SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint e5d49e0b12012e40498cc991ae586b3ce05bf2f6.

Database Entry


SHA1 Fingerprint:e5d49e0b12012e40498cc991ae586b3ce05bf2f6
Certificate Common Name (CN):localhost/C=AU/ST=Some-State/O=Internet Widgits Pty Ltd
Issuer Distinguished Name (DN):localhost/C=AU/ST=Some-State/O=Internet Widgits Pty Ltd
TLS Version:TLS 1.2
First seen:2020-04-29 17:20:30 UTC
Last seen:2020-05-02 17:44:55 UTC
Status:Blacklisted
Listing reason:IcedID C&C
Listing date:2020-05-02 07:41:15
Malware samples:30
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2020-05-02 17:44:5587c5c3ddcab7e03dad0384c170a94755Virustotal results 11 / 72 (15.28%) IcedID 161.35.38.118:443
2020-05-02 17:44:5587c5c3ddcab7e03dad0384c170a94755Virustotal results 11 / 72 (15.28%) IcedID 161.35.38.118:443
2020-05-02 00:24:49da5723462b6d6130bb046569a79050aan/aIcedID 161.35.38.118:443
2020-05-02 00:24:49da5723462b6d6130bb046569a79050aan/aIcedID 161.35.38.118:443
2020-05-01 21:42:1907ca86a27502123b15105138be8baa4en/aIcedID 161.35.38.118:443
2020-05-01 21:42:1907ca86a27502123b15105138be8baa4en/aIcedID 161.35.38.118:443
2020-05-01 21:05:373d271c05f9ff55d02761a9c646852832n/aIcedID 161.35.38.118:443
2020-05-01 21:05:373d271c05f9ff55d02761a9c646852832n/aIcedID 161.35.38.118:443
2020-05-01 20:57:227da21e15068ba1013f24a50e2c196a1bn/aIcedID 161.35.38.118:443
2020-05-01 20:57:227da21e15068ba1013f24a50e2c196a1bn/aIcedID 161.35.38.118:443
2020-05-01 20:38:121234319e40a245cc418d0fca4061693fn/aIcedID 161.35.38.118:443
2020-05-01 20:38:121234319e40a245cc418d0fca4061693fn/aIcedID 161.35.38.118:443
2020-05-01 20:11:1598c70bac8cb81ec490c5073dc6acdb53n/aIcedID 161.35.38.118:443
2020-05-01 20:11:1598c70bac8cb81ec490c5073dc6acdb53n/aIcedID 161.35.38.118:443
2020-05-01 19:32:48e8f4977f6eba7a7f41208568f9e0b273n/aIcedID 161.35.38.118:443
2020-05-01 19:32:48e8f4977f6eba7a7f41208568f9e0b273n/aIcedID 161.35.38.118:443
2020-04-30 11:05:5574ace60cae1c2bbc33eb23fb4d3d7dcbn/aIcedID 161.35.38.118:443
2020-04-30 11:05:5574ace60cae1c2bbc33eb23fb4d3d7dcbn/aIcedID 161.35.38.118:443
2020-04-30 11:05:10c744fcf1311b339a84f8b4fbee1bdbb8n/aIcedID 161.35.38.118:443
2020-04-30 11:05:10c744fcf1311b339a84f8b4fbee1bdbb8n/aIcedID 161.35.38.118:443
2020-04-30 11:05:041fd9b86c5f37f0517f4997aeaf2abeccVirustotal results 9 / 71 (12.68%) IcedID 161.35.38.118:443
2020-04-30 11:05:041fd9b86c5f37f0517f4997aeaf2abeccVirustotal results 9 / 71 (12.68%) IcedID 161.35.38.118:443
2020-04-30 11:04:09f043bdf08cd35804e702987c7d94554an/aIcedID 161.35.38.118:443
2020-04-30 11:04:09f043bdf08cd35804e702987c7d94554an/aIcedID 161.35.38.118:443
2020-04-30 11:03:3131a072524298dd810d9fccb811b176f1n/aIcedID 161.35.38.118:443
2020-04-30 11:03:3131a072524298dd810d9fccb811b176f1n/aIcedID 161.35.38.118:443
