SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint de5e17c7f220acbaeb8dbeb4ef5c8b36c1ddc12e.

Database Entry


SHA1 Fingerprint:de5e17c7f220acbaeb8dbeb4ef5c8b36c1ddc12e
Certificate Common Name (CN):www.abcxyz1.com/O=abcdivision./C=US
Issuer Distinguished Name (DN):www.abcxyz1.com/O=abcdivision./C=US
TLS Version:TLS 1.2
First seen:2015-11-21 07:32:47 UTC
Last seen:2016-01-08 22:58:36 UTC
Status:Blacklisted
Listing reason:Gootkit C&C
Listing date:2015-11-21 14:19:01
Malware samples:6
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2016-01-08 22:58:36aaac73a7fdef22b56038e222d241c764Virustotal results 26/56 (46.43%) Gootkit 185.58.225.193:80
2016-01-08 21:21:04aa5a1d987d1160f858b0331aa776ca3eVirustotal results 6/54 (11.11%) Gootkit 185.58.225.193:80
2015-11-22 00:44:3923f07f80827749d47186de348cb95170Virustotal results 23/56 (41.07%) Gootkit 185.58.225.193:80
2015-11-21 10:02:05b834fabe6f0abb95c8a567483135aab0n/aGootkit 185.58.225.193:80
2015-11-21 07:34:32132de657f95db10b895569514f091e4eVirustotal results 15/55 (27.27%) Gootkit 185.58.225.193:80
2015-11-21 07:32:470aeb0106c1180d61839cee0b52808b6bVirustotal results 17/56 (30.36%) Gootkit 185.58.225.193:80

# of entries: 6 (max: 100)