SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint d34ad02fa23233b6493e363d6337e8358d9747d7.
Database Entry
| SHA1 Fingerprint: | d34ad02fa23233b6493e363d6337e8358d9747d7 |
|---|---|
| Certificate Common Name (CN): | localhost |
| Issuer Distinguished Name (DN): | localhost |
| TLS Version: | TLS 1.2 |
| First seen: | 2017-01-22 17:06:20 UTC |
| Last seen: | 2020-07-15 21:31:54 UTC |
| Status: | Blacklisted |
| Listing reason: | Malware C&C |
| Listing date: | 2019-07-27 15:16:06 |
| Malware samples: | 16 |
| Botnet C&Cs: | 16 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2020-07-15 21:31:54 | 556da1257b372031c2a04c5542043543 | n/a | ZLoader | 188.172.80.161:443 |
| 2020-07-15 21:31:54 | 556da1257b372031c2a04c5542043543 | n/a | ZLoader | 188.172.80.161:443 |
| 2020-07-15 17:45:15 | af10778bc4ed18f85e9a3aa511ad9c2d | n/a | ZLoader | 78.31.63.30:443 |
| 2020-07-15 17:45:15 | af10778bc4ed18f85e9a3aa511ad9c2d | n/a | ZLoader | 78.31.63.30:443 |
| 2020-04-28 08:26:47 | d5c54774ab34fea77e196a8b8f7da6c9 |  18 / 71 (25.35%)
| Gozi | 82.208.161.228:443 |
| 2020-04-28 08:26:47 | d5c54774ab34fea77e196a8b8f7da6c9 | 18 / 71 (25.35%)
| Gozi | 82.208.161.228:443 |
| 2020-04-22 15:18:30 | 2f3423ecf241ea69189466a3fb57fd62 | n/a | Gozi | 77.30.145.48:443 |
| 2020-04-22 15:18:30 | 2f3423ecf241ea69189466a3fb57fd62 | n/a | Gozi | 77.30.145.48:443 |
| 2020-04-22 12:40:37 | e00360fdd7b4e5f2846f1ee1c0163c12 | n/a | Gozi | 178.48.154.38:443 |
| 2020-04-22 12:40:37 | e00360fdd7b4e5f2846f1ee1c0163c12 | n/a | Gozi | 178.48.154.38:443 |
| 2020-04-22 11:11:09 | b50ac3b459168feafc89f9c87e4d4bcd | 23 / 73 (31.51%)
| Gozi | 91.201.175.46:443 |
| 2020-04-22 11:11:09 | b50ac3b459168feafc89f9c87e4d4bcd | 23 / 73 (31.51%)
| Gozi | 91.201.175.46:443 |
| 2020-04-22 09:09:10 | 00bfe3c9df49cc312e8f831c2fb122b4 | n/a | Gozi | 5.56.73.146:443 |
| 2020-04-22 09:09:10 | 00bfe3c9df49cc312e8f831c2fb122b4 | n/a | Gozi | 5.56.73.146:443 |
| 2019-11-29 12:45:33 | 5722c1fbf9e07b73fc2e967fb5b9c63b | 16 / 67 (23.88%)
| Gozi | 84.54.187.24:443 |
| 2019-11-29 12:45:33 | 5722c1fbf9e07b73fc2e967fb5b9c63b | 16 / 67 (23.88%)
| Gozi | 84.54.187.24:443 |
| 2019-11-21 07:31:44 | 7e6ac995f182ff2f2d797b359605725f | 19 / 70 (27.14%)
| AZORult | 2.91.161.144:443 |
| 2019-11-21 07:31:44 | 7e6ac995f182ff2f2d797b359605725f | 19 / 70 (27.14%)
| AZORult | 2.91.161.144:443 |
| 2019-11-15 04:08:48 | 1b6c6f96d9d3ebe0a56db8abba391e16 | 10 / 59 (16.95%)
| Gozi | 195.228.41.2:443 |
| 2019-11-15 04:08:48 | 1b6c6f96d9d3ebe0a56db8abba391e16 | 10 / 59 (16.95%)
| Gozi | 195.228.41.2:443 |
| 2019-11-14 22:30:52 | 4784781afbe4a133c94fa44fe1d8f80c | 11 / 60 (18.33%)
| Gozi | 37.75.61.8:443 |
| 2019-11-14 22:30:52 | 4784781afbe4a133c94fa44fe1d8f80c | 11 / 60 (18.33%)
| Gozi | 37.75.61.8:443 |
| 2019-07-27 15:34:49 | 080a7e7fd37cd77ae8f7a6a9d6fac2fa | 25/70 (35.71%)
| Gozi | 197.255.225.249:443 |
| 2019-07-27 15:34:49 | 080a7e7fd37cd77ae8f7a6a9d6fac2fa | 25/70 (35.71%)
| Gozi | 197.255.225.249:443 |
| 2019-07-27 13:09:51 | e3ba45266ca7a29d2a1d3e0822387d9c | 23/66 (34.85%)
| ArkeiStealer | 188.227.212.233:443 |
| 2019-07-27 13:09:51 | e3ba45266ca7a29d2a1d3e0822387d9c | 23/66 (34.85%)
| ArkeiStealer | 188.227.212.233:443 |
| 2019-07-25 11:05:46 | f7584aac9b0fc59d8b9d7c834cb85cf1 | 24/69 (34.78%)
| Gozi | 37.75.34.239:443 |
| 2019-07-25 11:05:46 | f7584aac9b0fc59d8b9d7c834cb85cf1 | 24/69 (34.78%)
| Gozi | 37.75.34.239:443 |
| 2017-03-02 07:17:03 | c134e23679d17fdfcfb2a0cebd3f7119 | n/a | Kovter | 95.68.112.253:443 |
| 2017-03-02 07:17:03 | c134e23679d17fdfcfb2a0cebd3f7119 | n/a | Kovter | 95.68.112.253:443 |
| 2017-01-22 17:06:20 | 426c6263b0cef93bb39183ac7104d3ca | n/a | Kovter | 31.13.163.72:443 |
| 2017-01-22 17:06:20 | 426c6263b0cef93bb39183ac7104d3ca | n/a | Kovter | 31.13.163.72:443 |
# of entries: 32 (max: 100)