SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint d40684b494db2c1c997064d7f50e4d6a47ccc43d.
Database Entry
| SHA1 Fingerprint: | d40684b494db2c1c997064d7f50e4d6a47ccc43d |
|---|---|
| Certificate Common Name (CN): | telemetry-defender.lol |
| Issuer Distinguished Name (DN): | R12 |
| TLS Version: | TLS 1.2 |
| First seen: | 2025-11-14 17:11:26 UTC |
| Last seen: | 2025-11-16 10:08:14 UTC |
| Status: | Blacklisted |
| Listing reason: | Malware C&C |
| Listing date: | 2025-11-16 15:14:12 |
| Malware samples: | 9 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2025-11-16 10:08:14 | 6dac8ea22fcefdb84142c0ffc62ffb18 | n/a | 185.100.157.69:443 | |
| 2025-11-15 20:11:16 | aec550c3bcf792acd8aa4715fa5c6f0d | n/a | 185.100.157.69:443 | |
| 2025-11-15 18:31:08 | 77545a5befa1ca0735a0e21edbff653e | n/a | 185.100.157.69:443 | |
| 2025-11-14 21:46:09 | 6e020886f88001f48a0b6b25256aab1f | n/a | 185.100.157.69:443 | |
| 2025-11-14 20:56:15 | 3ab9169baea97c90315d862197f7fd82 | n/a | 185.100.157.69:443 | |
| 2025-11-14 20:28:48 | 13476b92dd95ab76731e4a0a9a197bf0 | n/a | 185.100.157.69:443 | |
| 2025-11-14 19:37:52 | db9674dd888585f295891388987ac86f | n/a | 185.100.157.69:443 | |
| 2025-11-14 18:48:25 | 18e839edbcd0a74c74b377f46bf6b45e | n/a | 185.100.157.69:443 | |
| 2025-11-14 17:11:26 | 3cc15ea595299da5951c5377baa87c5d | n/a | 185.100.157.69:443 |
# of entries: 9 (max: 100)