SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint f5cf905b05cde4a48c0f525f123c8bfbf08cc366.

Database Entry

SHA1 Fingerprint:f5cf905b05cde4a48c0f525f123c8bfbf08cc366
Certificate Common Name (CN):the-ebooks-store.com/emailAddress=contact@infws.com
Issuer Distinguished Name (DN):International Security Depart Ca
TLS Version:TLSv1
First seen:2015-10-27 17:05:49 UTC
Last seen:2015-12-08 19:24:00 UTC
Status:Blacklisted
Listing reason:Malware C&C
Listing date:2015-11-26 11:56:41
Malware samples:10
Botnet C&Cs:1

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2015-12-08 19:24:0083b42d92cc833715f8a44c112c31653aVirustotal results 29/55 (52.73%) Shifu69.64.59.144:443
2015-12-08 19:24:0083b42d92cc833715f8a44c112c31653aVirustotal results 29/55 (52.73%) Shifu69.64.59.144:443
2015-11-26 09:18:18f51068b41c7f028ea69cea4938b00a83Virustotal results 29/56 (51.79%) Shifu69.64.59.144:443
2015-11-26 09:18:18f51068b41c7f028ea69cea4938b00a83Virustotal results 29/56 (51.79%) Shifu69.64.59.144:443
2015-11-23 11:01:190f3dccb059fbccb2450f17bd7bee5e18Virustotal results 30/56 (53.57%) Downloader.Upatre69.64.59.144:443
2015-11-23 11:01:190f3dccb059fbccb2450f17bd7bee5e18Virustotal results 30/56 (53.57%) Downloader.Upatre69.64.59.144:443
2015-11-10 03:05:111fdc2eb86f026331015bcf7f30a98d88Virustotal results 23/56 (41.07%) Shifu69.64.59.144:443
2015-11-10 03:05:111fdc2eb86f026331015bcf7f30a98d88Virustotal results 23/56 (41.07%) Shifu69.64.59.144:443
2015-11-09 06:43:10fb384b4d6d5489476ccfe3c20907d7dfVirustotal results 23/56 (41.07%) Shifu69.64.59.144:443
2015-11-09 06:43:10fb384b4d6d5489476ccfe3c20907d7dfVirustotal results 23/56 (41.07%) Shifu69.64.59.144:443
2015-11-08 14:03:39dabfeb4ac18b20d60f1bd4dc2605f4feVirustotal results 26/56 (46.43%) Shifu69.64.59.144:443
2015-11-08 14:03:39dabfeb4ac18b20d60f1bd4dc2605f4feVirustotal results 26/56 (46.43%) Shifu69.64.59.144:443
2015-11-08 04:53:382a1195fa038d6825d81e781b1c063e41Virustotal results 20/56 (35.71%) Shifu69.64.59.144:443
2015-11-08 04:53:382a1195fa038d6825d81e781b1c063e41Virustotal results 20/56 (35.71%) Shifu69.64.59.144:443
2015-11-07 18:46:27618754d052bd78d82f7b034d450bb23bVirustotal results 23/56 (41.07%) Shifu69.64.59.144:443
2015-11-07 18:46:27618754d052bd78d82f7b034d450bb23bVirustotal results 23/56 (41.07%) Shifu69.64.59.144:443
2015-11-05 12:42:2074a1fb52fafb7849138be984765a657dVirustotal results 25/56 (44.64%) Shifu69.64.59.144:443
2015-11-05 12:42:2074a1fb52fafb7849138be984765a657dVirustotal results 25/56 (44.64%) Shifu69.64.59.144:443
2015-10-27 17:05:497d7ef24f40186cdc4014cba44581eff7Virustotal results 19/55 (34.55%) Shifu69.64.59.144:443
2015-10-27 17:05:497d7ef24f40186cdc4014cba44581eff7Virustotal results 19/55 (34.55%) Shifu69.64.59.144:443

# of entries: 20 (max: 100)