SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint c9beddd9e861e801f9dba536d6642b0335fa9ae2.

Database Entry

SHA1 Fingerprint:	c9beddd9e861e801f9dba536d6642b0335fa9ae2
Certificate Common Name (CN):	C=XX, L=Default City, O=Default Company Ltd
Issuer Distinguished Name (DN):	C=XX, L=Default City, O=Default Company Ltd
TLS Version:	TLS 1.2
First seen:	2015-07-01 21:11:00 UTC
Last seen:	2015-07-03 07:25:33 UTC
Status:	Blacklisted
Listing reason:	Malware C&C
Listing date:	2015-07-02 08:08:10
Malware samples:	6
Botnet C&Cs:	1

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2015-07-03 07:25:33	82022295a012ee5771a22ef1cf28fb2a	8/56 (14.29%)	Ransomware	178.32.72.224:443
2015-07-03 07:25:33	82022295a012ee5771a22ef1cf28fb2a	8/56 (14.29%)	Ransomware	178.32.72.224:443
2015-07-03 05:54:57	da9444cb0f0d2bdee7ce30e00ef409aa	5/56 (8.93%)		178.32.72.224:443
2015-07-03 05:54:57	da9444cb0f0d2bdee7ce30e00ef409aa	5/56 (8.93%)		178.32.72.224:443
2015-07-03 02:39:34	e576ae9d7785cfc351e843a709b709db	16/54 (29.63%)		178.32.72.224:443
2015-07-03 02:39:34	e576ae9d7785cfc351e843a709b709db	16/54 (29.63%)		178.32.72.224:443
2015-07-02 09:38:13	460201093e4171cb42d23247fac90964	1/55 (1.82%)	Ransomware	178.32.72.224:443
2015-07-02 09:38:13	460201093e4171cb42d23247fac90964	1/55 (1.82%)	Ransomware	178.32.72.224:443
2015-07-02 06:33:32	eb99fa75bbaa2c177f4966a82765f2b8	7/55 (12.73%)		178.32.72.224:443
2015-07-02 06:33:32	eb99fa75bbaa2c177f4966a82765f2b8	7/55 (12.73%)		178.32.72.224:443
2015-07-01 21:11:00	50b870a92ccd9829081f2c86fc220152	3/56 (5.36%)	Ransomware	178.32.72.224:443
2015-07-01 21:11:00	50b870a92ccd9829081f2c86fc220152	3/56 (5.36%)	Ransomware	178.32.72.224:443

# of entries: 12 (max: 100)