SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint b781c52d5b3a566dd0659181ff3d14848c0445be.

Database Entry

SHA1 Fingerprint:	b781c52d5b3a566dd0659181ff3d14848c0445be
Certificate Common Name (CN):	main.info
Issuer Distinguished Name (DN):	main.info
TLS Version:	TLS 1.2
First seen:	2018-11-08 22:13:37 UTC
Last seen:	2018-12-03 11:29:53 UTC
Status:	Blacklisted
Listing reason:	IcedID C&C
Listing date:	2018-11-12 15:08:19
Malware samples:	113
Botnet C&Cs:	4

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2018-12-03 11:29:53	6959f0435d32fe8d251691dc64134746	37/69 (53.62%)	IcedID	185.65.202.12:443
2018-12-03 11:29:53	6959f0435d32fe8d251691dc64134746	37/69 (53.62%)	IcedID	185.65.202.12:443
2018-12-03 10:16:05	ad2a226c5a47a262a7b3fe765ec9dcaa	31/70 (44.29%)	IcedID	185.65.202.12:443
2018-12-03 10:16:05	ad2a226c5a47a262a7b3fe765ec9dcaa	31/70 (44.29%)	IcedID	185.65.202.12:443
2018-12-03 08:47:12	1e0c2fa15b461bd39adf2f4aadc83891	24/69 (34.78%)	IcedID	185.65.202.12:443
2018-12-03 08:47:12	1e0c2fa15b461bd39adf2f4aadc83891	24/69 (34.78%)	IcedID	185.65.202.12:443
2018-12-03 07:08:58	4ef56707a8efb7f538f85fa79eaf6c27	23/69 (33.33%)	IcedID	185.65.202.12:443
2018-12-03 07:08:58	4ef56707a8efb7f538f85fa79eaf6c27	23/69 (33.33%)	IcedID	185.65.202.12:443
2018-12-03 06:00:57	291b95d7e0e0407f9cbdf00d4726f029	23/70 (32.86%)	IcedID	185.65.202.12:443
2018-12-03 06:00:57	291b95d7e0e0407f9cbdf00d4726f029	23/70 (32.86%)	IcedID	185.65.202.12:443
2018-12-03 01:28:23	5937238d45c8f6b26f5ea47139608726	32/70 (45.71%)	IcedID	185.65.202.12:443
2018-12-03 01:28:23	5937238d45c8f6b26f5ea47139608726	32/70 (45.71%)	IcedID	185.65.202.12:443
2018-12-02 18:23:23	e8748edd9b844bb3f72241a2abbeba06	25/70 (35.71%)	IcedID	185.65.202.12:443
2018-12-02 18:23:23	e8748edd9b844bb3f72241a2abbeba06	25/70 (35.71%)	IcedID	185.65.202.12:443
2018-12-02 15:57:01	e1d6368f8133d5bc8df490beb8e39c3c	17/68 (25.00%)	IcedID	185.65.202.12:443
2018-12-02 15:57:01	e1d6368f8133d5bc8df490beb8e39c3c	17/68 (25.00%)	IcedID	185.65.202.12:443
2018-12-02 15:42:32	a6c7780a938cef21fca1395a1e834923	17/68 (25.00%)	IcedID	185.65.202.12:443
2018-12-02 15:42:32	a6c7780a938cef21fca1395a1e834923	17/68 (25.00%)	IcedID	185.65.202.12:443
2018-12-02 15:31:01	064cff5894fcd359af437695d3bbfd26	18/69 (26.09%)	IcedID	185.65.202.12:443
2018-12-02 15:31:01	064cff5894fcd359af437695d3bbfd26	18/69 (26.09%)	IcedID	185.65.202.12:443
2018-12-02 15:22:45	8c6263b3b245974607232fbd51e32c67	21/69 (30.43%)	IcedID	185.65.202.12:443
