SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint f8cfb4790cd5b27105eec56de9dc2e2b5f4dc846.
Database Entry
| SHA1 Fingerprint: | f8cfb4790cd5b27105eec56de9dc2e2b5f4dc846 |
|---|---|
| Certificate Common Name (CN): | localhost |
| Issuer Distinguished Name (DN): | localhost |
| TLS Version: | TLSv1 |
| First seen: | 2016-08-28 18:52:01 UTC |
| Last seen: | 2016-08-28 22:52:41 UTC |
| Status: | Blacklisted |
| Listing reason: | Gootkit C&C |
| Listing date: | 2016-08-30 08:11:42 |
| Malware samples: | 3 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2016-08-28 22:52:41 | 7038fbee57157fbbb31e4ffbe10c22bc |  39/57 (68.42%)
| Shylock | 24.181.57.181:80 |
| 2016-08-28 22:52:41 | 7038fbee57157fbbb31e4ffbe10c22bc | 39/57 (68.42%)
| Shylock | 24.181.57.181:80 |
| 2016-08-28 21:50:57 | 5db422a68ee5f492708bf5544ec6274e | 38/57 (66.67%)
| Gootkit | 24.181.57.181:80 |
| 2016-08-28 21:50:57 | 5db422a68ee5f492708bf5544ec6274e | 38/57 (66.67%)
| Gootkit | 24.181.57.181:80 |
| 2016-08-28 18:52:01 | aff2b0ac927ca19f21deef4e5685e946 | 33/58 (56.90%)
| Shylock | 24.181.57.181:80 |
| 2016-08-28 18:52:01 | aff2b0ac927ca19f21deef4e5685e946 | 33/58 (56.90%)
| Shylock | 24.181.57.181:80 |
# of entries: 6 (max: 100)