SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint bbffb5a90866ba64d90b691d40de609a1aa5fc81.

Database Entry


SHA1 Fingerprint:bbffb5a90866ba64d90b691d40de609a1aa5fc81
Certificate Common Name (CN):AsyncRAT Server
Issuer Distinguished Name (DN):AsyncRAT Server
TLS Version:TLSv1' NOTBEFOR
First seen:2021-01-10 04:38:41 UTC
Last seen:2021-03-28 01:55:47 UTC
Status:Blacklisted
Listing reason:AsyncRAT C&C
Listing date:2021-01-10 07:02:17
Malware samples:6
Botnet C&Cs:2

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2021-03-28 01:55:4755287c8aa442a3f521aabb6a80b3f6a8Virustotal results 37 / 69 (53.62%) NanoCore198.23.212.148:8808
2021-03-28 01:21:3341ece8e5dad17f63db790021b659c835Virustotal results 26 / 70 (37.14%) AsyncRAT198.23.212.148:8808
2021-03-25 04:29:57771c2a87d74a99b87f53b79697b105b5Virustotal results 42 / 70 (60.00%) AsyncRAT198.23.212.148:8808
2021-03-20 01:56:529adbebc191f947386d22a5b2e6105cc5Virustotal results 33 / 68 (48.53%) AsyncRAT198.23.212.148:8808
2021-01-14 20:08:005552da494eb603d395bd867989de69b1Virustotal results 41 / 70 (58.57%) AsyncRAT198.23.212.149:7707
2021-01-10 04:38:41a6fb25a6806b9398feee4651509e6613Virustotal results 37 / 71 (52.11%) AsyncRAT198.23.212.148:7707

# of entries: 6 (max: 100)