SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint db49fcd449e1b214df6939e16916def506ccaacb.

Database Entry


SHA1 Fingerprint:db49fcd449e1b214df6939e16916def506ccaacb
Certificate Common Name (CN):C=XX, L=Default City, O=Default Company Ltd
Issuer Distinguished Name (DN):C=XX, L=Default City, O=Default Company Ltd
TLS Version:SSLv3
First seen:2015-07-16 07:44:38 UTC
Last seen:2015-07-22 16:44:20 UTC
Status:Blacklisted
Listing reason:Ransomware C&C
Listing date:2015-07-20 07:07:27
Malware samples:5
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2015-07-22 16:44:203163cd55b5ae32e0d3aa07912d417b3fVirustotal results 3/55 (5.45%) Ransomware5.178.82.105:443
2015-07-21 06:18:52a88756dd53eda2f78010bf9ab2d77abcVirustotal results 2/55 (3.64%) 5.178.82.105:443
2015-07-21 06:01:09a83b5df763ffa4f5b0c190c82abb81f7Virustotal results 6/55 (10.91%) 5.178.82.105:443
2015-07-17 23:44:5361758b63948ba6017d4fa4b60ee62eaeVirustotal results 28/55 (50.91%) Ransomware5.178.82.105:443
2015-07-16 07:44:3822d8e715dd9beefe142dbae04ac8dc40Virustotal results 6/54 (11.11%) 5.178.82.105:443

# of entries: 5 (max: 100)