2020-04-30 11:02:42cbf2411c2005b3ccaf76397e58af9bdfn/aIcedID 161.35.38.118:443
2020-04-30 11:02:42cbf2411c2005b3ccaf76397e58af9bdfn/aIcedID 161.35.38.118:443
2020-04-30 11:01:462d4009ecfd69f3c39d5dade8fe55718dn/aIcedID 161.35.38.118:443
2020-04-30 11:01:462d4009ecfd69f3c39d5dade8fe55718dn/aIcedID 161.35.38.118:443
2020-04-30 11:01:005c43ba11f0ab40350c82449901acf3abn/aIcedID 161.35.38.118:443
2020-04-30 11:01:005c43ba11f0ab40350c82449901acf3abn/aIcedID 161.35.38.118:443
2020-04-30 11:00:47605218ca9a705f7a59cc10443cc78b0en/aIcedID 161.35.38.118:443
2020-04-30 11:00:47605218ca9a705f7a59cc10443cc78b0en/aIcedID 161.35.38.118:443
2020-04-30 11:00:44ceddf81ac52d4267d61a1432576ac66cn/aIcedID 161.35.38.118:443
2020-04-30 11:00:44ceddf81ac52d4267d61a1432576ac66cn/aIcedID 161.35.38.118:443
2020-04-30 11:00:380aa94a8d52d89f402fd16cc82ee1e0ddn/aIcedID 161.35.38.118:443
2020-04-30 11:00:380aa94a8d52d89f402fd16cc82ee1e0ddn/aIcedID 161.35.38.118:443
2020-04-30 11:00:28e32499258083d8ae3c97837e467812d1n/aIcedID 161.35.38.118:443
2020-04-30 11:00:28a7ca9ff17dda15fc1ceebced3e270fa0n/aIcedID 161.35.38.118:443
2020-04-30 11:00:28e32499258083d8ae3c97837e467812d1n/aIcedID 161.35.38.118:443
2020-04-30 11:00:28a7ca9ff17dda15fc1ceebced3e270fa0n/aIcedID 161.35.38.118:443
2020-04-30 10:59:16dbf813e6318936c18579466bbc5de5edVirustotal results 10 / 72 (13.89%) IcedID 161.35.38.118:443
2020-04-30 10:59:16dbf813e6318936c18579466bbc5de5edVirustotal results 10 / 72 (13.89%) IcedID 161.35.38.118:443
2020-04-30 10:58:451640ada7db33b3ada481bcae0115110en/aIcedID 161.35.38.118:443
2020-04-30 10:58:451640ada7db33b3ada481bcae0115110en/aIcedID 161.35.38.118:443
2020-04-30 10:58:273fe98aa7e8a32a41c67ec0f3e1863a26n/aIcedID 161.35.38.118:443
2020-04-30 10:58:273fe98aa7e8a32a41c67ec0f3e1863a26n/aIcedID 161.35.38.118:443
2020-04-30 10:26:09cd978c7ee2135a7c3aec617142a999acn/aIcedID 161.35.38.118:443
2020-04-30 10:26:09cd978c7ee2135a7c3aec617142a999acn/aIcedID 161.35.38.118:443
2020-04-30 09:33:576c22e3893c940d13d6188ac809575126n/aIcedID 161.35.38.118:443
2020-04-30 09:33:576c22e3893c940d13d6188ac809575126n/aIcedID 161.35.38.118:443
2020-04-30 09:21:30d37ff5418376f3f1cbeb7fb67dad6c38n/aIcedID 161.35.38.118:443
2020-04-30 09:21:30d37ff5418376f3f1cbeb7fb67dad6c38n/aIcedID 161.35.38.118:443
2020-04-30 08:34:510856f6993dec875ed1c8127d339c3deen/aIcedID 161.35.38.118:443
2020-04-30 08:34:510856f6993dec875ed1c8127d339c3deen/aIcedID 161.35.38.118:443
2020-04-30 08:34:09da7e2521e0cda69635c9db57ef9a53bcn/aIcedID 161.35.38.118:443
2020-04-30 08:34:09da7e2521e0cda69635c9db57ef9a53bcn/aIcedID 161.35.38.118:443
2020-04-29 17:20:30e34fa45f13fdae4f73c44b7d076c1cfdn/aIcedID 161.35.38.118:443
2020-04-29 17:20:30e34fa45f13fdae4f73c44b7d076c1cfdn/aIcedID 161.35.38.118:443

# of entries: 60 (max: 100)