SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint dff991d6d9b0c947272bb3d7800b4177be492f91.
Database Entry
| SHA1 Fingerprint: | dff991d6d9b0c947272bb3d7800b4177be492f91 |
|---|---|
| Certificate Common Name (CN): | itaitapizza.com/emailAddress=web@itaitapizza.com |
| Issuer Distinguished Name (DN): | itaitapizza.com/emailAddress=web@itaitapizza.com |
| TLS Version: | TLS 1.2 |
| First seen: | 2017-01-22 20:24:07 UTC |
| Last seen: | 2017-01-24 10:03:46 UTC |
| Status: | Blacklisted |
| Listing reason: | Gootkit C&C |
| Listing date: | 2017-01-23 09:14:30 |
| Malware samples: | 4 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2017-01-24 10:03:46 | d048b675036cab41b371b194b9f4dd06 | n/a | Gootkit | 173.212.200.226:80 |
| 2017-01-24 10:03:46 | d048b675036cab41b371b194b9f4dd06 | n/a | Gootkit | 173.212.200.226:80 |
| 2017-01-23 23:10:33 | 7ba788a2eefe970965c7d25fb1613178 | n/a | Gootkit | 173.212.200.226:80 |
| 2017-01-23 23:10:33 | 7ba788a2eefe970965c7d25fb1613178 | n/a | Gootkit | 173.212.200.226:80 |
| 2017-01-23 19:44:27 | 8cf501a0a1fb09b59b0d4290f2f9557e |  9/56 (16.07%)
| Gootkit | 173.212.200.226:80 |
| 2017-01-23 19:44:27 | 8cf501a0a1fb09b59b0d4290f2f9557e | 9/56 (16.07%)
| Gootkit | 173.212.200.226:80 |
| 2017-01-22 20:24:07 | 3bd1b98c31921473f2b477cb1e850dd8 | 48/61 (78.69%)
| Gootkit | 173.212.200.226:80 |
| 2017-01-22 20:24:07 | 3bd1b98c31921473f2b477cb1e850dd8 | 48/61 (78.69%)
| Gootkit | 173.212.200.226:80 |
# of entries: 8 (max: 100)