SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint d39d27d2267c5e3c26382699e038be6e9270dc13.

Database Entry

SHA1 Fingerprint:	d39d27d2267c5e3c26382699e038be6e9270dc13
Certificate Common Name (CN):	*.
Issuer Distinguished Name (DN):	*.
TLS Version:	TLS 1.2
First seen:	2015-05-20 00:22:38 UTC
Last seen:	2016-12-04 18:06:38 UTC
Status:	Blacklisted
Listing reason:	Redyms C&C
Listing date:	2015-08-14 09:51:06
Malware samples:	297
Botnet C&Cs:	280

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2016-12-04 18:06:38	60a572cd58fc63505d3fec9c7947a0f9	36/57 (63.16%)	Kovter	178.218.78.15:443
2016-12-04 18:06:38	60a572cd58fc63505d3fec9c7947a0f9	36/57 (63.16%)	Kovter	178.218.78.15:443
2016-10-25 21:17:29	fc5954fd7c82d38bde2dc0ed7702564b	21/54 (38.89%)	Redyms	46.229.58.234:443
2016-10-25 21:17:29	fc5954fd7c82d38bde2dc0ed7702564b	21/54 (38.89%)	Redyms	46.229.58.234:443
2016-03-13 22:20:16	fdd1289dc154eaaacddb83409c440648	42/57 (73.68%)	Quakbot	178.93.115.60:443
2016-03-13 22:20:16	fdd1289dc154eaaacddb83409c440648	42/57 (73.68%)	Quakbot	178.93.115.60:443
2016-03-12 08:06:53	3e4012aff30b39d9592910e004c7e31a	n/a	Quakbot	46.173.81.51:443
2016-03-12 08:06:53	3e4012aff30b39d9592910e004c7e31a	n/a	Quakbot	46.173.81.51:443
2016-02-23 19:30:44	d5d53bdd74f74321473c12596e5ea68f	n/a	Quakbot	95.79.72.128:443
2016-02-23 19:30:44	d5d53bdd74f74321473c12596e5ea68f	n/a	Quakbot	95.79.72.128:443
2016-02-16 20:02:19	a2a92c9de9ca756646939b6e5e73da6b	31/54 (57.41%)	Redyms	31.130.9.247:443
2016-02-16 20:02:19	a2a92c9de9ca756646939b6e5e73da6b	31/54 (57.41%)	Redyms	31.130.9.247:443
2016-02-16 15:15:47	500031abd1bf5e7484df3f394ed49201	31/53 (58.49%)	Redyms	95.105.249.36:443
2016-02-16 15:15:47	500031abd1bf5e7484df3f394ed49201	31/53 (58.49%)	Redyms	95.105.249.36:443
2016-02-14 17:34:33	b7be5d74fa19c224e6a8a2ab3ed5a923	n/a	Quakbot	178.151.203.248:443
2016-02-14 17:34:33	b7be5d74fa19c224e6a8a2ab3ed5a923	n/a	Quakbot	178.151.203.248:443
2016-02-10 10:06:44	953db5a2b62007365f63fc1807e613bf	n/a	Quakbot	134.249.31.13:443
2016-02-10 10:06:44	953db5a2b62007365f63fc1807e613bf	n/a	Quakbot	134.249.31.13:443
2016-02-06 15:12:15	424d1f6f6f2f6c8cbc8fa6eb5773bdcb	5/53 (9.43%)	Redyms	93.76.72.58:443
2016-02-06 15:12:15	424d1f6f6f2f6c8cbc8fa6eb5773bdcb	5/53 (9.43%)	Redyms	93.76.72.58:443
2016-02-03 06:56:33	c885d2f591c5287451e0fce79686ce68	n/a	Quakbot	188.255.93.37:443
2016-02-03 06:56:33	c885d2f591c5287451e0fce79686ce68	n/a	Quakbot	188.255.93.37:443
2016-01-26 02:24:47	a2f27a56ccc6b645eeb740a56e4afa37	20/57 (35.09%)	Redyms	77.121.63.196:443
2016-01-26 02:24:47	a2f27a56ccc6b645eeb740a56e4afa37	20/57 (35.09%)	Redyms	77.121.63.196:443
2016-01-22 14:25:49	430b1d5c1497b0c9b98aa3dd3b78edfe	n/a	Redyms	78.137.13.12:443
2016-01-22 14:25:49	430b1d5c1497b0c9b98aa3dd3b78edfe	n/a	Redyms	78.137.13.12:443
2016-01-17 13:01:54	fd749d5e19485fb14e347d0ed320bb23	4/55 (7.27%)	Redyms	178.76.67.12:443
2016-01-17 13:01:54	fd749d5e19485fb14e347d0ed320bb23	4/55 (7.27%)	Redyms	178.76.67.12:443
