 |
| 2020-11-01 22:30:31 | 74b2e8a039ec4f91ee2a55e82bbb2999 | 52 / 69 (75.36%)
| BazaLoader | 185.118.167.189:443 |
| 2020-11-01 22:30:31 | 74b2e8a039ec4f91ee2a55e82bbb2999 | 52 / 69 (75.36%)
| BazaLoader | 185.118.167.189:443 |
| 2020-11-01 22:22:14 | 77255c49333da1cbef5670e98ce7be29 | 46 / 70 (65.71%)
| BazaLoader | 185.118.167.189:443 |
| 2020-11-01 22:22:14 | 77255c49333da1cbef5670e98ce7be29 | 46 / 70 (65.71%)
| BazaLoader | 185.118.167.189:443 |
| 2020-11-01 21:30:17 | 3b6e0e6381f67918db203d313c3430e5 | 49 / 70 (70.00%)
| BazaLoader | 185.118.167.189:443 |
| 2020-11-01 21:30:17 | 3b6e0e6381f67918db203d313c3430e5 | 49 / 70 (70.00%)
| BazaLoader | 185.118.167.189:443 |
| 2020-11-01 20:44:40 | 4094c6694c86a9738a70d4f2a0d6e1ae | 52 / 71 (73.24%)
| BazaLoader | 185.118.167.189:443 |
| 2020-11-01 20:44:40 | 4094c6694c86a9738a70d4f2a0d6e1ae | 52 / 71 (73.24%)
| BazaLoader | 185.118.167.189:443 |
| 2020-11-01 20:35:49 | 3d1e41ee43a9f7e31819fce0007c2963 | 44 / 62 (70.97%)
| BazaLoader | 185.118.167.189:443 |
| 2020-11-01 20:35:49 | 3d1e41ee43a9f7e31819fce0007c2963 | 44 / 62 (70.97%)
| BazaLoader | 185.118.167.189:443 |
| 2020-10-26 14:55:08 | df89baf262a62664f8b58ef26e39a062 | 52 / 69 (75.36%)
| BazaLoader | 185.118.167.189:443 |
| 2020-10-26 14:55:08 | df89baf262a62664f8b58ef26e39a062 | 52 / 69 (75.36%)
| BazaLoader | 185.118.167.189:443 |
| 2020-10-26 10:01:58 | bcbb5e2efd96ccde7757acaf4f2a31c9 | 45 / 70 (64.29%)
| BazaLoader | 185.118.167.189:443 |
| 2020-10-26 10:01:58 | bcbb5e2efd96ccde7757acaf4f2a31c9 | 45 / 70 (64.29%)
| BazaLoader | 185.118.167.189:443 |
| 2020-10-25 00:37:16 | 995260b6786c52f5a93fc2fecdaa3e1b | 41 / 70 (58.57%)
| BazaLoader | 185.118.167.189:443 |
| 2020-10-25 00:37:16 | 995260b6786c52f5a93fc2fecdaa3e1b | 41 / 70 (58.57%)
| BazaLoader | 185.118.167.189:443 |
| 2020-10-24 22:26:47 | 686577abca2d4aa59205c2d5ad189580 | 45 / 71 (63.38%)
| BazaLoader | 185.118.167.189:443 |
| 2020-10-24 22:26:47 | 686577abca2d4aa59205c2d5ad189580 | 45 / 71 (63.38%)
| BazaLoader | 185.118.167.189:443 |
| 2020-10-23 11:53:24 | 671d14fd2812cb1fa7fab098ae758e85 | 1 / 69 (1.45%)
| 207.148.116.8:443 | |
| 2020-10-23 11:53:24 | 671d14fd2812cb1fa7fab098ae758e85 | 1 / 69 (1.45%)
| 207.148.116.8:443 | |
| 2020-10-23 08:40:01 | 0e386eb69c39e6c51f51ab89961d563e | 1 / 68 (1.47%)
| 207.148.116.8:443 | |
| 2020-10-23 08:40:01 | 0e386eb69c39e6c51f51ab89961d563e | 1 / 68 (1.47%)
| 207.148.116.8:443 | |
| 2020-10-14 02:05:53 | 3c402d47c180c611bac1965a10330477 | 43 / 69 (62.32%)
| 103.27.237.75:443 | |
| 2020-10-14 02:05:53 | 3c402d47c180c611bac1965a10330477 | 43 / 69 (62.32%)
| 103.27.237.75:443 | |
| 2020-03-29 23:22:03 | 789ee1e30169a35d0018f07323e694c4 | 45 / 73 (61.64%)
| Heodo | 78.108.185.203:443 |
| 2020-03-29 23:22:03 | 789ee1e30169a35d0018f07323e694c4 | 45 / 73 (61.64%)
| Heodo | 78.108.185.203:443 |
| 2020-03-26 05:32:39 | b507995924c8df6ed515ebc1bb80dd00 | 45 / 72 (62.50%)
| 5.188.9.76:443 | |
| 2020-03-26 05:32:39 | b507995924c8df6ed515ebc1bb80dd00 | 45 / 72 (62.50%)
| 5.188.9.76:443 | |
| 2020-03-04 19:09:22 | 291dd7d9a2062d07976b14f7d9683d35 | 32 / 72 (44.44%)
| 176.31.88.148:443 | |
| 2020-03-04 19:09:22 | 291dd7d9a2062d07976b14f7d9683d35 | 32 / 72 (44.44%)
| 176.31.88.148:443 | |
| 2019-11-15 04:40:51 | efb5e2ad402a867e458bc693b854547b | 51/69 (73.91%)
