SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint bbffb5a90866ba64d90b691d40de609a1aa5fc81.

Database Entry

SHA1 Fingerprint:bbffb5a90866ba64d90b691d40de609a1aa5fc81
Certificate Common Name (CN):AsyncRAT Server
Issuer Distinguished Name (DN):AsyncRAT Server
TLS Version:TLSv1' NOTBEFOR
First seen:2021-01-10 04:38:41 UTC
Last seen:2021-08-12 07:49:42 UTC
Status:Blacklisted
Listing reason:AsyncRAT C&C
Listing date:2021-01-10 07:02:17
Malware samples:21
Botnet C&Cs:2

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2021-08-12 07:49:42e6aeec5af5a7d180b1c8423a33cad76fVirustotal results 38 / 69 (55.07%) AsyncRAT198.23.212.148:7707
2021-08-01 12:03:31d08bc425ebe7443df11e3dabaf6f1ae8Virustotal results 34 / 69 (49.28%) AsyncRAT198.23.212.148:6606
2021-08-01 12:03:31d08bc425ebe7443df11e3dabaf6f1ae8Virustotal results 34 / 69 (49.28%) AsyncRAT198.23.212.148:6606
2021-07-29 14:39:274bb2668871f42e13fb29d15b86b007f1Virustotal results 46 / 69 (66.67%) AsyncRAT198.23.212.148:7707
2021-07-29 14:39:274bb2668871f42e13fb29d15b86b007f1Virustotal results 46 / 69 (66.67%) AsyncRAT198.23.212.148:7707
2021-07-28 08:50:22abbf23b1930e9605ee06c88bca4143baVirustotal results 30 / 69 (43.48%) QuasarRAT198.23.212.148:6606
2021-07-28 08:50:22abbf23b1930e9605ee06c88bca4143baVirustotal results 30 / 69 (43.48%) QuasarRAT198.23.212.148:6606
2021-07-20 22:19:294026b921c4cf9263c5894f63ce5127d0Virustotal results 49 / 70 (70.00%) AsyncRAT198.23.212.148:7707
2021-07-20 22:19:294026b921c4cf9263c5894f63ce5127d0Virustotal results 49 / 70 (70.00%) AsyncRAT198.23.212.148:7707
2021-07-20 03:12:16422495115000b9721c846824da8809b4Virustotal results 22 / 70 (31.43%) AsyncRAT198.23.212.148:6606
2021-07-20 03:12:16422495115000b9721c846824da8809b4Virustotal results 22 / 70 (31.43%) AsyncRAT198.23.212.148:6606
2021-07-20 02:25:37247e69db95f09133a8ea6c795962d01aVirustotal results 35 / 69 (50.72%) QuasarRAT198.23.212.148:8808
2021-07-20 02:25:37247e69db95f09133a8ea6c795962d01aVirustotal results 35 / 69 (50.72%) QuasarRAT198.23.212.148:8808
2021-07-19 23:25:043d8846c14fe7b3bb1ec60f70e379bafeVirustotal results 25 / 70 (35.71%) QuasarRAT198.23.212.148:6606
2021-07-19 23:25:043d8846c14fe7b3bb1ec60f70e379bafeVirustotal results 25 / 70 (35.71%) QuasarRAT198.23.212.148:6606
2021-07-12 22:24:356aa7a99215146db805906413536e044bVirustotal results 47 / 70 (67.14%) AsyncRAT198.23.212.148:6606
2021-07-12 22:24:356aa7a99215146db805906413536e044bVirustotal results 47 / 70 (67.14%) AsyncRAT198.23.212.148:6606
2021-07-01 19:12:1734be2c4a20c6e96a48890dacc9c128d5Virustotal results 39 / 69 (56.52%) QuasarRAT198.23.212.148:8808