2016-01-17 06:33:57	a19731eb90b0104d425e0ef5c0c607f3	n/a	Redyms	89.42.70.241:443
2016-01-17 06:33:57	a19731eb90b0104d425e0ef5c0c607f3	n/a	Redyms	89.42.70.241:443
2016-01-13 15:21:22	7f1b40308a56b4f810f76dc629e19ab0	23/54 (42.59%)	Redyms	89.37.214.2:443
2016-01-13 15:21:22	7f1b40308a56b4f810f76dc629e19ab0	23/54 (42.59%)	Redyms	89.37.214.2:443
2016-01-11 21:30:59	5de070dbab253fa127c0220bc76f1d05	4/54 (7.41%)	Redyms	93.79.199.189:443
2016-01-11 21:30:59	5de070dbab253fa127c0220bc76f1d05	4/54 (7.41%)	Redyms	93.79.199.189:443
2016-01-10 11:04:17	ab50bf8def89a243d97c3cb168f308c5	n/a	Redyms	95.133.197.95:443
2016-01-10 11:04:17	ab50bf8def89a243d97c3cb168f308c5	n/a	Redyms	95.133.197.95:443
2016-01-10 10:58:14	67bfae8647f887ddcac470597b0a9f62	10/56 (17.86%)	Redyms	185.22.17.85:443
2016-01-10 10:58:14	67bfae8647f887ddcac470597b0a9f62	10/56 (17.86%)	Redyms	185.22.17.85:443
2016-01-10 06:56:44	a77697081f09d747db56068637696864	n/a	Redyms	77.121.255.9:443
2016-01-10 06:56:44	a77697081f09d747db56068637696864	n/a	Redyms	77.121.255.9:443
2016-01-09 22:56:32	ab175dcaf1ec83f539ee6e212ba1253e	n/a	Redyms	46.249.131.74:443
2016-01-09 22:56:32	ab175dcaf1ec83f539ee6e212ba1253e	n/a	Redyms	46.249.131.74:443
2016-01-09 19:46:50	8222d3f0d206a91a5267a9cc3bb5d7aa	15/56 (26.79%)	Redyms	37.229.135.205:443
2016-01-09 19:46:50	8222d3f0d206a91a5267a9cc3bb5d7aa	15/56 (26.79%)	Redyms	37.229.135.205:443
2016-01-09 18:09:34	a3454c20d3d55ac55c48dfb894f71574	n/a	Redyms	93.77.115.10:443
2016-01-09 18:09:34	a3454c20d3d55ac55c48dfb894f71574	n/a	Redyms	93.77.115.10:443
2016-01-09 17:08:53	a97c2159191be1c45a0bb194944891ed	n/a	Redyms	5.2.32.18:443
2016-01-09 17:08:53	a97c2159191be1c45a0bb194944891ed	n/a	Redyms	5.2.32.18:443
2016-01-09 14:36:39	a8b68a5a01d6b4414674e2ff68b18510	n/a	Redyms	193.93.218.81:443
2016-01-09 14:36:39	a8b68a5a01d6b4414674e2ff68b18510	n/a	Redyms	193.93.218.81:443
2016-01-09 14:35:09	ac042763e9aea062c0b99e7ddae1a581	n/a	Redyms	89.35.61.44:443
2016-01-09 14:35:09	ac042763e9aea062c0b99e7ddae1a581	n/a	Redyms	89.35.61.44:443
2016-01-09 13:10:17	a7068446c21efbdcf782c916cfae6b94	n/a	Redyms	94.52.72.42:443
2016-01-09 13:10:17	a7068446c21efbdcf782c916cfae6b94	n/a	Redyms	94.52.72.42:443
2016-01-09 12:35:25	ab826dfa2d06d64dac86f0fdf136ac5c	n/a	Redyms	93.78.7.146:443
2016-01-09 12:35:25	ab826dfa2d06d64dac86f0fdf136ac5c	n/a	Redyms	93.78.7.146:443
2016-01-09 10:07:30	ab5ce3cfe3e5a2c9a05d66695f389175	n/a	Redyms	94.153.65.14:443
2016-01-09 10:07:30	ab5ce3cfe3e5a2c9a05d66695f389175	n/a	Redyms	94.153.65.14:443
2016-01-09 03:25:31	af254e449ef9e5cf036a1752695eaa13	n/a	Redyms	178.216.227.244:443
2016-01-09 03:25:31	af254e449ef9e5cf036a1752695eaa13	n/a	Redyms	178.216.227.244:443
2016-01-08 23:20:43	ad167750f158f491c69061c40d4dfef4	n/a	Redyms	93.171.21.27:443
2016-01-08 23:20:43	ad167750f158f491c69061c40d4dfef4	n/a	Redyms	93.171.21.27:443
2016-01-08 21:44:25	aad836b3b4361938a9bba207b6715f83	n/a	Redyms	109.87.249.48:443
2016-01-08 21:44:25	aad836b3b4361938a9bba207b6715f83	n/a	Redyms	109.87.249.48:443
