SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint c306f567cd3deb0d8cf493f1b3e147b91f2ebef3.

Database Entry

SHA1 Fingerprint:	c306f567cd3deb0d8cf493f1b3e147b91f2ebef3
Certificate Common Name (CN):	localhost
Issuer Distinguished Name (DN):	localhost
TLS Version:	TLSv1
First seen:	2016-09-27 01:05:19 UTC
Last seen:	2016-10-26 09:26:53 UTC
Status:	Blacklisted
Listing reason:	Gootkit C&C
Listing date:	2016-10-26 07:14:27
Malware samples:	28
Botnet C&Cs:	1

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2016-10-26 09:26:53	7722d8f7e295a16ec895e6445fc627b4	43/65 (66.15%)	Gootkit	31.220.56.32:80
2016-10-26 09:26:53	7722d8f7e295a16ec895e6445fc627b4	43/65 (66.15%)	Gootkit	31.220.56.32:80
2016-10-26 08:53:08	c41ba1714118bccd58e9e427a13b9e04	n/a	Gootkit	31.220.56.32:80
2016-10-26 08:53:08	c41ba1714118bccd58e9e427a13b9e04	n/a	Gootkit	31.220.56.32:80
2016-10-25 14:15:44	cdaeaada60b237364d023c6b33c023d1	n/a	Gootkit	31.220.56.32:80
2016-10-25 14:15:44	cdaeaada60b237364d023c6b33c023d1	n/a	Gootkit	31.220.56.32:80
2016-10-25 13:52:36	a9d50b075079f613d4e3db5a1740649d	33/56 (58.93%)	Gootkit	31.220.56.32:80
2016-10-25 13:52:36	a9d50b075079f613d4e3db5a1740649d	33/56 (58.93%)	Gootkit	31.220.56.32:80
2016-10-24 20:39:54	8d347f16fed2c80e55f95a09f8bd33ac	n/a	Gootkit	31.220.56.32:80
2016-10-24 20:39:54	8d347f16fed2c80e55f95a09f8bd33ac	n/a	Gootkit	31.220.56.32:80
2016-10-24 05:53:17	aee07360b2bf39a765733debeb5a3808	30/57 (52.63%)	Gootkit	31.220.56.32:80
2016-10-24 05:53:17	aee07360b2bf39a765733debeb5a3808	30/57 (52.63%)	Gootkit	31.220.56.32:80
2016-10-24 05:28:26	833821edba194a25ca03d6c042cd30f6	n/a	Gootkit	31.220.56.32:80
2016-10-24 05:28:26	833821edba194a25ca03d6c042cd30f6	n/a	Gootkit	31.220.56.32:80
2016-10-19 21:35:23	24caf74ba4d511718bf1481215e71bad	7/56 (12.50%)	Gootkit	31.220.56.32:80
2016-10-19 21:35:23	24caf74ba4d511718bf1481215e71bad	7/56 (12.50%)	Gootkit	31.220.56.32:80
2016-10-19 18:03:48	fdfa18fd0746cbca6b5a735862b12303	7/56 (12.50%)	Gootkit	31.220.56.32:80
2016-10-19 18:03:48	fdfa18fd0746cbca6b5a735862b12303	7/56 (12.50%)	Gootkit	31.220.56.32:80
2016-10-17 15:35:39	97b01f81104a179b9a9efc94dbd5221a	n/a	Gootkit	31.220.56.32:80
2016-10-17 15:35:39	97b01f81104a179b9a9efc94dbd5221a	n/a	Gootkit	31.220.56.32:80
2016-10-17 09:46:25	b93bb374453d436aae920b083d33a163	19/55 (34.55%)	Shylock	31.220.56.32:80
2016-10-17 09:46:25	b93bb374453d436aae920b083d33a163	19/55 (34.55%)	Shylock	31.220.56.32:80
2016-10-16 18:30:34	f571914708125c08efe6b77f66c30b77	n/a	Gootkit	31.220.56.32:80
2016-10-16 18:30:34	f571914708125c08efe6b77f66c30b77	n/a	Gootkit	31.220.56.32:80
2016-10-16 12:20:45	5bdd1a7c9bf817305ba0de4795ec7517	n/a	Gootkit	31.220.56.32:80
