SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint d9ea8c49ad8560e191e242de5ebd49b0d6c0c180.

Database Entry


SHA1 Fingerprint:d9ea8c49ad8560e191e242de5ebd49b0d6c0c180
Certificate Common Name (CN):C=US, ST=Denial, L=Springfield, O=Dis
Issuer Distinguished Name (DN):C=US, ST=Denial, L=Springfield, O=Dis
TLS Version:TLS 1.2
First seen:2016-04-30 19:22:57 UTC
Last seen:2016-05-02 09:57:30 UTC
Status:Blacklisted
Listing reason:TorrentLocker C&C
Listing date:2016-05-02 05:28:41
Malware samples:7
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2016-05-02 09:57:30c6fd8d3901be3be4f4eda5c1e5550bb0Virustotal results 3/56 (5.36%) TorrentLocker 46.183.165.191:443
2016-05-02 01:27:365f8f9da749480aa16c87402f4cbe8cc6Virustotal results 4/56 (7.14%) TorrentLocker 46.183.165.191:443
2016-05-01 03:50:538033cad1f4604f91a5e6880967ba14d9Virustotal results 6/57 (10.53%) TorrentLocker 46.183.165.191:443
2016-05-01 01:35:3870c6486d6e7a7dce9fdbd31a732a089dVirustotal results 30/57 (52.63%) TorrentLocker 46.183.165.191:443
2016-04-30 23:55:44d14b8cec71802e4d3b247e915a4c2a11Virustotal results 23/57 (40.35%) TorrentLocker 46.183.165.191:443
2016-04-30 19:23:3370560599a442a469b64b023d47122f24Virustotal results 29/57 (50.88%) TorrentLocker 46.183.165.191:443
2016-04-30 19:22:577019b716d4ecbad5ef7d2cf157162810Virustotal results 29/56 (51.79%) TorrentLocker 46.183.165.191:443

# of entries: 7 (max: 100)