SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint ef4d210c9777029a7292b6bd4477a99e6a02eb27.

Database Entry


SHA1 Fingerprint:ef4d210c9777029a7292b6bd4477a99e6a02eb27
Certificate Common Name (CN):procedures.com
Issuer Distinguished Name (DN):procedures.com
TLS Version:TLS 1.2
First seen:2019-10-03 23:57:05 UTC
Last seen:2019-10-21 19:37:24 UTC
Status:Blacklisted
Listing reason:IcedID C&C
Listing date:2019-10-04 06:52:50
Malware samples:6
Botnet C&Cs:5

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2019-10-21 19:37:24a93800b3282a2ea178c2aeede1ebf889n/aIcedID 81.25.71.28:443
2019-10-21 19:32:18e7801cdf619522f08c7e6f5eb6a271c7Virustotal results 8 / 69 (11.59%) IcedID 81.25.71.28:443
2019-10-18 12:15:4783b5eb867110403cc72819463a807b73n/aIcedID 185.159.82.18:443
2019-10-15 06:52:09d40ab1b49cd288ceb9e916ee64799ae1Virustotal results 40 / 69 (57.97%) IcedID 77.222.55.71:443
2019-10-09 20:51:397f2058884fbb65688df74cf8fa04d322n/aIcedID 5.101.88.49:443
2019-10-03 23:57:0576f8fbc36bf8b932d52702fec1a7f920Virustotal results 20 / 68 (29.41%) IcedID 46.21.253.86:443

# of entries: 6 (max: 100)