SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint cee8ba23db82bc5f4c18830943aa57a5a45b3da2.
Database Entry
| SHA1 Fingerprint: | cee8ba23db82bc5f4c18830943aa57a5a45b3da2 |
|---|---|
| Certificate Common Name (CN): | afggaiir3a.xyz |
| Issuer Distinguished Name (DN): | R3 |
| TLS Version: | TLS 1.2 |
| First seen: | 2021-07-08 14:10:59 UTC |
| Last seen: | 2021-07-09 06:37:51 UTC |
| Status: | Blacklisted |
| Listing reason: | ServHelper C&C |
| Listing date: | 2021-07-09 18:32:03 |
| Malware samples: | 4 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2021-07-09 06:37:51 | f2aa26c5f0ac10028105cb1bd74e3e41 |  15 / 68 (22.06%)
| ServHelper | 185.163.47.171:443 |
| 2021-07-09 06:37:51 | f2aa26c5f0ac10028105cb1bd74e3e41 | 15 / 68 (22.06%)
| ServHelper | 185.163.47.171:443 |
| 2021-07-09 05:49:06 | 08a384b9655fb403506ef9a621d2fa01 | 15 / 69 (21.74%)
| ServHelper | 185.163.47.171:443 |
| 2021-07-09 05:49:06 | 08a384b9655fb403506ef9a621d2fa01 | 15 / 69 (21.74%)
| ServHelper | 185.163.47.171:443 |
| 2021-07-08 16:27:58 | 2b7720a936539736e36bb95fd6c61818 | 20 / 69 (28.99%)
| ServHelper | 185.163.47.171:443 |
| 2021-07-08 16:27:58 | 2b7720a936539736e36bb95fd6c61818 | 20 / 69 (28.99%)
| ServHelper | 185.163.47.171:443 |
| 2021-07-08 14:10:59 | 9e2521860ebdce53dbe422612566d4ea | 31 / 69 (44.93%)
| CryptBot | 185.163.47.171:443 |
| 2021-07-08 14:10:59 | 9e2521860ebdce53dbe422612566d4ea | 31 / 69 (44.93%)
| CryptBot | 185.163.47.171:443 |
# of entries: 8 (max: 100)