SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint ee14e4ab0b243b397315e094935f5b74a67a1bc7.
Database Entry
| SHA1 Fingerprint: | ee14e4ab0b243b397315e094935f5b74a67a1bc7 |
|---|---|
| Certificate Common Name (CN): | C=AU, ST=Some-State, O=Internet Widgits Pty Ltd |
| Issuer Distinguished Name (DN): | C=AU, ST=Some-State, O=Internet Widgits Pty Ltd |
| TLS Version: | SSLv3 |
| First seen: | 2015-07-15 12:09:21 UTC |
| Last seen: | 2017-02-24 06:59:56 UTC |
| Status: | Blacklisted |
| Listing reason: | Malware C&C |
| Listing date: | 2015-07-15 15:01:56 |
| Malware samples: | 3 |
| Botnet C&Cs: | 3 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2017-02-24 06:59:56 | 88db79ab33a2d72f3274b9b9868d646a | n/a | Kovter | 166.149.168.187:443 |
| 2017-02-24 06:59:56 | 88db79ab33a2d72f3274b9b9868d646a | n/a | Kovter | 166.149.168.187:443 |
| 2015-07-16 13:50:41 | 728e5700a401498d91fb83159beec834 |  12/56 (21.43%)
| 210.209.89.162:8080 | |
| 2015-07-16 13:50:41 | 728e5700a401498d91fb83159beec834 | 12/56 (21.43%)
| 210.209.89.162:8080 | |
| 2015-07-15 12:09:21 | b66eb416ff99e040bc50ee7e10b3a8d0 | 8/56 (14.29%)
| 192.199.254.173:8080 | |
| 2015-07-15 12:09:21 | b66eb416ff99e040bc50ee7e10b3a8d0 | 8/56 (14.29%)
| 192.199.254.173:8080 |
# of entries: 6 (max: 100)