2018-12-02 15:22:45	8c6263b3b245974607232fbd51e32c67	21/69 (30.43%)	IcedID	185.65.202.12:443
2018-12-02 11:50:46	9bec8924a9a5a23536a7263ecfe2b99f	25/70 (35.71%)	IcedID	185.65.202.12:443
2018-12-02 11:50:46	9bec8924a9a5a23536a7263ecfe2b99f	25/70 (35.71%)	IcedID	185.65.202.12:443
2018-12-02 09:51:12	f054a48941a9b15fedb659ae38d6736a	22/70 (31.43%)	IcedID	185.65.202.12:443
2018-12-02 09:51:12	f054a48941a9b15fedb659ae38d6736a	22/70 (31.43%)	IcedID	185.65.202.12:443
2018-12-02 09:34:31	f59c95aa7c4167732f9066762466507b	25/70 (35.71%)	IcedID	185.65.202.12:443
2018-12-02 09:34:31	f59c95aa7c4167732f9066762466507b	25/70 (35.71%)	IcedID	185.65.202.12:443
2018-12-02 01:23:07	da4f74e068eaa7e72b4b1e7ae9fac646	13/69 (18.84%)	IcedID	185.65.202.12:443
2018-12-02 01:23:07	da4f74e068eaa7e72b4b1e7ae9fac646	13/69 (18.84%)	IcedID	185.65.202.12:443
2018-12-02 00:30:55	17e5bae2cc5979fb6b50e2d7da4efb13	13/70 (18.57%)	IcedID	185.65.202.12:443
2018-12-02 00:30:55	17e5bae2cc5979fb6b50e2d7da4efb13	13/70 (18.57%)	IcedID	185.65.202.12:443
2018-12-01 12:50:04	753652a2453a24bf8d40d3afefa20e20	15/69 (21.74%)	IcedID	185.65.202.12:443
2018-12-01 12:50:04	753652a2453a24bf8d40d3afefa20e20	15/69 (21.74%)	IcedID	185.65.202.12:443
2018-12-01 12:44:42	baa6284347bf3b923ba9ba85283fb09f	29/69 (42.03%)	IcedID	185.65.202.12:443
2018-12-01 12:44:42	baa6284347bf3b923ba9ba85283fb09f	29/69 (42.03%)	IcedID	185.65.202.12:443
2018-12-01 08:19:11	8adf96d57cd9b64e7b0dd04bcba22313	16/68 (23.53%)	IcedID	185.65.202.12:443
2018-12-01 08:19:11	8adf96d57cd9b64e7b0dd04bcba22313	16/68 (23.53%)	IcedID	185.65.202.12:443
2018-12-01 02:20:13	31d366b4208c9891cef90d04aa1218b4	29/69 (42.03%)	IcedID	185.65.202.12:443
2018-12-01 02:20:13	31d366b4208c9891cef90d04aa1218b4	29/69 (42.03%)	IcedID	185.65.202.12:443
2018-11-29 20:20:21	51216d609daa098b10c8c74ae67fd51b	12/69 (17.39%)	Heodo	185.65.202.12:443
2018-11-29 20:20:21	51216d609daa098b10c8c74ae67fd51b	12/69 (17.39%)	Heodo	185.65.202.12:443
2018-11-28 20:35:18	cfc0594c860a37a032caede2d61d27d1	41/70 (58.57%)	Heodo	185.65.202.12:443
2018-11-28 20:35:18	cfc0594c860a37a032caede2d61d27d1	41/70 (58.57%)	Heodo	185.65.202.12:443
2018-11-26 10:42:31	16a18b3d306378ae437adcba98082c7d	33/69 (47.83%)	IcedID	77.222.63.66:443
2018-11-26 10:42:31	16a18b3d306378ae437adcba98082c7d	33/69 (47.83%)	IcedID	77.222.63.66:443
2018-11-26 10:37:55	9342db1f9d821aed286c8955b3dc2645	31/68 (45.59%)	IcedID	77.222.63.66:443
