SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint f93cc7c5582ba57a77a8d429962898f2d08d82b7.

Database Entry

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2019-10-01 17:59:14	04372810ca4c7dc25cdbfa1292e2d6ae	n/a	IcedID	185.253.218.26:443
2019-10-01 17:59:14	04372810ca4c7dc25cdbfa1292e2d6ae	n/a	IcedID	185.253.218.26:443
2019-09-30 20:48:02	1fd8e38f4772545349bec4586f42037f	13 / 70 (18.57%)	IcedID	195.19.192.51:443
2019-09-30 20:48:02	1fd8e38f4772545349bec4586f42037f	13 / 70 (18.57%)	IcedID	195.19.192.51:443
2019-09-25 08:27:48	a6955f14b72221adb34c3ee3d25ed285	n/a	IcedID	31.41.44.65:443
2019-09-25 08:27:48	a6955f14b72221adb34c3ee3d25ed285	n/a	IcedID	31.41.44.65:443
2019-09-24 20:34:06	ff5d89daf691cfb9934e1d06721959af	22 / 70 (31.43%)	IcedID	31.41.44.65:443
2019-09-24 20:34:06	ff5d89daf691cfb9934e1d06721959af	22 / 70 (31.43%)	IcedID	31.41.44.65:443
2019-09-22 12:33:08	71feed7758a2a214220cb8adc7041e56	5 / 71 (7.04%)	IcedID	51.83.78.85:443
2019-09-22 12:33:08	71feed7758a2a214220cb8adc7041e56	5 / 71 (7.04%)	IcedID	51.83.78.85:443
2019-09-22 12:26:36	976b1f404ffd1033c3434da829ee6d2d	19 / 69 (27.54%)	TrickBot	51.83.78.85:443
2019-09-22 12:26:36	976b1f404ffd1033c3434da829ee6d2d	19 / 69 (27.54%)	TrickBot	51.83.78.85:443
2019-09-22 12:26:36	976b1f404ffd1033c3434da829ee6d2d	19 / 69 (27.54%)	TrickBot	51.83.78.85:443
2019-09-22 12:26:36	976b1f404ffd1033c3434da829ee6d2d	19 / 69 (27.54%)	TrickBot	51.83.78.85:443

# of entries: 14 (max: 100)