SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint d8086905326794d0e553bd6a7ad9a06498b1ce4d.

Database Entry

SHA1 Fingerprint:	d8086905326794d0e553bd6a7ad9a06498b1ce4d
Certificate Common Name (CN):	nemty.hk
Issuer Distinguished Name (DN):	Let's Encrypt Authority X3
TLS Version:	TLS 1.2
First seen:	2019-10-02 02:50:39 UTC
Last seen:	2019-10-13 10:12:34 UTC
Status:	Blacklisted
Listing reason:	Ransomware.Nemty C&C
Listing date:	2019-10-13 06:03:56
Malware samples:	10
Botnet C&Cs:	2

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2019-10-13 10:12:34	58995d4825bc214bc78edca6b4a29310	42 / 69 (60.87%)	Ransomware.Nemty	45.132.19.146:443
2019-10-13 10:12:34	58995d4825bc214bc78edca6b4a29310	42 / 69 (60.87%)	Ransomware.Nemty	45.132.19.146:443
2019-10-13 01:01:47	cf70a3a94ba60d4887801758cb4ac049	43 / 71 (60.56%)	Ransomware.Nemty	45.132.19.146:443
2019-10-13 01:01:47	cf70a3a94ba60d4887801758cb4ac049	43 / 71 (60.56%)	Ransomware.Nemty	45.132.19.146:443
2019-10-13 00:03:08	322f204ca373b22d385770de93cd3261	26 / 69 (37.68%)	Ransomware.Nemty	82.146.39.206:443
2019-10-13 00:03:08	322f204ca373b22d385770de93cd3261	26 / 69 (37.68%)	Ransomware.Nemty	82.146.39.206:443
2019-10-09 02:30:56	06a28702d2b3d45a8ae80ced6f05cf25	10 / 69 (14.49%)	Ransomware.Nemty	82.146.39.206:443
2019-10-09 02:30:56	06a28702d2b3d45a8ae80ced6f05cf25	10 / 69 (14.49%)	Ransomware.Nemty	82.146.39.206:443
2019-10-07 22:48:54	6c05aa998d0523f2855769bd30b2d0d1	12 / 69 (17.39%)	Ransomware.Nemty	82.146.39.206:443
2019-10-07 22:48:54	6c05aa998d0523f2855769bd30b2d0d1	12 / 69 (17.39%)	Ransomware.Nemty	82.146.39.206:443
2019-10-07 05:23:18	bb08689787fcb4bc029679acd1708177	13 / 71 (18.31%)	Phorpiex	82.146.39.206:443
2019-10-07 05:23:18	bb08689787fcb4bc029679acd1708177	13 / 71 (18.31%)	Phorpiex	82.146.39.206:443
2019-10-05 15:18:37	b07671d8da056f09ef1e993a26fb5fd3	45 / 70 (64.29%)	Ransomware.Nemty	45.132.19.146:443
2019-10-05 15:18:37	b07671d8da056f09ef1e993a26fb5fd3	45 / 70 (64.29%)	Ransomware.Nemty	45.132.19.146:443
2019-10-05 05:55:10	07e5d15d1c5f0a54430303fcf700118d	36 / 68 (52.94%)	Ransomware.Nemty	45.132.19.146:443
2019-10-05 05:55:10	07e5d15d1c5f0a54430303fcf700118d	36 / 68 (52.94%)	Ransomware.Nemty	45.132.19.146:443
2019-10-04 17:42:13	62c73b5f49a1416582e2489489e809da	46 / 68 (67.65%)	Ransomware.Nemty	45.132.19.146:443
2019-10-04 17:42:13	62c73b5f49a1416582e2489489e809da	46 / 68 (67.65%)	Ransomware.Nemty	45.132.19.146:443
2019-10-02 02:50:39	a83abbe33e05b348128a481eb4c4bc3d	27 / 70 (38.57%)	Ransomware.Nemty	45.132.19.146:443
2019-10-02 02:50:39	a83abbe33e05b348128a481eb4c4bc3d	27 / 70 (38.57%)	Ransomware.Nemty	45.132.19.146:443

# of entries: 20 (max: 100)