SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint d4a2dea0d95ceb0d0144e19a3cf95e17f1d492dc.
Database Entry
| SHA1 Fingerprint: | d4a2dea0d95ceb0d0144e19a3cf95e17f1d492dc |
|---|---|
| Certificate Common Name (CN): | duatox cuuvw |
| Issuer Distinguished Name (DN): | duatox cuuvw |
| TLS Version: | TLS 1.2 |
| First seen: | 2025-07-28 21:10:35 UTC |
| Last seen: | 2025-07-29 06:52:24 UTC |
| Status: | Blacklisted |
| Listing reason: | QuasarRAT C&C |
| Listing date: | 2025-07-29 06:53:10 |
| Malware samples: | 5 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2025-07-29 06:52:24 | 1a099cd9f7b275791448f509121c9de3 | n/a | 194.59.30.101:5000 | |
| 2025-07-29 06:00:20 | e7cc933a302a9d8939a2f4b3f34cfb9a | n/a | 194.59.30.101:5000 | |
| 2025-07-28 22:38:10 | 970898fd720a183153dc28612c222c2d | n/a | 194.59.30.101:5000 | |
| 2025-07-28 21:17:24 | 5626c860bf37db76f07dc9c6f34c29d4 | n/a | 194.59.30.101:5000 | |
| 2025-07-28 21:10:35 | 8d89296f818b8d7df5e506d73648e166 | n/a | 194.59.30.101:5000 |
# of entries: 5 (max: 100)