2016-01-08 20:09:24	acf559c70635ffc98c3c7e7da284234c	n/a	Redyms	93.127.114.50:443
2016-01-08 20:09:24	acf559c70635ffc98c3c7e7da284234c	n/a	Redyms	93.127.114.50:443
2016-01-08 15:11:42	ad35b332fcb314ea27e1c43c598176e4	n/a	Redyms	46.211.43.150:443
2016-01-08 15:11:42	ad35b332fcb314ea27e1c43c598176e4	n/a	Redyms	46.211.43.150:443
2016-01-08 14:08:57	acfae187ed6eeced20bd5d0f90688d96	n/a	Redyms	91.241.227.106:443
2016-01-08 14:08:57	acfae187ed6eeced20bd5d0f90688d96	n/a	Redyms	91.241.227.106:443
2016-01-06 22:12:01	e70ab69456c1f257d1f45efe6d684aa2	n/a	Redyms	62.68.148.132:443
2016-01-06 22:12:01	e70ab69456c1f257d1f45efe6d684aa2	n/a	Redyms	62.68.148.132:443
2016-01-03 17:21:08	2661d49b0cfb877558fb3529bc234333	n/a	Redyms	213.111.232.28:443
2016-01-03 17:21:08	2661d49b0cfb877558fb3529bc234333	n/a	Redyms	213.111.232.28:443
2016-01-02 13:50:42	787930bb4f213f4cbd77096e2e8426a0	n/a	Redyms	94.253.83.111:443
2016-01-02 13:50:42	787930bb4f213f4cbd77096e2e8426a0	n/a	Redyms	94.253.83.111:443
2016-01-01 18:51:05	987efe3a6c012046321aedb87b867b26	n/a	Redyms	46.173.71.50:443
2016-01-01 18:51:05	987efe3a6c012046321aedb87b867b26	n/a	Redyms	46.173.71.50:443
2015-12-30 11:58:29	2bc5379e8821c271afc55464cf4bc684	n/a	Redyms	109.200.148.114:443
2015-12-30 11:58:29	2bc5379e8821c271afc55464cf4bc684	n/a	Redyms	109.200.148.114:443
2015-12-29 18:39:55	6f212c2946c1bb75d495ddee52d9ca53	n/a	Redyms	46.151.42.154:443
2015-12-29 18:39:55	6f212c2946c1bb75d495ddee52d9ca53	n/a	Redyms	46.151.42.154:443
2015-12-29 17:03:18	ee0f02b091c180390b274ae0df768832	n/a	Redyms	188.27.236.220:443
2015-12-29 17:03:18	ee0f02b091c180390b274ae0df768832	n/a	Redyms	188.27.236.220:443
2015-12-29 12:33:59	976e43352c1661604ab2d1cf9499a990	n/a	Redyms	94.19.198.38:443
2015-12-29 12:33:59	976e43352c1661604ab2d1cf9499a990	n/a	Redyms	94.19.198.38:443
2015-12-29 09:36:19	5f7a69c762b6b3b1e2391d1609778fb4	n/a	Redyms	94.232.207.193:443
2015-12-29 09:36:19	5f7a69c762b6b3b1e2391d1609778fb4	n/a	Redyms	94.232.207.193:443
2015-12-27 09:15:05	7a23a800d90ed5bca4f591a6b54556d3	n/a	Redyms	92.87.69.36:443
2015-12-27 09:15:05	7a23a800d90ed5bca4f591a6b54556d3	n/a	Redyms	92.87.69.36:443
2015-12-26 22:46:37	e5f0a7050f5e8d4dc602c5bb99eb5dfc	n/a	Redyms	37.115.157.90:443
2015-12-26 22:46:37	e5f0a7050f5e8d4dc602c5bb99eb5dfc	n/a	Redyms	37.115.157.90:443
2015-12-25 23:02:39	413b729577000939dfbc1571aa8f6e7e	n/a	Redyms	195.66.222.173:443
2015-12-25 23:02:39	413b729577000939dfbc1571aa8f6e7e	n/a	Redyms	195.66.222.173:443
2015-12-25 10:41:43	edb285eadabfadd5f1859ba4fc95626b	n/a	Redyms	188.230.84.45:443
2015-12-25 10:41:43	edb285eadabfadd5f1859ba4fc95626b	n/a	Redyms	188.230.84.45:443
2015-12-23 08:37:27	3ed244b34c1d31934169cfef7732ce71	n/a	Redyms	176.37.225.130:443
2015-12-23 08:37:27	3ed244b34c1d31934169cfef7732ce71	n/a	Redyms	176.37.225.130:443
2015-12-23 08:20:20	6c994ce45ac796d29c0063f9a6369c76	n/a	Redyms	31.170.152.131:443
2015-12-23 08:20:20	6c994ce45ac796d29c0063f9a6369c76	n/a	Redyms	31.170.152.131:443

# of entries: 100 (max: 100)