SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint ecbcd841f33ec6a40a26f3ff77e0e18f8a7e4949.

Database Entry

SHA1 Fingerprint:ecbcd841f33ec6a40a26f3ff77e0e18f8a7e4949
Certificate Common Name (CN):codelux
Issuer Distinguished Name (DN):codelux
First seen:2019-07-04 06:00:29 UTC
Last seen:2019-08-07 14:17:31 UTC
Listing reason:njrat C&C
Listing date:2019-07-04 06:38:45
Malware samples:4
Botnet C&Cs:3

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2019-08-07 14:17:312fadf9cca988f26e2f84c50809395848Virustotal results 34 / 72 (47.22%)
2019-07-24 07:06:256dc198f8d5f91af0a433cb9eb833f0ben/a177.133.239.37:6606
2019-07-04 14:14:06b87d782cc4086eb88550b4705e74dba6n/anjrat179.180.17.194:9830
2019-07-04 06:00:29cf7139c8298d2eb579e0ee1d593621b8n/anjrat179.180.17.194:9830

# of entries: 4 (max: 100)