SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint d75ca8ffbc3dd7ef41954aafe72eac422d8b5a91.
Database Entry
| SHA1 Fingerprint: | d75ca8ffbc3dd7ef41954aafe72eac422d8b5a91 |
|---|---|
| Certificate Common Name (CN): | frederickcookies.com.br |
| Issuer Distinguished Name (DN): | WE1 |
| TLS Version: | TLS 1.2 |
| First seen: | 2025-12-17 10:05:33 UTC |
| Last seen: | 2025-12-18 00:49:56 UTC |
| Status: | Blacklisted |
| Listing reason: | Vidar C&C |
| Listing date: | 2025-12-18 08:30:17 |
| Malware samples: | 7 |
| Botnet C&Cs: | 2 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2025-12-18 00:49:56 | 1ec34c965c97499387bdb05b121459f2 | n/a | 172.67.215.191:443 | |
| 2025-12-17 20:41:24 | 0ede9fbfc179df98f5538ee81296ed16 | n/a | 104.21.61.220:443 | |
| 2025-12-17 18:08:19 | 01bda5ebe498d9c5bd7bb0d6b054ffa1 | n/a | 172.67.215.191:443 | |
| 2025-12-17 17:47:37 | 4d3adf17e82e67beb18f9b7aa1af31e2 | n/a | 172.67.215.191:443 | |
| 2025-12-17 14:31:32 | 91b28fa86d164e9e9bdeaf5f5164d875 | n/a | 104.21.61.220:443 | |
| 2025-12-17 11:50:24 | 895fde14305762b8fc3fe84f825f8f8f | n/a | 172.67.215.191:443 | |
| 2025-12-17 10:05:34 | 32055651d004b08a1ec9480a82aedb96 | n/a | 104.21.61.220:443 |
# of entries: 7 (max: 100)