2018-11-26 10:37:55	9342db1f9d821aed286c8955b3dc2645	31/68 (45.59%)	IcedID	77.222.63.66:443
2018-11-26 07:54:38	9b3b61883b15afb2005ada2211651e21	27/68 (39.71%)	IcedID	77.222.63.66:443
2018-11-26 07:54:38	9b3b61883b15afb2005ada2211651e21	27/68 (39.71%)	IcedID	77.222.63.66:443
2018-11-26 07:30:16	8403e5ff7f19791d6a3a14a243b8163b	27/70 (38.57%)	IcedID	77.222.63.66:443
2018-11-26 07:30:16	8403e5ff7f19791d6a3a14a243b8163b	27/70 (38.57%)	IcedID	77.222.63.66:443
2018-11-26 07:24:17	c087473a4e08ded190441bb03b896fed	27/69 (39.13%)	IcedID	77.222.63.66:443
2018-11-26 07:24:17	c087473a4e08ded190441bb03b896fed	27/69 (39.13%)	IcedID	77.222.63.66:443
2018-11-26 07:04:03	9e0a4911dceb3dbe5cfc182adf508927	27/70 (38.57%)	IcedID	77.222.63.66:443
2018-11-26 07:04:03	9e0a4911dceb3dbe5cfc182adf508927	27/70 (38.57%)	IcedID	77.222.63.66:443
2018-11-26 06:39:38	d85547b3c81bf8dad2c4d5fca0190968	33/69 (47.83%)	IcedID	77.222.63.66:443
2018-11-26 06:39:38	d85547b3c81bf8dad2c4d5fca0190968	33/69 (47.83%)	IcedID	77.222.63.66:443
2018-11-26 06:30:22	6f6ea54a451acb67fc4e33b0c7664de5	33/70 (47.14%)	IcedID	77.222.63.66:443
2018-11-26 06:30:22	6f6ea54a451acb67fc4e33b0c7664de5	33/70 (47.14%)	IcedID	77.222.63.66:443
2018-11-25 16:41:15	01564460c7b06d57ab45fe581440ccbb	7/69 (10.14%)	IcedID	77.222.63.66:443
2018-11-25 16:41:15	01564460c7b06d57ab45fe581440ccbb	7/69 (10.14%)	IcedID	77.222.63.66:443
2018-11-25 16:18:43	d682968a380bd629ff2e96c281093955	27/69 (39.13%)	IcedID	77.222.63.66:443
2018-11-25 16:18:43	d682968a380bd629ff2e96c281093955	27/69 (39.13%)	IcedID	77.222.63.66:443
2018-11-25 15:14:21	fc92e238d8a26607390232bdd92459ec	28/70 (40.00%)	IcedID	77.222.63.66:443
2018-11-25 15:14:21	fc92e238d8a26607390232bdd92459ec	28/70 (40.00%)	IcedID	77.222.63.66:443
2018-11-25 14:18:29	11893264da8de8ded47a303f4bbbf260	33/69 (47.83%)	IcedID	77.222.63.66:443
2018-11-25 14:18:29	11893264da8de8ded47a303f4bbbf260	33/69 (47.83%)	IcedID	77.222.63.66:443
2018-11-25 13:37:42	9debb3357656664ffa610a935c1a1285	19/69 (27.54%)	IcedID	77.222.63.66:443
2018-11-25 13:37:42	9debb3357656664ffa610a935c1a1285	19/69 (27.54%)	IcedID	77.222.63.66:443
2018-11-25 13:31:51	586dc1f76ba90fb6b3e7d5ddc836b3ce	32/68 (47.06%)	IcedID	77.222.63.66:443
2018-11-25 13:31:51	586dc1f76ba90fb6b3e7d5ddc836b3ce	32/68 (47.06%)	IcedID	77.222.63.66:443
2018-11-25 13:09:24	9b1982ddfdc7f9aabc354a0c7f3ea92e	34/69 (49.28%)	IcedID	77.222.63.66:443
2018-11-25 13:09:24	9b1982ddfdc7f9aabc354a0c7f3ea92e	34/69 (49.28%)	IcedID	77.222.63.66:443
