SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint ba95675985b03bb45fbcb6256e3574293a374836.

Database Entry

SHA1 Fingerprint:	ba95675985b03bb45fbcb6256e3574293a374836
Certificate Common Name (CN):	boytheory.xyz
Issuer Distinguished Name (DN):	WE1
TLS Version:	TLS 1.2
First seen:	2025-07-03 19:20:11 UTC
Last seen:	2025-07-11 01:42:14 UTC
Status:	Blacklisted
Listing reason:	OffLoader C&C
Listing date:	2025-07-04 12:55:27
Malware samples:	38
Botnet C&Cs:	2

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Botnet C&C (IP:port)
2025-07-11 01:42:14	fac5b478d461a85ccd531c114bb6e777	n/a	172.67.155.182:443
2025-07-11 00:20:25	f916e1326176255b095483c5041f8079	n/a	104.21.50.25:443
2025-07-09 13:04:02	e8a3d25179b8a375a93271c3484ea74c	n/a	172.67.155.182:443
2025-07-09 08:28:43	c56a7bb1c8580d94e9cf0939c04e2533	n/a	104.21.50.25:443
2025-07-09 02:25:22	6260ffc80042ea101bf11fa49eaf72eb	n/a	104.21.50.25:443
2025-07-09 02:24:08	65b0f3a56c52e599e7d98b466f6ace89	n/a	172.67.155.182:443
2025-07-08 08:16:53	b6c1c351d70039e7aa3d63a370c92167	n/a	172.67.155.182:443
2025-07-08 02:52:40	7546d6dcc1d29443f860e7b4a7eb9648	n/a	104.21.50.25:443
2025-07-08 02:46:32	74bea3b7ddfda135dd3fa4aebb9e39a7	n/a	104.21.50.25:443
2025-07-08 01:34:45	67ba1fb3af5c41551912bc933594d808	n/a	104.21.50.25:443
2025-07-07 18:26:54	0b76426c4bb449b46acadd5aac91fff7	n/a	104.21.50.25:443
2025-07-06 00:08:49	146268a58a2ac0897b7575905980f2a5	n/a	172.67.155.182:443
2025-07-05 05:52:27	7b2cf8c0e4b609315ac88d5a7127fc56	n/a	104.21.50.25:443
2025-07-04 16:12:36	edb7b8e712a42a4ab8e65054ee161fd1	n/a	104.21.50.25:443
2025-07-04 15:57:31	ebf68203d8089ce5e741c75b7b396c59	n/a	104.21.50.25:443
2025-07-04 14:38:05	df0346986c6047056e8329ef297161d3	n/a	172.67.155.182:443
2025-07-04 12:21:13	d09f90677e20216ab73aae129d27c44e	n/a	172.67.155.182:443
2025-07-04 11:52:05	cbe386545ddc87ebda428fb5a003e04a	n/a	104.21.50.25:443
2025-07-04 11:49:58	cb97bbb3110becd03b2aa0436a42e6f1	n/a	104.21.50.25:443
2025-07-04 11:37:11	c9747f6ba2cd73f585dd81033a6a6076	n/a	172.67.155.182:443
2025-07-04 11:00:48	c388ab89c0e23f3c4ad45471cd2016de	n/a	172.67.155.182:443
2025-07-04 09:11:26	b1d4f2aa504283255a0c5425ccb15a93	n/a	104.21.50.25:443
2025-07-04 08:21:26	a9186ad703df8a621eeee02162f4386a	n/a	104.21.50.25:443
2025-07-04 08:10:03	a7641344099609fa5475eb36b936f74a	n/a	104.21.50.25:443
2025-07-04 08:09:22	a723e9b260572f22ea761630fcad4493	n/a	104.21.50.25:443
2025-07-04 06:39:51	7f96649a56c29d5aca8038019cdb8e75	n/a	104.21.50.25:443
2025-07-04 04:47:06	701c1614313f6d7fd6c50751e4454120	n/a	104.21.50.25:443
2025-07-04 03:48:21	664cb1f0f50bdd6bebf33b1966fef5a9	n/a	172.67.155.182:443
2025-07-04 03:27:28	62ec81affd57a48b891f7811246eb23c	n/a	104.21.50.25:443
2025-07-04 03:19:58	6159216e444059252fcd9c9b5dcab795	n/a	172.67.155.182:443
2025-07-04 03:11:31	5fc85a66b50d041f55bdf267500387a1	n/a	104.21.50.25:443
2025-07-04 01:51:16	52869a79b8548853e31710282c380f8b	n/a	172.67.155.182:443
2025-07-04 01:43:46	51452d28ded44a41a39380c96a5c9003	n/a	104.21.50.25:443
2025-07-04 01:29:57	399e1ab2a00653da6c885d51db8b7127	n/a	172.67.155.182:443
2025-07-04 01:06:20	2f7f929cb69eaf6ea2e080833b558c7a	n/a	104.21.50.25:443
2025-07-03 21:26:00	323ede2e73dff1f3402c86693a99bc0b	n/a	172.67.155.182:443
2025-07-03 21:10:48	495cfb39465c43db2f0b6413c61d20bc	n/a	104.21.50.25:443
2025-07-03 19:20:11	1f3de268d006b50e6354ad41a419079e	n/a	104.21.50.25:443

# of entries: 38 (max: 100)