SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint fc3fb557672e1794e4d79feb7dd7cce5b522ce36.
Database Entry
| SHA1 Fingerprint: | fc3fb557672e1794e4d79feb7dd7cce5b522ce36 |
|---|---|
| Certificate Common Name (CN): | ervexprngartrh.br |
| Issuer Distinguished Name (DN): | ervexprngartrh.br |
| TLS Version: | SSLv3 |
| First seen: | 2016-01-29 07:23:44 UTC |
| Last seen: | 2016-02-01 06:25:00 UTC |
| Status: | Blacklisted |
| Listing reason: | Dridex C&C |
| Listing date: | 2016-01-29 07:25:49 |
| Malware samples: | 3 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2016-02-01 06:25:00 | 3b72a55fa82668f635db2b12feb2e30e |  37/54 (68.52%)
| Dridex | 110.77.142.156:8143 |
| 2016-02-01 06:25:00 | 3b72a55fa82668f635db2b12feb2e30e | 37/54 (68.52%)
| Dridex | 110.77.142.156:8143 |
| 2016-01-29 14:48:45 | 875b5f2cfbd07f918c954b2ed4b8d0df | 38/55 (69.09%)
| Dridex | 110.77.142.156:8143 |
| 2016-01-29 14:48:45 | 875b5f2cfbd07f918c954b2ed4b8d0df | 38/55 (69.09%)
| Dridex | 110.77.142.156:8143 |
| 2016-01-29 07:23:44 | 3a301c5250124b14291443e3b01c1e01 | 23/55 (41.82%)
| Dridex | 110.77.142.156:8143 |
| 2016-01-29 07:23:44 | 3a301c5250124b14291443e3b01c1e01 | 23/55 (41.82%)
| Dridex | 110.77.142.156:8143 |
# of entries: 6 (max: 100)