SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint db49fcd449e1b214df6939e16916def506ccaacb.
Database Entry
| SHA1 Fingerprint: | db49fcd449e1b214df6939e16916def506ccaacb |
|---|---|
| Certificate Common Name (CN): | C=XX, L=Default City, O=Default Company Ltd |
| Issuer Distinguished Name (DN): | C=XX, L=Default City, O=Default Company Ltd |
| TLS Version: | SSLv3 |
| First seen: | 2015-07-16 07:44:38 UTC |
| Last seen: | 2015-07-22 16:44:20 UTC |
| Status: | Blacklisted |
| Listing reason: | Ransomware C&C |
| Listing date: | 2015-07-20 07:07:27 |
| Malware samples: | 5 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2015-07-22 16:44:20 | 3163cd55b5ae32e0d3aa07912d417b3f |  3/55 (5.45%)
| Ransomware | 5.178.82.105:443 |
| 2015-07-22 16:44:20 | 3163cd55b5ae32e0d3aa07912d417b3f | 3/55 (5.45%)
| Ransomware | 5.178.82.105:443 |
| 2015-07-21 06:18:52 | a88756dd53eda2f78010bf9ab2d77abc | 2/55 (3.64%)
| 5.178.82.105:443 | |
| 2015-07-21 06:18:52 | a88756dd53eda2f78010bf9ab2d77abc | 2/55 (3.64%)
| 5.178.82.105:443 | |
| 2015-07-21 06:01:09 | a83b5df763ffa4f5b0c190c82abb81f7 | 6/55 (10.91%)
| 5.178.82.105:443 | |
| 2015-07-21 06:01:09 | a83b5df763ffa4f5b0c190c82abb81f7 | 6/55 (10.91%)
| 5.178.82.105:443 | |
| 2015-07-17 23:44:53 | 61758b63948ba6017d4fa4b60ee62eae | 28/55 (50.91%)
| Ransomware | 5.178.82.105:443 |
| 2015-07-17 23:44:53 | 61758b63948ba6017d4fa4b60ee62eae | 28/55 (50.91%)
| Ransomware | 5.178.82.105:443 |
| 2015-07-16 07:44:38 | 22d8e715dd9beefe142dbae04ac8dc40 | 6/54 (11.11%)
| 5.178.82.105:443 | |
| 2015-07-16 07:44:38 | 22d8e715dd9beefe142dbae04ac8dc40 | 6/54 (11.11%)
| 5.178.82.105:443 |
# of entries: 10 (max: 100)