SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint c26e2c33fff65721eddea5e632ce124e9e7129b2.

Database Entry


SHA1 Fingerprint:c26e2c33fff65721eddea5e632ce124e9e7129b2
Certificate Common Name (CN):C=US, ST=Denial, L=Springfield, O=Dis
Issuer Distinguished Name (DN):C=US, ST=Denial, L=Springfield, O=Dis
TLS Version:TLS 1.2
First seen:2016-04-07 16:19:36 UTC
Last seen:2016-04-08 14:44:06 UTC
Status:Blacklisted
Listing reason:TorrentLocker C&C
Listing date:2016-04-09 08:08:33
Malware samples:8
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2016-04-08 14:44:06ce20c631292cca9a4d1a9002a972a75cn/aTorrentLocker 158.255.6.223:443
2016-04-08 10:03:4543a9eed8e34913c314aea0155d4cc69cn/aTorrentLocker 158.255.6.223:443
2016-04-08 09:54:16d39e9e4854f25b8762ef89830e15cf0en/aTorrentLocker 158.255.6.223:443
2016-04-08 09:22:019d7869784b234bd5a52138dde9fe3d06n/aTorrentLocker 158.255.6.223:443
2016-04-08 08:06:08e6e212de7255794a0b2736f318ef44dfn/aTorrentLocker 158.255.6.223:443
2016-04-08 07:11:515208a3fd20d9f57038c8542e437d6757n/aTorrentLocker 158.255.6.223:443
2016-04-08 05:06:38aa05c1e880c42c60fe122f568a8f9b6bVirustotal results 3/56 (5.36%) TorrentLocker 158.255.6.223:443
2016-04-07 16:19:365e45ff7ee1a68e21e5075204fed3ccdcVirustotal results 36/57 (63.16%) TorrentLocker 158.255.6.223:443

# of entries: 8 (max: 100)