SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint cbf68e899c14cdbed25b20d398ce6724d60de0a6.

Database Entry


SHA1 Fingerprint:cbf68e899c14cdbed25b20d398ce6724d60de0a6
Certificate Common Name (CN):kin.pgsox.cc
Issuer Distinguished Name (DN):kin.pgsox.cc
TLS Version:SSLv3
First seen:2014-06-28 05:45:51 UTC
Last seen:2014-07-26 01:05:17 UTC
Status:Blacklisted
Listing reason:KINS C&C
Listing date:2014-06-28 09:12:23
Malware samples:4
Botnet C&Cs:2

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2014-07-26 01:05:176ef275167fb8760bb23e9013760bf1e8Virustotal results 4/51 (7.84%) ZeuS 188.241.116.231:443
2014-07-25 07:25:03e567f82a6be1961b41f15083da0a4355Virustotal results 11/53 (20.75%) ZeuS 188.241.116.231:443
2014-07-17 11:49:40c9e6c0b84ba4dac462cd85f37b0b131eVirustotal results 13/54 (24.07%) ZeuS 188.241.116.231:443
2014-06-28 05:45:51712d29a207e8594c448a904e90142b1bVirustotal results 30/53 (56.60%) ZeuS 141.105.69.206:443

# of entries: 4 (max: 100)