SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint fb08b629defd129a4699774ec60b5005809eabad.
Database Entry
| SHA1 Fingerprint: | fb08b629defd129a4699774ec60b5005809eabad |
|---|---|
| Certificate Common Name (CN): | buhzgalter.com/emailAddress=admin@buhzgalter.com |
| Issuer Distinguished Name (DN): | buhzgalter.com/emailAddress=admin@buhzgalter.com |
| TLS Version: | TLSv1 |
| First seen: | 2016-01-25 08:07:30 UTC |
| Last seen: | 2016-01-26 02:07:32 UTC |
| Status: | Blacklisted |
| Listing reason: | Qadars C&C |
| Listing date: | 2016-01-25 16:57:53 |
| Malware samples: | 2 |
| Botnet C&Cs: | 2 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2016-01-26 02:07:32 | 534eada82992d9c0d5c9d224841f6dd2 |  4/54 (7.41%)
| Qadars | 46.105.88.116:443 |
| 2016-01-26 02:07:32 | 534eada82992d9c0d5c9d224841f6dd2 | 4/54 (7.41%)
| Qadars | 46.105.88.116:443 |
| 2016-01-25 08:07:30 | b39775be63bd9af7daf72e6c0a636969 | 4/54 (7.41%)
| Qadars | 192.210.137.123:443 |
| 2016-01-25 08:07:30 | b39775be63bd9af7daf72e6c0a636969 | 4/54 (7.41%)
| Qadars | 192.210.137.123:443 |
# of entries: 4 (max: 100)