SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint bbffb5a90866ba64d90b691d40de609a1aa5fc81.

Database Entry

SHA1 Fingerprint:	bbffb5a90866ba64d90b691d40de609a1aa5fc81
Certificate Common Name (CN):	AsyncRAT Server
Issuer Distinguished Name (DN):	AsyncRAT Server
TLS Version:	TLSv1' NOTBEFOR
First seen:	2021-01-10 04:38:41 UTC
Last seen:	2021-06-11 06:27:48 UTC
Status:	Blacklisted
Listing reason:	AsyncRAT C&C
Listing date:	2021-01-10 07:02:17
Malware samples:	11
Botnet C&Cs:	2

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2021-06-11 06:27:48	995b28e88d34a1bea276bc16a013f59d	34 / 69 (49.28%)	QuasarRAT	198.23.212.148:8808
2021-05-28 13:28:45	f630c08bdeadcf7104f4004341f54bf1	45 / 70 (64.29%)	NanoCore	198.23.212.148:8808
2021-05-27 23:24:00	7dd99d24cfb0bb23cc4ff57d4405d775	50 / 70 (71.43%)	NanoCore	198.23.212.148:8808
2021-04-23 03:32:18	d0cab67fcbe00c2b291f5abcdd47d688	52 / 70 (74.29%)	AsyncRAT	198.23.212.148:8808
2021-04-11 13:17:28	f1e3c440c10480778d46e0eeeebf79dd	54 / 70 (77.14%)	AsyncRAT	198.23.212.148:8808
2021-03-28 01:55:47	55287c8aa442a3f521aabb6a80b3f6a8	37 / 69 (53.62%)	NanoCore	198.23.212.148:8808
2021-03-28 01:21:33	41ece8e5dad17f63db790021b659c835	26 / 70 (37.14%)	AsyncRAT	198.23.212.148:8808
2021-03-25 04:29:57	771c2a87d74a99b87f53b79697b105b5	42 / 70 (60.00%)	AsyncRAT	198.23.212.148:8808
2021-03-20 01:56:52	9adbebc191f947386d22a5b2e6105cc5	33 / 68 (48.53%)	AsyncRAT	198.23.212.148:8808
2021-01-14 20:08:00	5552da494eb603d395bd867989de69b1	41 / 70 (58.57%)	AsyncRAT	198.23.212.149:7707
2021-01-10 04:38:41	a6fb25a6806b9398feee4651509e6613	37 / 71 (52.11%)	AsyncRAT	198.23.212.148:7707

# of entries: 11 (max: 100)