SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint d73163331b6bf512a1e8f74ce340037c549798fc.
Database Entry
| SHA1 Fingerprint: | d73163331b6bf512a1e8f74ce340037c549798fc |
|---|---|
| Certificate Common Name (CN): | OrcusServerCertificate |
| Issuer Distinguished Name (DN): | OrcusServerCertificate |
| TLS Version: | TLSv1 |
| First seen: | 2021-07-12 13:58:34 UTC |
| Last seen: | 2021-07-12 15:57:14 UTC |
| Status: | Blacklisted |
| Listing reason: | OrcusRAT C&C |
| Listing date: | 2021-07-12 15:00:03 |
| Malware samples: | 2 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2021-07-12 15:57:14 | 981eb6dbd0a4eb2e33f04b0ffac69944 |  30 / 68 (44.12%)
| AgentTesla | 3.137.146.78:777 |
| 2021-07-12 15:57:14 | 981eb6dbd0a4eb2e33f04b0ffac69944 | 30 / 68 (44.12%)
| AgentTesla | 3.137.146.78:777 |
| 2021-07-12 13:58:34 | 52ee41a4329c6874df19851ac928c8e8 | 36 / 69 (52.17%)
| OrcusRAT | 3.137.146.78:6666 |
| 2021-07-12 13:58:34 | 52ee41a4329c6874df19851ac928c8e8 | 36 / 69 (52.17%)
| OrcusRAT | 3.137.146.78:6666 |
# of entries: 4 (max: 100)