SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint ef8a914461bdad0611e28f12d5c124259f7b467a.
Database Entry
| SHA1 Fingerprint: | ef8a914461bdad0611e28f12d5c124259f7b467a |
|---|---|
| Certificate Common Name (CN): | api.newshimtwo.top |
| Issuer Distinguished Name (DN): | E6 |
| TLS Version: | TLS 1.2 |
| First seen: | 2025-07-27 22:51:06 UTC |
| Last seen: | 2025-07-29 12:48:38 UTC |
| Status: | Blacklisted |
| Listing reason: | HijackLoader C&C |
| Listing date: | 2025-07-29 14:17:36 |
| Malware samples: | 2 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2025-07-29 12:48:38 | 5d02506d9fc173a30043d442c6ef0ea4 | n/a | 91.84.99.97:443 | |
| 2025-07-27 22:51:06 | 32c783e7a5a54cb40750abe7b0347a1c | n/a | 91.84.99.97:443 |
# of entries: 2 (max: 100)