SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint d4f3ef1bef3d140ad91e83c18aaf28ad3ac87980.
Database Entry
| SHA1 Fingerprint: | d4f3ef1bef3d140ad91e83c18aaf28ad3ac87980 |
|---|---|
| Certificate Common Name (CN): | cjkjlah.com |
| Issuer Distinguished Name (DN): | cjkjlah.com |
| TLS Version: | TLS 1.2 |
| First seen: | 2016-12-24 02:29:17 UTC |
| Last seen: | 2016-12-29 13:54:18 UTC |
| Status: | Blacklisted |
| Listing reason: | Vawtrak C&C |
| Listing date: | 2016-12-24 12:27:58 |
| Malware samples: | 3 |
| Botnet C&Cs: | 2 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2016-12-29 13:54:18 | 0d1980e131902fab2b495de74fef30f8 | n/a | Vawtrak | 91.221.37.6:443 |
| 2016-12-29 13:54:18 | 0d1980e131902fab2b495de74fef30f8 | n/a | Vawtrak | 91.221.37.6:443 |
| 2016-12-26 20:09:51 | a11546b192a216b0f7d36140b7ec6963 |  22/62 (35.48%)
| Vawtrak | 91.221.37.6:443 |
| 2016-12-26 20:09:51 | a11546b192a216b0f7d36140b7ec6963 | 22/62 (35.48%)
| Vawtrak | 91.221.37.6:443 |
| 2016-12-24 02:29:17 | ae167e489b85ee1f778a6c7d548fde53 | n/a | Vawtrak | 93.189.43.164:443 |
| 2016-12-24 02:29:17 | ae167e489b85ee1f778a6c7d548fde53 | n/a | Vawtrak | 93.189.43.164:443 |
# of entries: 6 (max: 100)