2021-07-01 19:12:1734be2c4a20c6e96a48890dacc9c128d5Virustotal results 39 / 69 (56.52%) QuasarRAT198.23.212.148:8808
2021-06-11 06:27:48995b28e88d34a1bea276bc16a013f59dVirustotal results 34 / 69 (49.28%) QuasarRAT198.23.212.148:8808
2021-06-11 06:27:48995b28e88d34a1bea276bc16a013f59dVirustotal results 34 / 69 (49.28%) QuasarRAT198.23.212.148:8808
2021-05-28 13:28:45f630c08bdeadcf7104f4004341f54bf1Virustotal results 45 / 70 (64.29%) NanoCore198.23.212.148:8808
2021-05-28 13:28:45f630c08bdeadcf7104f4004341f54bf1Virustotal results 45 / 70 (64.29%) NanoCore198.23.212.148:8808
2021-05-27 23:24:007dd99d24cfb0bb23cc4ff57d4405d775Virustotal results 50 / 70 (71.43%) NanoCore198.23.212.148:8808
2021-05-27 23:24:007dd99d24cfb0bb23cc4ff57d4405d775Virustotal results 50 / 70 (71.43%) NanoCore198.23.212.148:8808
2021-04-23 03:32:18d0cab67fcbe00c2b291f5abcdd47d688Virustotal results 52 / 70 (74.29%) AsyncRAT198.23.212.148:8808
2021-04-23 03:32:18d0cab67fcbe00c2b291f5abcdd47d688Virustotal results 52 / 70 (74.29%) AsyncRAT198.23.212.148:8808
2021-04-11 13:17:28f1e3c440c10480778d46e0eeeebf79ddVirustotal results 54 / 70 (77.14%) AsyncRAT198.23.212.148:8808
2021-04-11 13:17:28f1e3c440c10480778d46e0eeeebf79ddVirustotal results 54 / 70 (77.14%) AsyncRAT198.23.212.148:8808
2021-03-28 01:55:4755287c8aa442a3f521aabb6a80b3f6a8Virustotal results 37 / 69 (53.62%) NanoCore198.23.212.148:8808
2021-03-28 01:55:4755287c8aa442a3f521aabb6a80b3f6a8Virustotal results 37 / 69 (53.62%) NanoCore198.23.212.148:8808
2021-03-28 01:21:3341ece8e5dad17f63db790021b659c835Virustotal results 26 / 70 (37.14%) AsyncRAT198.23.212.148:8808
2021-03-28 01:21:3341ece8e5dad17f63db790021b659c835Virustotal results 26 / 70 (37.14%) AsyncRAT198.23.212.148:8808
2021-03-25 04:29:57771c2a87d74a99b87f53b79697b105b5Virustotal results 42 / 70 (60.00%) AsyncRAT198.23.212.148:8808
2021-03-25 04:29:57771c2a87d74a99b87f53b79697b105b5Virustotal results 42 / 70 (60.00%) AsyncRAT198.23.212.148:8808
2021-03-20 01:56:529adbebc191f947386d22a5b2e6105cc5Virustotal results 33 / 68 (48.53%) AsyncRAT198.23.212.148:8808
2021-03-20 01:56:529adbebc191f947386d22a5b2e6105cc5Virustotal results 33 / 68 (48.53%) AsyncRAT198.23.212.148:8808
2021-01-14 20:08:005552da494eb603d395bd867989de69b1Virustotal results 41 / 70 (58.57%) AsyncRAT198.23.212.149:7707
2021-01-14 20:08:005552da494eb603d395bd867989de69b1Virustotal results 41 / 70 (58.57%) AsyncRAT198.23.212.149:7707
2021-01-10 04:38:41a6fb25a6806b9398feee4651509e6613Virustotal results 37 / 71 (52.11%) AsyncRAT198.23.212.148:7707
2021-01-10 04:38:41a6fb25a6806b9398feee4651509e6613Virustotal results 37 / 71 (52.11%) AsyncRAT198.23.212.148:7707

# of entries: 41 (max: 100)