2018-11-25 12:59:26	bdea7fc872aa9e3d7cbaafb9a23e7303	21/70 (30.00%)	IcedID	77.222.63.66:443
2018-11-25 12:59:26	bdea7fc872aa9e3d7cbaafb9a23e7303	21/70 (30.00%)	IcedID	77.222.63.66:443
2018-11-25 12:59:22	41e365d6af781a2ad2fd6ac7540dd6cf	28/69 (40.58%)	IcedID	77.222.63.66:443
2018-11-25 12:59:22	41e365d6af781a2ad2fd6ac7540dd6cf	28/69 (40.58%)	IcedID	77.222.63.66:443
2018-11-25 12:43:37	4707e4de5031c151eb2ffe9fab349956	28/69 (40.58%)	IcedID	77.222.63.66:443
2018-11-25 12:43:37	4707e4de5031c151eb2ffe9fab349956	28/69 (40.58%)	IcedID	77.222.63.66:443
2018-11-25 12:40:42	bf4992e2d5da8b6bbedec9c1800754a7	31/69 (44.93%)	IcedID	77.222.63.66:443
2018-11-25 12:40:42	bf4992e2d5da8b6bbedec9c1800754a7	31/69 (44.93%)	IcedID	77.222.63.66:443
2018-11-25 12:37:19	4c692615e9e21164b3ca95881e818857	25/69 (36.23%)	IcedID	77.222.63.66:443
2018-11-25 12:37:19	4c692615e9e21164b3ca95881e818857	25/69 (36.23%)	IcedID	77.222.63.66:443
2018-11-25 07:54:27	907771e0160f06926e5f2af13375a7da	25/67 (37.31%)	IcedID	77.222.63.66:443
2018-11-25 07:54:27	907771e0160f06926e5f2af13375a7da	25/67 (37.31%)	IcedID	77.222.63.66:443
2018-11-25 07:43:27	9963ae811eb009b4287757961c1a4087	27/69 (39.13%)	IcedID	77.222.63.66:443
2018-11-25 07:43:27	9963ae811eb009b4287757961c1a4087	27/69 (39.13%)	IcedID	77.222.63.66:443
2018-11-25 01:40:46	f5620e09e57bfe4ba749c5b1d45c3f98	28/70 (40.00%)	IcedID	77.222.63.66:443
2018-11-25 01:40:46	f5620e09e57bfe4ba749c5b1d45c3f98	28/70 (40.00%)	IcedID	77.222.63.66:443
2018-11-25 00:39:03	8fd7ef9a7b68766a85ae74726472d18f	28/69 (40.58%)	IcedID	77.222.63.66:443
2018-11-25 00:39:03	8fd7ef9a7b68766a85ae74726472d18f	28/69 (40.58%)	IcedID	77.222.63.66:443
2018-11-24 16:45:39	421b0ca93704befd17fd8426c4392bcc	29/70 (41.43%)	IcedID	77.222.63.66:443
2018-11-24 16:45:39	421b0ca93704befd17fd8426c4392bcc	29/70 (41.43%)	IcedID	77.222.63.66:443
2018-11-24 14:29:33	9628fdfb50de01faf8f9269bf8cfec67	29/70 (41.43%)	IcedID	77.222.63.66:443
2018-11-24 14:29:33	9628fdfb50de01faf8f9269bf8cfec67	29/70 (41.43%)	IcedID	77.222.63.66:443
2018-11-24 10:29:41	16a87ffe9ebcd9bc4fdf325d3b9ce5c6	22/70 (31.43%)	IcedID	77.222.63.66:443
2018-11-24 10:29:41	16a87ffe9ebcd9bc4fdf325d3b9ce5c6	22/70 (31.43%)	IcedID	77.222.63.66:443
2018-11-23 10:42:52	78a81683ad60e966295d6dc6c7ab4636	26/68 (38.24%)	IcedID	77.222.63.66:443
2018-11-23 10:42:52	78a81683ad60e966295d6dc6c7ab4636	26/68 (38.24%)	IcedID	77.222.63.66:443

# of entries: 100 (max: 100)