SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint f8028352c61000ec0dfa45d9ad6985ff3d6a8538.
Database Entry
| SHA1 Fingerprint: | f8028352c61000ec0dfa45d9ad6985ff3d6a8538 |
|---|---|
| Certificate Common Name (CN): | kvah brco |
| Issuer Distinguished Name (DN): | kvah brco |
| TLS Version: | TLS 1.2 |
| First seen: | 2025-08-12 02:26:13 UTC |
| Last seen: | 2025-08-22 11:12:10 UTC |
| Status: | Blacklisted |
| Listing reason: | QuasarRAT C&C |
| Listing date: | 2025-08-12 07:47:00 |
| Malware samples: | 5 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2025-08-22 11:12:10 | f04700105cd5388e82605a5b6c7fc590 | n/a | 5.44.41.14:8848 | |
| 2025-08-22 06:44:30 | c4c984822befb4b122b47d33e0b7ff86 | n/a | 5.44.41.14:8848 | |
| 2025-08-21 13:34:02 | 26843b587cf0790ee9054b6242b77b17 | n/a | 5.44.41.14:8848 | |
| 2025-08-17 16:37:19 | b4e49467ee294ab97c54f4933439389f | n/a | 5.44.41.14:8848 | |
| 2025-08-12 02:26:13 | d5a56772552ede492b7cdbe436ead868 | n/a | 5.44.41.14:8848 |
# of entries: 5 (max: 100)