SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint ffe39ade1d93169a5f3d17ee9800df8fc54d05da.

Database Entry

SHA1 Fingerprint:	ffe39ade1d93169a5f3d17ee9800df8fc54d05da
Certificate Common Name (CN):	whaugirls.ru/emailAddress=admin@whaugirls.ru
Issuer Distinguished Name (DN):	whaugirls.ru/emailAddress=admin@whaugirls.ru
TLS Version:	SSLv3
First seen:	2014-10-09 18:14:32 UTC
Last seen:	2015-05-07 13:56:32 UTC
Status:	Blacklisted
Listing reason:	KINS C&C
Listing date:	2014-10-10 06:19:55
Malware samples:	21
Botnet C&Cs:	21

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2015-05-07 13:56:32	7eefb958f27d8cb7abaa8829202fba59	5/53 (9.43%)	ZeuS	91.234.24.116:443
2015-05-07 13:56:32	7eefb958f27d8cb7abaa8829202fba59	5/53 (9.43%)	ZeuS	91.234.24.116:443
2015-04-28 21:30:08	f2d93d1f0ca5a507ffcca32c8252e9f5	35/55 (63.64%)	ZeuS	134.249.29.111:443
2015-04-28 21:30:08	f2d93d1f0ca5a507ffcca32c8252e9f5	35/55 (63.64%)	ZeuS	134.249.29.111:443
2015-03-17 00:36:46	1bf3f8e8acfe3e60d2ee61a89aa6ec74	16/57 (28.07%)	ZeuS	93.79.146.178:443
2015-03-17 00:36:46	1bf3f8e8acfe3e60d2ee61a89aa6ec74	16/57 (28.07%)	ZeuS	93.79.146.178:443
2015-03-14 09:51:56	5d5fdc8c11276fa1ab4b20e8600eb0f5	23/57 (40.35%)	ZeuS	37.25.102.37:443
2015-03-14 09:51:56	5d5fdc8c11276fa1ab4b20e8600eb0f5	23/57 (40.35%)	ZeuS	37.25.102.37:443
2015-03-13 14:02:44	08dbf5405d634b178aa219e74b1e9d55	34/57 (59.65%)	ZeuS	93.171.73.162:443
2015-03-13 14:02:44	08dbf5405d634b178aa219e74b1e9d55	34/57 (59.65%)	ZeuS	93.171.73.162:443
2015-03-10 20:27:45	3e20ae4c2092ac08657274508dceaf82	4/57 (7.02%)	ZeuS	130.204.157.17:443
2015-03-10 20:27:45	3e20ae4c2092ac08657274508dceaf82	4/57 (7.02%)	ZeuS	130.204.157.17:443
2015-03-09 18:57:52	d4388a52e8da1516e2da9050729807b5	30/57 (52.63%)	ZeuS	67.183.123.151:443
2015-03-09 18:57:52	d4388a52e8da1516e2da9050729807b5	30/57 (52.63%)	ZeuS	67.183.123.151:443
2015-03-09 05:51:31	b1887fed0e7c457a423adda58058ed1c	34/57 (59.65%)	ZeuS	46.250.22.190:443
2015-03-09 05:51:31	b1887fed0e7c457a423adda58058ed1c	34/57 (59.65%)	ZeuS	46.250.22.190:443
2015-03-05 18:34:36	3aa9af54227fb12ba94ec44eb20ab329	5/57 (8.77%)	ZeuS	31.128.74.100:443
2015-03-05 18:34:36	3aa9af54227fb12ba94ec44eb20ab329	5/57 (8.77%)	ZeuS	31.128.74.100:443
2015-02-20 23:42:11	b69010d768c34b2727b6b73d47112b3e	14/57 (24.56%)	ZeuS	91.245.76.123:443
2015-02-20 23:42:11	b69010d768c34b2727b6b73d47112b3e	14/57 (24.56%)	ZeuS	91.245.76.123:443
2015-02-19 11:15:02	00ace509710e87df326fea26ff55b799	42/57 (73.68%)	ZeuS	91.207.86.210:443
2015-02-19 11:15:02	00ace509710e87df326fea26ff55b799	42/57 (73.68%)	ZeuS	91.207.86.210:443
2015-01-28 08:19:07	a6042d520edc3e02f696b46201e02d5f	30/54 (55.56%)	ZeuS	85.198.189.250:443
2015-01-28 08:19:07	a6042d520edc3e02f696b46201e02d5f	30/54 (55.56%)	ZeuS	85.198.189.250:443
2015-01-19 16:46:29	2e7473d64e1d47e361f800b0ceb0b07b	33/56 (58.93%)	ZeuS	109.87.58.69:443
2015-01-19 16:46:29	2e7473d64e1d47e361f800b0ceb0b07b	33/56 (58.93%)	ZeuS	109.87.58.69:443
2015-01-19 08:33:08	6caa81b453840813a68c3b2c058ea023	31/56 (55.36%)	ZeuS	94.232.77.153:443
2015-01-19 08:33:08	6caa81b453840813a68c3b2c058ea023	31/56 (55.36%)	ZeuS	94.232.77.153:443
2015-01-17 17:32:40	0f8941668240a57015b977e08c71bf6a	21/57 (36.84%)	ZeuS	37.25.112.202:443
2015-01-17 17:32:40	0f8941668240a57015b977e08c71bf6a	21/57 (36.84%)	ZeuS	37.25.112.202:443
2015-01-17 09:59:52	0cdb513f5714088524868456d247d1bb	31/57 (54.39%)	ZeuS	46.173.94.219:443
2015-01-17 09:59:52	0cdb513f5714088524868456d247d1bb	31/57 (54.39%)	ZeuS	46.173.94.219:443
2015-01-14 07:29:11	269f67d4a07fb53ffc489fe3a0ea9599	33/56 (58.93%)		95.105.84.53:443
2015-01-14 07:29:11	269f67d4a07fb53ffc489fe3a0ea9599	33/56 (58.93%)		95.105.84.53:443
2015-01-13 03:09:28	2222ceac2019f19c7d6d7ca7fd8f3aaf	34/57 (59.65%)	ZeuS	89.252.19.197:443
2015-01-13 03:09:28	2222ceac2019f19c7d6d7ca7fd8f3aaf	34/57 (59.65%)	ZeuS	89.252.19.197:443
2014-12-24 12:52:58	e9ef4bac6b1fb0a01c29b049f0b983af	24/55 (43.64%)	ZeuS	78.27.159.112:443
2014-12-24 12:52:58	e9ef4bac6b1fb0a01c29b049f0b983af	24/55 (43.64%)	ZeuS	78.27.159.112:443
2014-11-15 01:26:34	c9345e03f2a8d835a4ed81a4451046fd	24/54 (44.44%)	ZeuS	46.109.187.46:443
2014-11-15 01:26:34	c9345e03f2a8d835a4ed81a4451046fd	24/54 (44.44%)	ZeuS	46.109.187.46:443
2014-10-09 18:14:32	d2f345c2841cbe00cc9b5fa93d929741	12/55 (21.82%)	ZeuS	176.99.121.195:443
2014-10-09 18:14:32	d2f345c2841cbe00cc9b5fa93d929741	12/55 (21.82%)	ZeuS	176.99.121.195:443

# of entries: 42 (max: 100)