2016-10-16 12:20:45	5bdd1a7c9bf817305ba0de4795ec7517	n/a	Gootkit	31.220.56.32:80
2016-10-16 09:28:04	2866a0ce3e0ffbc99b17ccc755718c7d	n/a	Gootkit	31.220.56.32:80
2016-10-16 09:28:04	2866a0ce3e0ffbc99b17ccc755718c7d	n/a	Gootkit	31.220.56.32:80
2016-10-15 22:22:09	a0fa83126f04f50528a8ab70cbdd5b1c	19/65 (29.23%)	Gootkit	31.220.56.32:80
2016-10-15 22:22:09	a0fa83126f04f50528a8ab70cbdd5b1c	19/65 (29.23%)	Gootkit	31.220.56.32:80
2016-10-15 21:50:19	e5685683a0099f708e423085751048d8	42/57 (73.68%)	Gootkit	31.220.56.32:80
2016-10-15 21:50:19	e5685683a0099f708e423085751048d8	42/57 (73.68%)	Gootkit	31.220.56.32:80
2016-10-15 06:23:47	1a148f5d498c7c5b9f132dec8aa078d7	30/55 (54.55%)	Shylock	31.220.56.32:80
2016-10-15 06:23:47	1a148f5d498c7c5b9f132dec8aa078d7	30/55 (54.55%)	Shylock	31.220.56.32:80
2016-10-14 09:43:54	49f3dc6167ad82c35d26d1c1f9dfc870	n/a	Gootkit	31.220.56.32:80
2016-10-14 09:43:54	49f3dc6167ad82c35d26d1c1f9dfc870	n/a	Gootkit	31.220.56.32:80
2016-10-13 08:37:08	46aa949300628cd56164cf5d04ebde28	28/56 (50.00%)	Gootkit	31.220.56.32:80
2016-10-13 08:37:08	46aa949300628cd56164cf5d04ebde28	28/56 (50.00%)	Gootkit	31.220.56.32:80
2016-10-13 06:38:27	11935db61b640d8552a9bcff69ae9fe9	26/56 (46.43%)	Gootkit	31.220.56.32:80
2016-10-13 06:38:27	11935db61b640d8552a9bcff69ae9fe9	26/56 (46.43%)	Gootkit	31.220.56.32:80
2016-10-11 19:55:46	41810e640a6cbae497c7737976d74b91	n/a	Gootkit	31.220.56.32:80
2016-10-11 19:55:46	41810e640a6cbae497c7737976d74b91	n/a	Gootkit	31.220.56.32:80
2016-10-10 17:19:56	3e7b6e7298ab5b2f8515dd8029c60d99	35/56 (62.50%)	Gootkit	31.220.56.32:80
2016-10-10 17:19:56	3e7b6e7298ab5b2f8515dd8029c60d99	35/56 (62.50%)	Gootkit	31.220.56.32:80
2016-10-09 23:49:12	d0e692155677fda3cde1d7b2846b01ce	n/a	Gootkit	31.220.56.32:80
2016-10-09 23:49:12	d0e692155677fda3cde1d7b2846b01ce	n/a	Gootkit	31.220.56.32:80
2016-10-09 21:27:46	a079ce2460c519ff36ec4a9e488a1521	n/a	Gootkit	31.220.56.32:80
2016-10-09 21:27:46	a079ce2460c519ff36ec4a9e488a1521	n/a	Gootkit	31.220.56.32:80
2016-10-09 09:17:03	cdaf8b20ac91fb84e400e3814269bc62	n/a	Gootkit	31.220.56.32:80
2016-10-09 09:17:03	cdaf8b20ac91fb84e400e3814269bc62	n/a	Gootkit	31.220.56.32:80
2016-10-08 02:44:53	59c986d6f7ca99de5b89ee2d094d246b	7/56 (12.50%)	Gootkit	31.220.56.32:80
2016-10-08 02:44:53	59c986d6f7ca99de5b89ee2d094d246b	7/56 (12.50%)	Gootkit	31.220.56.32:80
2016-10-06 23:57:32	216c4ae6a7e50fd63fc72b3c335dfb24	29/55 (52.73%)	Gootkit	31.220.56.32:80
2016-10-06 23:57:32	216c4ae6a7e50fd63fc72b3c335dfb24	29/55 (52.73%)	Gootkit	31.220.56.32:80
2016-09-27 01:05:19	65905f672a7c307ab2f7c1acab2c92aa	n/a	Gootkit	31.220.56.32:80
2016-09-27 01:05:19	65905f672a7c307ab2f7c1acab2c92aa	n/a	Gootkit	31.220.56.32:80

# of entries: 56 (max: 100)