SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint d2973f3069489602440049c54c37809627555190.
Database Entry
| SHA1 Fingerprint: | d2973f3069489602440049c54c37809627555190 |
|---|---|
| Certificate Common Name (CN): | Mod Server |
| Issuer Distinguished Name (DN): | Mod Server |
| TLS Version: | TLS 1.2 |
| First seen: | 2025-07-29 17:09:01 UTC |
| Last seen: | 2025-08-10 01:02:37 UTC |
| Status: | Blacklisted |
| Listing reason: | AsyncRAT C&C |
| Listing date: | 2025-07-29 19:15:52 |
| Malware samples: | 7 |
| Botnet C&Cs: | 3 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2025-08-10 01:02:37 | 00ea2ff027b651d291a6a414f9f19e5d | n/a | 147.185.221.30:57956 | |
| 2025-08-07 19:00:58 | aa2b2750cf57387afdf0b17af91799b9 | n/a | 147.185.221.30:53752 | |
| 2025-08-07 08:07:45 | 24d3401b37ff3579282f7e8b2401b266 | n/a | 193.161.193.99:30169 | |
| 2025-08-06 19:49:00 | 53529b32afb72f2a676322bc12b92a36 | n/a | 147.185.221.30:53752 | |
| 2025-08-04 17:37:50 | 523e519dc064797a50eb4c942c68e871 | n/a | 147.185.221.30:50654 | |
| 2025-08-01 19:43:31 | ad089fbd9fbc3d81b2d32621bddb6589 | n/a | 147.185.221.28:33185 | |
| 2025-07-29 17:09:01 | 3047db4ce6ac243816468167fee48031 | n/a | 147.185.221.28:45304 |
# of entries: 7 (max: 100)