SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint fe19de108980393ab91f2824ce96b8cab0f84163.

Database Entry


SHA1 Fingerprint:fe19de108980393ab91f2824ce96b8cab0f84163
Certificate Common Name (CN):localhost/emailAddress=webmaster@localhost
Issuer Distinguished Name (DN):localhost/emailAddress=webmaster@localhost
TLS Version:SSLv3
First seen:2014-11-15 18:34:44 UTC
Last seen:2015-01-23 08:14:28 UTC
Status:Blacklisted
Listing reason:KINS C&C
Listing date:2014-11-16 09:49:13
Malware samples:7
Botnet C&Cs:3

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2015-01-23 08:14:283fe5f90c66e73393a42280b7b7e81868Virustotal results 33/57 (57.89%) ZeuS 37.228.92.188:443
2015-01-22 08:07:0147e3979a138ba5d07db70311309bb560Virustotal results 29/57 (50.88%) ZeuS 37.228.92.188:443
2015-01-18 13:56:233da53e8a7fe46828c678a81532e03c54Virustotal results 17/56 (30.36%) 37.228.92.188:443
2014-12-25 17:59:59960ecd051c7fab9c5e5590e8fd5fe6f2Virustotal results 5/56 (8.93%) ZeuS 93.170.130.78:443
2014-12-02 08:24:4583d7baad32eb2fd85d10676df1a632feVirustotal results 14/56 (25.00%) ZeuS 93.170.130.78:443
2014-11-16 03:42:4037f927437de627777c5b571fc46fb218Virustotal results 20/55 (36.36%) ZeuS 62.76.185.72:443
2014-11-15 18:34:44b1d1eb43ba9fdc7c791583243feee4b7Virustotal results 4/55 (7.27%) ZeuS 62.76.185.72:443

# of entries: 7 (max: 100)