SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint cfbfa6724515b3829cc78435918094c86d608429.
Database Entry
| SHA1 Fingerprint: | cfbfa6724515b3829cc78435918094c86d608429 |
|---|---|
| Certificate Common Name (CN): | ntrcgroup.com |
| Issuer Distinguished Name (DN): | cPanel, Inc. Certification Authority |
| TLS Version: | TLS 1.2 |
| First seen: | 2020-01-20 13:49:23 UTC |
| Last seen: | 2020-02-21 03:58:28 UTC |
| Status: | Blacklisted |
| Listing reason: | AZORult C&C |
| Listing date: | 2020-02-21 10:21:44 |
| Malware samples: | 5 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2020-02-21 03:58:28 | dc3ddb02e50ec8b341ef958af552ea66 |  17 / 73 (23.29%)
| AZORult | 209.127.19.34:443 |
| 2020-02-21 03:58:28 | dc3ddb02e50ec8b341ef958af552ea66 | 17 / 73 (23.29%)
| AZORult | 209.127.19.34:443 |
| 2020-02-17 21:25:10 | bcf1c99c12e80117a8cb2d00df42f7a8 | n/a | AZORult | 209.127.19.34:443 |
| 2020-02-17 21:25:10 | bcf1c99c12e80117a8cb2d00df42f7a8 | n/a | AZORult | 209.127.19.34:443 |
| 2020-02-08 16:38:59 | 7679ee8391682a50f5b89726e576bc7b | n/a | AZORult | 209.127.19.34:443 |
| 2020-02-08 16:38:59 | 7679ee8391682a50f5b89726e576bc7b | n/a | AZORult | 209.127.19.34:443 |
| 2020-02-01 12:12:04 | b095637d43ac80fd38b60f9f27ee662a | n/a | AZORult | 209.127.19.34:443 |
| 2020-02-01 12:12:04 | b095637d43ac80fd38b60f9f27ee662a | n/a | AZORult | 209.127.19.34:443 |
| 2020-01-20 13:49:23 | e29ba660db18f0d3f90c152860014eff | 16 / 70 (22.86%)
| AZORult | 209.127.19.34:443 |
| 2020-01-20 13:49:23 | e29ba660db18f0d3f90c152860014eff | 16 / 70 (22.86%)
| AZORult | 209.127.19.34:443 |
# of entries: 10 (max: 100)