SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint ecbcd841f33ec6a40a26f3ff77e0e18f8a7e4949.
Database Entry
| SHA1 Fingerprint: | ecbcd841f33ec6a40a26f3ff77e0e18f8a7e4949 |
|---|---|
| Certificate Common Name (CN): | codelux |
| Issuer Distinguished Name (DN): | codelux |
| TLS Version: | TLSv1' NOTBEFOR |
| First seen: | 2019-07-04 06:00:29 UTC |
| Last seen: | 2019-08-07 14:17:31 UTC |
| Status: | Blacklisted |
| Listing reason: | njrat C&C |
| Listing date: | 2019-07-04 06:38:45 |
| Malware samples: | 4 |
| Botnet C&Cs: | 3 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2019-08-07 14:17:31 | 2fadf9cca988f26e2f84c50809395848 |  34 / 72 (47.22%)
| 177.133.246.134:9830 | |
| 2019-08-07 14:17:31 | 2fadf9cca988f26e2f84c50809395848 | 34 / 72 (47.22%)
| 177.133.246.134:9830 | |
| 2019-07-24 07:06:25 | 6dc198f8d5f91af0a433cb9eb833f0be | 45/69 (65.22%)
| Downloader.Upatre | 177.133.239.37:6606 |
| 2019-07-24 07:06:25 | 6dc198f8d5f91af0a433cb9eb833f0be | 45/69 (65.22%)
| Downloader.Upatre | 177.133.239.37:6606 |
| 2019-07-04 14:14:06 | b87d782cc4086eb88550b4705e74dba6 | 49/68 (72.06%)
| njrat | 179.180.17.194:9830 |
| 2019-07-04 14:14:06 | b87d782cc4086eb88550b4705e74dba6 | 49/68 (72.06%)
| njrat | 179.180.17.194:9830 |
| 2019-07-04 06:00:29 | cf7139c8298d2eb579e0ee1d593621b8 | 23/59 (38.98%)
| njrat | 179.180.17.194:9830 |
| 2019-07-04 06:00:29 | cf7139c8298d2eb579e0ee1d593621b8 | 23/59 (38.98%)
| njrat | 179.180.17.194:9830 |
# of entries: 8 (max: 100)