SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint ef4d210c9777029a7292b6bd4477a99e6a02eb27.

Database Entry

SHA1 Fingerprint:	ef4d210c9777029a7292b6bd4477a99e6a02eb27
Certificate Common Name (CN):	procedures.com
Issuer Distinguished Name (DN):	procedures.com
TLS Version:	TLS 1.2
First seen:	2019-10-03 23:57:05 UTC
Last seen:	2019-10-21 19:37:24 UTC
Status:	Blacklisted
Listing reason:	IcedID C&C
Listing date:	2019-10-04 06:52:50
Malware samples:	6
Botnet C&Cs:	5

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2019-10-21 19:37:24	a93800b3282a2ea178c2aeede1ebf889	38/70 (54.29%)	IcedID	81.25.71.28:443
2019-10-21 19:37:24	a93800b3282a2ea178c2aeede1ebf889	38/70 (54.29%)	IcedID	81.25.71.28:443
2019-10-21 19:32:18	e7801cdf619522f08c7e6f5eb6a271c7	8 / 69 (11.59%)	IcedID	81.25.71.28:443
2019-10-21 19:32:18	e7801cdf619522f08c7e6f5eb6a271c7	8 / 69 (11.59%)	IcedID	81.25.71.28:443
2019-10-18 12:15:47	83b5eb867110403cc72819463a807b73	46/70 (65.71%)	IcedID	185.159.82.18:443
2019-10-18 12:15:47	83b5eb867110403cc72819463a807b73	46/70 (65.71%)	IcedID	185.159.82.18:443
2019-10-15 06:52:09	d40ab1b49cd288ceb9e916ee64799ae1	40 / 69 (57.97%)	IcedID	77.222.55.71:443
2019-10-15 06:52:09	d40ab1b49cd288ceb9e916ee64799ae1	40 / 69 (57.97%)	IcedID	77.222.55.71:443
2019-10-09 20:51:39	7f2058884fbb65688df74cf8fa04d322	n/a	IcedID	5.101.88.49:443
2019-10-09 20:51:39	7f2058884fbb65688df74cf8fa04d322	n/a	IcedID	5.101.88.49:443
2019-10-03 23:57:05	76f8fbc36bf8b932d52702fec1a7f920	20 / 68 (29.41%)	IcedID	46.21.253.86:443
2019-10-03 23:57:05	76f8fbc36bf8b932d52702fec1a7f920	20 / 68 (29.41%)	IcedID	46.21.253.86:443

# of entries: 12 (max: 100)