SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint f52a9d38d941fc4f75798e3779f9ace1cf888a16.
Database Entry
| SHA1 Fingerprint: | f52a9d38d941fc4f75798e3779f9ace1cf888a16 |
|---|---|
| Certificate Common Name (CN): | kettlesubstance.xyz |
| Issuer Distinguished Name (DN): | WE1 |
| TLS Version: | TLS 1.2 |
| First seen: | 2025-02-13 12:17:46 UTC |
| Last seen: | 2025-02-13 20:43:48 UTC |
| Status: | Blacklisted |
| Listing reason: | OffLoader C&C |
| Listing date: | 2025-02-14 06:00:07 |
| Malware samples: | 4 |
| Botnet C&Cs: | 2 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2025-02-13 20:43:48 | 49cf677ff15a2ae5c854c2dab5dbfb4d | n/a | 172.67.219.122:443 | |
| 2025-02-13 19:11:53 | 3ebcf2cd3910f8557e44c832bdc7d9b0 | n/a | 172.67.219.122:443 | |
| 2025-02-13 13:52:10 | 2c3acdcdf8649598ebe0676980b1a583 | n/a | 104.21.53.228:443 | |
| 2025-02-13 12:17:46 | 1ee5bb1ba5a8ff51033a34004a85b5cb | n/a | 172.67.219.122:443 |
# of entries: 4 (max: 100)