| Kovter | 185.113.141.120:443 |
| 2019-11-15 04:40:51 | efb5e2ad402a867e458bc693b854547b | 51/69 (73.91%)
| Kovter | 185.113.141.120:443 |
| 2019-05-11 13:35:39 | 2642a25208ab587aca2b2b4166229b61 | 25/72 (34.72%)
| 202.95.13.9:443 | |
| 2019-05-11 13:35:39 | 2642a25208ab587aca2b2b4166229b61 | 25/72 (34.72%)
| 202.95.13.9:443 | |
| 2017-07-25 19:07:27 | a2c5517ee2de9010ec1983f15c9e17d5 | 23/64 (35.94%)
| 94.74.81.176:443 | |
| 2017-07-25 19:07:27 | a2c5517ee2de9010ec1983f15c9e17d5 | 23/64 (35.94%)
| 94.74.81.176:443 | |
| 2017-07-24 10:01:58 | c98b1036e27dbe03432e1000308be37f | 41/63 (65.08%)
| 94.74.81.176:443 | |
| 2017-07-24 10:01:58 | c98b1036e27dbe03432e1000308be37f | 41/63 (65.08%)
| 94.74.81.176:443 | |
| 2017-07-22 13:36:59 | a0547d978195c98c5f2d170d63da3d22 | 29/63 (46.03%)
| 94.74.81.176:443 | |
| 2017-07-22 13:36:59 | a0547d978195c98c5f2d170d63da3d22 | 29/63 (46.03%)
| 94.74.81.176:443 | |
| 2017-07-22 04:49:36 | a041dbe602909fb8c3f3c51ddad133d1 | 33/64 (51.56%)
| 94.74.81.176:443 | |
| 2017-07-22 04:49:36 | a041dbe602909fb8c3f3c51ddad133d1 | 33/64 (51.56%)
| 94.74.81.176:443 | |
| 2017-07-21 20:19:59 | a268eea61e62d3b9b3608acde690dad7 | 30/63 (47.62%)
| 94.74.81.176:443 | |
| 2017-07-21 20:19:59 | a268eea61e62d3b9b3608acde690dad7 | 30/63 (47.62%)
| 94.74.81.176:443 | |
| 2017-07-21 10:31:20 | 889ae2230ecdeae7a317d078129b6b26 | 22/63 (34.92%)
| 94.74.81.176:443 | |
| 2017-07-21 10:31:20 | 889ae2230ecdeae7a317d078129b6b26 | 22/63 (34.92%)
| 94.74.81.176:443 | |
| 2017-07-21 09:44:02 | 87db5b35f84cd5ff12d2aa66de5d4ec2 | 19/64 (29.69%)
| 94.74.81.176:443 | |
| 2017-07-21 09:44:02 | 87db5b35f84cd5ff12d2aa66de5d4ec2 | 19/64 (29.69%)
| 94.74.81.176:443 | |
| 2017-07-21 09:01:24 | 9c16de2e6d44e4d211b575dafc54dea5 | 24/64 (37.50%)
| 94.74.81.176:443 | |
| 2017-07-21 09:01:24 | 9c16de2e6d44e4d211b575dafc54dea5 | 24/64 (37.50%)
| 94.74.81.176:443 | |
| 2017-07-21 06:02:13 | 030430533c5df422a6844b38088d530a | 30/63 (47.62%)
| 94.74.81.176:443 | |
| 2017-07-21 06:02:13 | 030430533c5df422a6844b38088d530a | 30/63 (47.62%)
| 94.74.81.176:443 | |
| 2017-07-21 04:12:06 | d985ac474cb3e74c36dbb72832414820 | 17/63 (26.98%)
| 94.74.81.176:443 | |
| 2017-07-21 04:12:06 | d985ac474cb3e74c36dbb72832414820 | 17/63 (26.98%)
| 94.74.81.176:443 | |
| 2017-07-21 03:11:54 | c9e0b83a0614feb7c9920577e0ae5003 | 21/64 (32.81%)
| 94.74.81.176:443 | |
| 2017-07-21 03:11:54 | c9e0b83a0614feb7c9920577e0ae5003 | 21/64 (32.81%)
| 94.74.81.176:443 | |
| 2017-07-20 22:56:16 | 5a1454fec57ab855a88b7ee79d6c07b9 | 22/64 (34.38%)
| 94.74.81.176:443 | |
| 2017-07-20 22:56:16 | 5a1454fec57ab855a88b7ee79d6c07b9 | 22/64 (34.38%)
| 94.74.81.176:443 | |
| 2017-07-20 22:55:23 | cfa4088a6328ee705d140729e86942f4 | 21/64 (32.81%)
| 94.74.81.176:443 | |
| 2017-07-20 22:55:23 | cfa4088a6328ee705d140729e86942f4 | 21/64 (32.81%)
| 94.74.81.176:443 | |
| 2017-07-20 20:16:50 | e9fc83a24000229c0e603d0df288abeb | 30/64 (46.88%)
| 94.74.81.176:443 | |
| 2017-07-20 20:16:50 | e9fc83a24000229c0e603d0df288abeb | 30/64 (46.88%)
| 94.74.81.176:443 | |
| 2017-07-20 20:08:23 | cd3b3c01b5905a0c537663ea0c73044f | 22/64 (34.38%)
| 94.74.81.176:443 | |
| 2017-07-20 20:08:23 | cd3b3c01b5905a0c537663ea0c73044f | 22/64 (34.38%)
| 94.74.81.176:443 |
# of entries: 100 (max: 100)