SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 031d548427250e439a67b793043df2d5a21916ac.
Database Entry
| SHA1 Fingerprint: | 031d548427250e439a67b793043df2d5a21916ac |
|---|---|
| Certificate Common Name (CN): | brentleybag.com |
| Issuer Distinguished Name (DN): | Let's Encrypt Authority X3 |
| TLS Version: | TLS 1.2 |
| First seen: | 2018-12-12 13:23:58 UTC |
| Last seen: | 2018-12-14 10:18:06 UTC |
| Status: | Blacklisted |
| Listing reason: | Gozi C&C |
| Listing date: | 2018-12-12 13:51:47 |
| Malware samples: | 3 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2018-12-14 10:18:06 | 41fff120955f52a2f92c20280feca376 |  5/69 (7.25%)
| Gozi | 89.223.94.178:443 |
| 2018-12-14 10:18:06 | 41fff120955f52a2f92c20280feca376 | 5/69 (7.25%)
| Gozi | 89.223.94.178:443 |
| 2018-12-13 12:40:35 | 80a21d16e315f9b4bf32e300e5101c75 | 7/66 (10.61%)
| Gozi | 89.223.94.178:443 |
| 2018-12-13 12:40:35 | 80a21d16e315f9b4bf32e300e5101c75 | 7/66 (10.61%)
| Gozi | 89.223.94.178:443 |
| 2018-12-12 13:23:58 | 583e5a920d427f90c544f5c3e2ba35b7 | 4/66 (6.06%)
| Gozi | 89.223.94.178:443 |
| 2018-12-12 13:23:58 | 583e5a920d427f90c544f5c3e2ba35b7 | 4/66 (6.06%)
| Gozi | 89.223.94.178:443 |
# of entries: 6 (max: 100)