SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint d2973f3069489602440049c54c37809627555190.

Database Entry


SHA1 Fingerprint:d2973f3069489602440049c54c37809627555190
Certificate Common Name (CN):Mod Server
Issuer Distinguished Name (DN):Mod Server
TLS Version:TLS 1.2
First seen:2025-07-29 17:09:01 UTC
Last seen:2025-08-10 01:02:37 UTC
Status:Blacklisted
Listing reason:AsyncRAT C&C
Listing date:2025-07-29 19:15:52
Malware samples:7
Botnet C&Cs:3

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2025-08-10 01:02:3700ea2ff027b651d291a6a414f9f19e5dn/a147.185.221.30:57956
2025-08-07 19:00:58aa2b2750cf57387afdf0b17af91799b9n/a147.185.221.30:53752
2025-08-07 08:07:4524d3401b37ff3579282f7e8b2401b266n/a193.161.193.99:30169
2025-08-06 19:49:0053529b32afb72f2a676322bc12b92a36n/a147.185.221.30:53752
2025-08-04 17:37:50523e519dc064797a50eb4c942c68e871n/a147.185.221.30:50654
2025-08-01 19:43:31ad089fbd9fbc3d81b2d32621bddb6589n/a147.185.221.28:33185
2025-07-29 17:09:013047db4ce6ac243816468167fee48031n/a147.185.221.28:45304

# of entries: 7 (max: 100)