SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 01b8a3899bae90fb4c4e0596d548003407d65b53.
Database Entry
| SHA1 Fingerprint: | 01b8a3899bae90fb4c4e0596d548003407d65b53 |
|---|---|
| Certificate Common Name (CN): | * |
| Issuer Distinguished Name (DN): | * |
| TLS Version: | TLS 1.2 |
| First seen: | 2018-11-07 12:17:20 UTC |
| Last seen: | 2018-11-08 18:55:43 UTC |
| Status: | Blacklisted |
| Listing reason: | Gozi C&C |
| Listing date: | 2018-11-08 09:29:01 |
| Malware samples: | 91 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2018-11-08 18:55:43 | dc4d6b9600e6380854fbde8d97dce50a | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 18:55:43 | dc4d6b9600e6380854fbde8d97dce50a | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 14:58:13 | 56aa12f43fdf600a87f8860528f4cc04 |  6/67 (8.96%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 14:58:13 | 56aa12f43fdf600a87f8860528f4cc04 | 6/67 (8.96%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 14:49:11 | 75e8d795ef00bcf79ea824b039d378c1 | 21/67 (31.34%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 14:49:11 | 75e8d795ef00bcf79ea824b039d378c1 | 21/67 (31.34%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 14:40:31 | 3e58142b28ccd527b28dad4ee45f4aed | 21/68 (30.88%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 14:40:31 | 3e58142b28ccd527b28dad4ee45f4aed | 21/68 (30.88%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 14:34:58 | 41848bd09fe373bfe14ae01a87e95abd | 28/68 (41.18%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 14:34:58 | 41848bd09fe373bfe14ae01a87e95abd | 28/68 (41.18%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 14:17:35 | 991a9dc9f9d1ef6ac961be4ac59e75bd | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 14:17:35 | 991a9dc9f9d1ef6ac961be4ac59e75bd | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 14:12:26 | 1f6c2fcb5a99bccfff1af75490c51e80 | 48/69 (69.57%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 14:12:26 | 1f6c2fcb5a99bccfff1af75490c51e80 | 48/69 (69.57%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 14:11:01 | afc72bed4c848f832fda1d362ff31c6a | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 14:11:01 | afc72bed4c848f832fda1d362ff31c6a | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 12:26:26 | 59c86a500627181e05fe4b91d2751ae8 | 15/58 (25.86%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 12:26:26 | 59c86a500627181e05fe4b91d2751ae8 | 15/58 (25.86%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 11:26:33 | 0d5f7c9c7bca964e2a906bfd9b7253a2 | 46/70 (65.71%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 11:26:33 | 0d5f7c9c7bca964e2a906bfd9b7253a2 | 46/70 (65.71%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 11:24:34 | 79ab1b39421ee7bf2cfe2a73115ce994 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 11:24:34 | 79ab1b39421ee7bf2cfe2a73115ce994 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 11:19:03 | 55f6733ecced1915d017fac3ffa13e4f | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 11:19:03 | 55f6733ecced1915d017fac3ffa13e4f | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 11:12:05 | 5d413f700be412402e6f47cd8ac8b981 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 11:12:05 | 5d413f700be412402e6f47cd8ac8b981 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 11:10:59 | e0a1c3f047626dd9c20d1eaa63492153 | 37/69 (53.62%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 11:10:59 | e0a1c3f047626dd9c20d1eaa63492153 | 37/69 (53.62%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 10:52:39 | 90d21686788121962dd3dd928de64857 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 10:52:39 | 90d21686788121962dd3dd928de64857 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 10:52:15 | a3965b8b29431426d4e7418804b7f008 | 41/67 (61.19%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 10:52:15 | a3965b8b29431426d4e7418804b7f008 | 41/67 (61.19%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 10:47:46 | af79ad4c1de695edccf1806d60b6760e | 42/69 (60.87%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 10:47:46 | af79ad4c1de695edccf1806d60b6760e | 42/69 (60.87%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 10:42:21 | c507983bd4721c143164136df1329d9b | 44/68 (64.71%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 10:42:21 | c507983bd4721c143164136df1329d9b | 44/68 (64.71%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 10:32:38 | beb2462cdc2d6f25fc98ee736bc84808 | 41/65 (63.08%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 10:32:38 | beb2462cdc2d6f25fc98ee736bc84808 | 41/65 (63.08%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 10:31:51 | 436143d630508abaa3b3d09f71b04839 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 10:31:51 | 436143d630508abaa3b3d09f71b04839 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 10:30:53 | 41249060780841c57aace9efa96799f6 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 10:30:53 | 41249060780841c57aace9efa96799f6 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 10:30:34 | 277bb58ae0d57389ff1e25e8cda0b997 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 10:30:34 | 277bb58ae0d57389ff1e25e8cda0b997 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 10:29:03 | 39fab578b3b780f9011e3c4db4d5175e | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 10:29:03 | 39fab578b3b780f9011e3c4db4d5175e | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 10:28:15 | 05996ca00fea1fc8eb217e1a521d644e | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 10:28:15 | 05996ca00fea1fc8eb217e1a521d644e | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 10:28:06 | 755a67d30530ee50ba3df8f03ddea081 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 10:28:06 | 755a67d30530ee50ba3df8f03ddea081 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 10:27:10 | 5bc1c7b292cc71cce68e8e7d172c54b1 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 10:27:10 | 5bc1c7b292cc71cce68e8e7d172c54b1 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 10:18:28 | 2e39ca28733e536ea132a15f115ec777 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 10:18:28 | 2e39ca28733e536ea132a15f115ec777 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 10:18:06 | abd4578ccf67135d6dfab62a8ba118c5 | 36/66 (54.55%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 10:18:06 | abd4578ccf67135d6dfab62a8ba118c5 | 36/66 (54.55%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 10:15:59 | 27ffdcf8bd155e170e2d14c27cd5c61c | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 10:15:59 | 27ffdcf8bd155e170e2d14c27cd5c61c | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 10:10:28 | 79fc3efd9b9618a955b76163c4143391 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 10:10:28 | 79fc3efd9b9618a955b76163c4143391 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 09:58:47 | 051722b518faef79c24993798cb627d4 | 14/57 (24.56%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 09:58:47 | 051722b518faef79c24993798cb627d4 | 14/57 (24.56%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 09:43:46 | 9aeb397849b90dda72da672ba54f6204 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 09:43:46 | 9aeb397849b90dda72da672ba54f6204 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 09:34:23 | 6f4545283a02a4c2bb34e21b994e11b1 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 09:34:23 | 6f4545283a02a4c2bb34e21b994e11b1 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 09:07:52 | 9ef6b30c485e4e5b85b568ff75a87d2c | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 09:07:52 | 9ef6b30c485e4e5b85b568ff75a87d2c | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 09:01:14 | 3f0df97f37ec7cf1c9c39883b60f7e0d | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 09:01:14 | 3f0df97f37ec7cf1c9c39883b60f7e0d | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 08:48:16 | 8b8d4f65ee5e794eb45c4b0127860bd0 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 08:48:16 | 8b8d4f65ee5e794eb45c4b0127860bd0 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 08:34:34 | ff0dabd528af70cff0f826fbf5208e71 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 08:34:34 | ff0dabd528af70cff0f826fbf5208e71 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 08:32:26 | e59f24af18f896e9b4c43f0a49b81b3a | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 08:32:26 | e59f24af18f896e9b4c43f0a49b81b3a | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 08:18:40 | ad9053b572e5b73d0c69978c9bf1ebe5 | 43/68 (63.24%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 08:18:40 | ad9053b572e5b73d0c69978c9bf1ebe5 | 43/68 (63.24%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 06:55:51 | 779cbc38fa5b43ac59528f5dfca920cf | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 06:55:51 | 779cbc38fa5b43ac59528f5dfca920cf | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 06:52:59 | 2a9c8ab64bbf5ea5258482f342ce3f06 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 06:52:59 | 2a9c8ab64bbf5ea5258482f342ce3f06 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 06:52:00 | 6ba97ab90bac7b9bfbb3e6d5d6d5f06f | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 06:52:00 | 6ba97ab90bac7b9bfbb3e6d5d6d5f06f | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 06:50:33 | 4cb52b3cd9e346a8596013034ac67594 | 16/58 (27.59%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 06:50:33 | 4cb52b3cd9e346a8596013034ac67594 | 16/58 (27.59%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 06:50:01 | d8efa0b1c3d1b9b4b55641157c15d95a | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 06:50:01 | d8efa0b1c3d1b9b4b55641157c15d95a | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 06:45:25 | 0e40b4924e4a9d88bfe1194742b01493 | 44/70 (62.86%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 06:45:25 | 0e40b4924e4a9d88bfe1194742b01493 | 44/70 (62.86%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 06:39:05 | 57252aedb99ae42bf6fb0bc7f339919e | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 06:39:05 | 57252aedb99ae42bf6fb0bc7f339919e | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 04:42:27 | e67d630a5acdfd5d3ba79db9666f65c7 | 48/66 (72.73%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 04:42:27 | e67d630a5acdfd5d3ba79db9666f65c7 | 48/66 (72.73%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 04:38:32 | 20e5077bdf3aff9187baa64360b5f929 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 04:38:32 | 20e5077bdf3aff9187baa64360b5f929 | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 04:37:16 | c08b5b3d3ced6ccd79bc386928220328 | 49/70 (70.00%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 04:37:16 | c08b5b3d3ced6ccd79bc386928220328 | 49/70 (70.00%)
| Gozi | 95.181.198.115:443 |
| 2018-11-08 04:35:12 | d14a502b7b90d48c33facb244e26841f | n/a | Gozi | 95.181.198.115:443 |
| 2018-11-08 04:35:12 | d14a502b7b90d48c33facb244e26841f | n/a | Gozi | 95.181.198.115:443 |
# of entries: 100 (max: 100)