SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint b4a821c433704756f7cffe6f31a052460aab270c.

Database Entry

SHA1 Fingerprint:	b4a821c433704756f7cffe6f31a052460aab270c
Certificate Common Name (CN):	overcovtcg.top
Issuer Distinguished Name (DN):	WE1
TLS Version:	TLS 1.2
First seen:	2025-05-10 15:41:14 UTC
Last seen:	2025-05-16 03:56:13 UTC
Status:	Blacklisted
Listing reason:	LummaStealer C&C
Listing date:	2025-05-16 09:40:21
Malware samples:	14
Botnet C&Cs:	2

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Botnet C&C (IP:port)
2025-05-16 03:56:13	7488b125e7528fc82fbf4b91128a0e8f	n/a	172.67.150.184:443
2025-05-16 02:47:42	525311468541973179a22c0aaa69333f	n/a	104.21.40.104:443
2025-05-15 22:18:54	03fe1657a5528ff4a8a136bb3e7d563b	n/a	172.67.150.184:443
2025-05-15 19:53:11	0218a1f25d584ee50f6d7322b009eea1	n/a	172.67.150.184:443
2025-05-15 17:22:17	1d4c7dcb8da6e30bbc4e685a25bc6609	n/a	172.67.150.184:443
2025-05-15 01:01:52	705bb84e054282dad1eb9cab44d1a4fa	n/a	104.21.40.104:443
2025-05-14 15:39:32	9034bf1aafab74312eae077355b7ecff	n/a	104.21.40.104:443
2025-05-14 12:04:05	e905c4e968de0d1a9bfe3bf7dce221d5	n/a	104.21.40.104:443
2025-05-14 08:15:48	d035d9907144c2242ad5a22a148393a6	n/a	172.67.150.184:443
2025-05-12 21:31:55	0b95da2aba36f9c4b2d0169ca846db03	n/a	104.21.40.104:443
2025-05-12 16:57:21	8b5c07adc1dfc8a89efaf4ae9ca2ebf7	n/a	104.21.40.104:443
2025-05-10 23:30:31	352f0628ab0002c34be6da78c14aeb99	n/a	104.21.40.104:443
2025-05-10 21:51:28	ef6d76d0087769433215e6b42167f056	n/a	172.67.150.184:443
2025-05-10 15:41:14	362c02fc73d1d1959462f8112eabe2ab	n/a	172.67.150.184:443

# of entries: 14 (max: 100)