SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint efdbebf3f09c23873aa25c78cf5aac95e29ea7e6.

Database Entry


SHA1 Fingerprint:efdbebf3f09c23873aa25c78cf5aac95e29ea7e6
Certificate Common Name (CN):oolaurauss.sy
Issuer Distinguished Name (DN):oolaurauss.sy
TLS Version:TLSv1
First seen:2016-02-01 21:24:38 UTC
Last seen:2016-02-07 00:40:52 UTC
Status:Blacklisted
Listing reason:Dridex C&C
Listing date:2016-02-02 06:56:53
Malware samples:9
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2016-02-07 00:40:5209c24a46ff81b41588adcf818f9e1984Virustotal results 5/53 (9.43%) Dridex 185.24.92.229:4743
2016-02-06 18:06:2348eddfc221e29255bf6af1df5f911ffdVirustotal results 6/53 (11.32%) Dridex 185.24.92.229:4743
2016-02-06 17:10:09e56a365e12601609a1d6670a3d1ce565Virustotal results 15/52 (28.85%) Dridex 185.24.92.229:4743
2016-02-04 20:01:3354578ede727f341f6dcf8252307bf4dfVirustotal results 23/53 (43.40%) Dridex 185.24.92.229:4743
2016-02-04 08:06:08d56dab881d2b3f58f4ca76088f3b501cVirustotal results 4/54 (7.41%) Dridex 185.24.92.229:4743
2016-02-03 21:03:541f44d15a0a23c1cba11a864f750f4352Virustotal results 22/52 (42.31%) Dridex 185.24.92.229:4743
2016-02-03 05:15:58dd5e10d90e9bff2791003822bf20f755Virustotal results 5/53 (9.43%) Dridex 185.24.92.229:4743
2016-02-02 03:05:488ea14221e4b2ebc575ef8ed57b52e544Virustotal results 2/54 (3.70%) Dridex 185.24.92.229:4743
2016-02-01 21:24:3871c551e9777b651d8e56a30a3913153fVirustotal results 2/53 (3.77%) Dridex 185.24.92.229:4743

# of entries: 9 (max: 100)