SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint d21d323e19d75d1fd7b85c0b4a50f06c9271159a.

Database Entry

SHA1 Fingerprint:d21d323e19d75d1fd7b85c0b4a50f06c9271159a
Certificate Common Name (CN):licensecheck.bit/emailAddress=owner@licensecheck.bit
Issuer Distinguished Name (DN):licensecheck.bit/emailAddress=owner@licensecheck.bit
TLS Version:TLS 1.2
First seen:2016-01-01 11:08:21 UTC
Last seen:2016-01-07 12:03:12 UTC
Status:Blacklisted
Listing reason:Shifu C&C
Listing date:2016-01-01 11:50:19
Malware samples:7
Botnet C&Cs:1

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2016-01-07 12:03:123cffb6d0b986bab06e6f247e47636339n/aShifu87.120.37.218:443
2016-01-07 12:03:123cffb6d0b986bab06e6f247e47636339n/aShifu87.120.37.218:443
2016-01-07 08:08:06c74b08de7976acb35abb8ad876976b8dn/aShifu87.120.37.218:443
2016-01-07 08:08:06c74b08de7976acb35abb8ad876976b8dn/aShifu87.120.37.218:443
2016-01-07 07:48:116a6ec6f6f2b5d345fc1067e901b3928bn/aShifu87.120.37.218:443
2016-01-07 07:48:116a6ec6f6f2b5d345fc1067e901b3928bn/aShifu87.120.37.218:443
2016-01-07 05:52:3300af19346cbf3226753122b1d3f556b5Virustotal results 36/56 (64.29%) Shifu87.120.37.218:443
2016-01-07 05:52:3300af19346cbf3226753122b1d3f556b5Virustotal results 36/56 (64.29%) Shifu87.120.37.218:443
2016-01-06 19:22:0708524c2c72de5a49f49aea7114469ffbn/aShifu87.120.37.218:443
2016-01-06 19:22:0708524c2c72de5a49f49aea7114469ffbn/aShifu87.120.37.218:443
2016-01-06 14:41:280cc731fce1ec074c56297b338151e6c3n/aShifu87.120.37.218:443
2016-01-06 14:41:280cc731fce1ec074c56297b338151e6c3n/aShifu87.120.37.218:443
2016-01-01 11:08:21fce4683a564c57a3306d7cc5aa88a4d1n/aShifu87.120.37.218:443
2016-01-01 11:08:21fce4683a564c57a3306d7cc5aa88a4d1n/aShifu87.120.37.218:443

# of entries: 14 (max: 100)