SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint ba2454d522edc49135505dd3fbe871ed94c7bbbd.

Database Entry


SHA1 Fingerprint:ba2454d522edc49135505dd3fbe871ed94c7bbbd
Certificate Common Name (CN):afspfigjeb.cn
Issuer Distinguished Name (DN):R3
TLS Version:TLS 1.2
First seen:2021-04-18 00:48:03 UTC
Last seen:2021-04-18 11:42:49 UTC
Status:Blacklisted
Listing reason:RaccoonStealer C&C
Listing date:2021-04-18 14:06:23
Malware samples:11
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2021-04-18 11:42:496b6dbe5994035fb38d67e8016a2880f8n/aRaccoonStealer185.163.47.244:443
2021-04-18 10:39:40c0a98f038eea3bd6c8c4c0278b23fd4en/aRaccoonStealer185.163.47.244:443
2021-04-18 10:07:05f5918f5d2fdb5d3e9ce6646e22a3de9en/aRaccoonStealer185.163.47.244:443
2021-04-18 09:36:59416a46099973e7ffb59a7d3ff287d329n/aRaccoonStealer185.163.47.244:443
2021-04-18 09:33:19fa55c745af8396e97e1b25a0be2f40d5n/aRaccoonStealer185.163.47.244:443
2021-04-18 09:02:270d90131ec328dce41b54781f3b8925edn/a185.163.47.244:443
2021-04-18 07:57:1483e294ab349cde6fbca76396bed13304n/aRaccoonStealer185.163.47.244:443
2021-04-18 06:15:04e1cfa6506d330c953fac38578ed75670n/a185.163.47.244:443
2021-04-18 06:03:28f9f98fc2e512d670d01b08ccfd367563n/aRaccoonStealer185.163.47.244:443
2021-04-18 02:30:1264f9cf633b6c017301567390ca0ca0deVirustotal results 20 / 68 (29.41%) RaccoonStealer185.163.47.244:443
2021-04-18 00:48:03d03295e64b8e71edcb5cd46eb7b6871cVirustotal results 14 / 68 (20.59%) ServHelper185.163.47.244:443

# of entries: 11 (max: 100)