SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint e4385d6d8614c019e920b8b3650baa3654b6f17b.

Database Entry


SHA1 Fingerprint:e4385d6d8614c019e920b8b3650baa3654b6f17b
Certificate Common Name (CN):localhost
Issuer Distinguished Name (DN):localhost
TLS Version:SSLv3
First seen:2015-06-14 17:48:48 UTC
Last seen:2015-07-09 20:45:38 UTC
Status:Blacklisted
Listing reason:KINS C&C
Listing date:2015-06-15 05:20:41
Malware samples:6
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2015-07-09 20:45:38ca0235ae745fecd88463e6ecb6e48a05Virustotal results 8/56 (14.29%) ZeuS 124.156.129.29:443
2015-07-01 18:17:20f31b04f63c4e53a900151fe9db519079Virustotal results 8/56 (14.29%) ZeuS 124.156.129.29:443
2015-06-22 00:53:34a64b36f9ea407b53e37d7239eaae0281Virustotal results 0/57 (0.00%) ZeuS 124.156.129.29:443
2015-06-19 14:09:35d29b27c71ef4ef25e9463b70b2c2495bVirustotal results 8/57 (14.04%) ZeuS 124.156.129.29:443
2015-06-19 00:38:56caf2f4a97a315c9e06a9fa940baae1fcVirustotal results 10/57 (17.54%) ZeuS 124.156.129.29:443
2015-06-14 17:48:482ad39512ae42bedd6f5618b34567bcd1Virustotal results 2/57 (3.51%) ZeuS 124.156.129.29:443

# of entries: 6 (max: 100)