SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint dce3028028028e5b2cd6ff51a6b6e5659ab1d748.

Database Entry


SHA1 Fingerprint:dce3028028028e5b2cd6ff51a6b6e5659ab1d748
Certificate Common Name (CN):felruzatqofkxlzkrskrbcilq.org
Issuer Distinguished Name (DN):felruzatqofkxlzkrskrbcilq.org
TLS Version:TLS 1.2
First seen:2016-02-16 11:04:02 UTC
Last seen:2016-02-17 07:18:24 UTC
Status:Blacklisted
Listing reason:Quakbot C&C
Listing date:2016-02-17 10:22:36
Malware samples:4
Botnet C&Cs:2

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2016-02-17 07:18:244e29bab2a7d7a30c95cbc12186023a4dn/aQuakbot43.251.157.139:443
2016-02-16 16:49:52e7277c4037a347f4d87839e09e579d74n/aQuakbot43.251.157.139:443
2016-02-16 12:19:41930ecf83f8aede092dfa40b8d4f5f76dn/aQuakbot43.251.157.139:443
2016-02-16 11:04:02efae3ef91d7982a018f90f57d62b3e63n/aQuakbot185.12.12.154:443

# of entries: 4 (max: 100)