SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint ebb1d5b5cac9c0c1c256a8e96c4b387dfd1083b1.
Database Entry
| SHA1 Fingerprint: | ebb1d5b5cac9c0c1c256a8e96c4b387dfd1083b1 |
|---|---|
| Certificate Common Name (CN): | libertygiove.com |
| Issuer Distinguished Name (DN): | Let's Encrypt Authority X3 |
| TLS Version: | TLS 1.2 |
| First seen: | 2020-07-16 01:16:39 UTC |
| Last seen: | 2020-07-23 12:42:09 UTC |
| Status: | Blacklisted |
| Listing reason: | DiamondFox C&C |
| Listing date: | 2020-07-16 06:37:12 |
| Malware samples: | 2 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2020-07-23 12:42:09 | 838124a47cae47dae28f95301ca83f05 | n/a | RemcosRAT | 91.234.99.15:443 |
| 2020-07-23 12:42:09 | 838124a47cae47dae28f95301ca83f05 | n/a | RemcosRAT | 91.234.99.15:443 |
| 2020-07-16 01:16:39 | 72bb8e802c14c18dc8822db3b15d6e38 | n/a | DiamondFox | 91.234.99.15:443 |
| 2020-07-16 01:16:39 | 72bb8e802c14c18dc8822db3b15d6e38 | n/a | DiamondFox | 91.234.99.15:443 |
# of entries: 4 (max: 100)