SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint ffc3bf9b72df3df10e2261f570ed9974515e1e2b.
Database Entry
| SHA1 Fingerprint: | ffc3bf9b72df3df10e2261f570ed9974515e1e2b |
|---|---|
| Certificate Common Name (CN): | server29 |
| Issuer Distinguished Name (DN): | server29 |
| TLS Version: | TLS 1.2 |
| First seen: | 2016-06-27 20:20:13 UTC |
| Last seen: | 2016-07-03 13:52:49 UTC |
| Status: | Blacklisted |
| Listing reason: | RockLoader C&C |
| Listing date: | 2016-06-28 07:31:17 |
| Malware samples: | 2 |
| Botnet C&Cs: | 2 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2016-07-03 13:52:49 | d5543d554fd91aa5d2139578ab6fbb36 |  17/50 (34.00%)
| 194.31.59.40:443 | |
| 2016-07-03 13:52:49 | d5543d554fd91aa5d2139578ab6fbb36 | 17/50 (34.00%)
| 194.31.59.40:443 | |
| 2016-06-27 20:20:13 | 846171e2629b712429a903811d19c12b | 45/54 (83.33%)
| RockLoader | 188.225.39.2:443 |
| 2016-06-27 20:20:13 | 846171e2629b712429a903811d19c12b | 45/54 (83.33%)
| RockLoader | 188.225.39.2:443 |
# of entries: 4 (max: 100)