SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint d500fa3b4094efac425060a5637128672d736dc7.
Database Entry
| SHA1 Fingerprint: | d500fa3b4094efac425060a5637128672d736dc7 |
|---|---|
| Certificate Common Name (CN): | a.t.memphis-eg.com |
| Issuer Distinguished Name (DN): | E8 |
| TLS Version: | TLS 1.2 |
| First seen: | 2025-10-23 00:32:08 UTC |
| Last seen: | 2025-10-23 06:08:00 UTC |
| Status: | Blacklisted |
| Listing reason: | Vidar C&C |
| Listing date: | 2025-10-23 08:26:29 |
| Malware samples: | 5 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2025-10-23 06:08:00 | 84a006fb7967952bc0fc6d81dbde673c | n/a | 116.202.6.116:443 | |
| 2025-10-23 05:19:19 | 0d21605f8645b6750df8f694baa2b4b0 | n/a | 116.202.6.116:443 | |
| 2025-10-23 05:13:55 | 4587d4d753dd3fd0aacc009c5d02b5cc | n/a | 116.202.6.116:443 | |
| 2025-10-23 04:02:21 | 59ae25d3a0010ed91bf7c3e65ed381d4 | n/a | 116.202.6.116:443 | |
| 2025-10-23 00:32:08 | 4ffff55c20d4564cefe7f29dd08fbe1f | n/a | 116.202.6.116:443 |
# of entries: 5 (max: 100)