SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint d79b4861808af8f3a9af8b35a89d0d472455bd41.
Database Entry
| SHA1 Fingerprint: | d79b4861808af8f3a9af8b35a89d0d472455bd41 |
|---|---|
| Certificate Common Name (CN): | www.0cin3ik9.com/O=0cin3ik9./C=US |
| Issuer Distinguished Name (DN): | www.0cin3ik9.com/O=0cin3ik9./C=US |
| TLS Version: | TLS 1.2 |
| First seen: | 2016-05-09 08:40:07 UTC |
| Last seen: | 2016-05-09 17:39:02 UTC |
| Status: | Blacklisted |
| Listing reason: | Gootkit C&C |
| Listing date: | 2016-05-09 08:58:37 |
| Malware samples: | 2 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2016-05-09 17:39:02 | 3dc5bc875a48be073d69a285730d7331 |  23/57 (40.35%)
| Gootkit | 125.212.205.196:80 |
| 2016-05-09 17:39:02 | 3dc5bc875a48be073d69a285730d7331 | 23/57 (40.35%)
| Gootkit | 125.212.205.196:80 |
| 2016-05-09 08:40:07 | f9e47597369eb910c620278122535284 | 13/57 (22.81%)
| Gootkit | 125.212.205.196:80 |
| 2016-05-09 08:40:07 | f9e47597369eb910c620278122535284 | 13/57 (22.81%)
| Gootkit | 125.212.205.196:80 |
# of entries: 4 (max: 100)