SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint db3e4f8db90be12aa838169190d66eaf0f0ddccf.

Database Entry


SHA1 Fingerprint:db3e4f8db90be12aa838169190d66eaf0f0ddccf
Certificate Common Name (CN):annafraudy.pw
Issuer Distinguished Name (DN):R3
TLS Version:TLS 1.2
First seen:2021-04-15 21:32:22 UTC
Last seen:2021-04-17 08:04:41 UTC
Status:Blacklisted
Listing reason:RaccoonStealer C&C
Listing date:2021-04-17 09:16:17
Malware samples:5
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2021-04-17 08:04:417a58f1ccefbe08d5dece793b8f64ac3fVirustotal results 48 / 69 (69.57%) 116.203.178.81:443
2021-04-17 07:05:363cd293ad6668e6af5113a9333567d7adVirustotal results 56 / 72 (77.78%) 116.203.178.81:443
2021-04-17 06:23:105d633bada0f022b0ff8c7a0db25d684en/aRaccoonStealer116.203.178.81:443
2021-04-17 06:15:48d2dd77a5c56228b033d2b600739966e0n/aRaccoonStealer116.203.178.81:443
2021-04-15 21:32:220ea1911542560fbe2db81396fb567dbcVirustotal results 35 / 69 (50.72%) RaccoonStealer116.203.178.81:443

# of entries: 5 (max: 100)