SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint b78f69a49658dc63405c19829f8d1c20f98011da.

Database Entry


SHA1 Fingerprint:b78f69a49658dc63405c19829f8d1c20f98011da
Certificate Common Name (CN):example.com
Issuer Distinguished Name (DN):example.com
TLS Version:TLS 1.2
First seen:2015-05-01 20:59:44 UTC
Last seen:2015-05-11 13:01:58 UTC
Status:Blacklisted
Listing reason:Dridex C&C
Listing date:2015-05-14 08:42:58
Malware samples:15
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2015-05-11 13:01:58acb7cea7dda6f60846f937ca2c1c2093n/aDridex 46.36.217.227:3443
2015-05-11 13:01:58acb7cea7dda6f60846f937ca2c1c2093n/aDridex 46.36.217.227:3443
2015-05-11 12:41:21c9335906d559e6f7f20bf3e04ec9fbcbn/a46.36.217.227:3443
2015-05-11 12:41:21c9335906d559e6f7f20bf3e04ec9fbcbn/a46.36.217.227:3443
2015-05-11 12:24:21aa8a6e8ebdde7b96f0329497ee95c6d2n/aDridex 46.36.217.227:3443
2015-05-11 12:24:21aa8a6e8ebdde7b96f0329497ee95c6d2n/aDridex 46.36.217.227:3443
2015-05-11 05:35:59ca2f1ba4c6e14b19a66ef39f2327b689n/a46.36.217.227:3443
2015-05-11 05:35:59ca2f1ba4c6e14b19a66ef39f2327b689n/a46.36.217.227:3443
2015-05-10 21:32:37d25a28b8fda1a62c93ac39e94ff0a092n/a46.36.217.227:3443
2015-05-10 21:32:37d25a28b8fda1a62c93ac39e94ff0a092n/a46.36.217.227:3443
2015-05-10 14:32:492a46ff6e6dbd3358324dd6cdbb95acd4n/a46.36.217.227:3443
2015-05-10 14:32:492a46ff6e6dbd3358324dd6cdbb95acd4n/a46.36.217.227:3443
2015-05-08 06:59:2824078a572efcd145a8a6829280b7dc6dVirustotal results 4/57 (7.02%) 46.36.217.227:3443
2015-05-08 06:59:2824078a572efcd145a8a6829280b7dc6dVirustotal results 4/57 (7.02%) 46.36.217.227:3443
2015-05-07 22:47:54da73e95ebeb81873e08decf4ebb8b644Virustotal results 27/57 (47.37%) 46.36.217.227:3443
2015-05-07 22:47:54da73e95ebeb81873e08decf4ebb8b644Virustotal results 27/57 (47.37%) 46.36.217.227:3443
2015-05-07 17:48:387ce89250e2e1079dd4d9bf25c306b1a3Virustotal results 1/57 (1.75%) 46.36.217.227:3443
2015-05-07 17:48:387ce89250e2e1079dd4d9bf25c306b1a3Virustotal results 1/57 (1.75%) 46.36.217.227:3443
2015-05-07 14:12:08d7d8feca39ec36f8730adf1d842c6d94Virustotal results 1/57 (1.75%) 46.36.217.227:3443
2015-05-07 14:12:08d7d8feca39ec36f8730adf1d842c6d94Virustotal results 1/57 (1.75%) 46.36.217.227:3443
2015-05-06 23:21:371911eb9f0b22a456155ce7302621f571n/aDownloader.Pony46.36.217.227:3443
2015-05-06 23:21:371911eb9f0b22a456155ce7302621f571n/aDownloader.Pony46.36.217.227:3443
2015-05-06 22:53:40b790c67771304698f9948152da35297bn/aDownloader.Pony46.36.217.227:3443
2015-05-06 22:53:40b790c67771304698f9948152da35297bn/aDownloader.Pony46.36.217.227:3443
2015-05-06 15:18:57e0aa41a54eeb67480220997a205bc651Virustotal results 0/56 (0.00%) 46.36.217.227:3443
2015-05-06 15:18:57e0aa41a54eeb67480220997a205bc651Virustotal results 0/56 (0.00%) 46.36.217.227:3443
2015-05-05 01:55:4726fcd1118c75fdc6dd026769042955fan/a46.36.217.227:3443
2015-05-05 01:55:4726fcd1118c75fdc6dd026769042955fan/a46.36.217.227:3443
2015-05-01 20:59:44d0aee58d96d15b058e083e727296ff73Virustotal results 3/53 (5.66%) 46.36.217.227:3443
2015-05-01 20:59:44d0aee58d96d15b058e083e727296ff73Virustotal results 3/53 (5.66%) 46.36.217.227:3443

# of entries: 30 (max: 100)