SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint cee8ba23db82bc5f4c18830943aa57a5a45b3da2.

Database Entry


SHA1 Fingerprint:cee8ba23db82bc5f4c18830943aa57a5a45b3da2
Certificate Common Name (CN):afggaiir3a.xyz
Issuer Distinguished Name (DN):R3
TLS Version:TLS 1.2
First seen:2021-07-08 14:10:59 UTC
Last seen:2021-07-09 06:37:51 UTC
Status:Blacklisted
Listing reason:ServHelper C&C
Listing date:2021-07-09 18:32:03
Malware samples:4
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2021-07-09 06:37:51f2aa26c5f0ac10028105cb1bd74e3e41Virustotal results 15 / 68 (22.06%) ServHelper185.163.47.171:443
2021-07-09 05:49:0608a384b9655fb403506ef9a621d2fa01Virustotal results 15 / 69 (21.74%) ServHelper185.163.47.171:443
2021-07-08 16:27:582b7720a936539736e36bb95fd6c61818Virustotal results 20 / 69 (28.99%) ServHelper185.163.47.171:443
2021-07-08 14:10:599e2521860ebdce53dbe422612566d4eaVirustotal results 31 / 69 (44.93%) CryptBot185.163.47.171:443

# of entries: 4 (max: 100)