SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 0982f84f7b7fa7c43a012c62c3eea6a96c081a54.
Database Entry
| SHA1 Fingerprint: | 0982f84f7b7fa7c43a012c62c3eea6a96c081a54 |
|---|---|
| Certificate Common Name (CN): | C=AU, ST=Some-State, O=Internet Widgits Pty Ltd |
| Issuer Distinguished Name (DN): | C=AU, ST=Some-State, O=Internet Widgits Pty Ltd |
| TLS Version: | SSLv3 |
| First seen: | 2015-07-28 00:10:39 UTC |
| Last seen: | 2015-08-31 03:02:41 UTC |
| Status: | Blacklisted |
| Listing reason: | Gozi C&C |
| Listing date: | 2015-07-28 11:24:32 |
| Malware samples: | 3 |
| Botnet C&Cs: | 2 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2015-08-31 03:02:41 | b8bacb31aa07d21c704de8cb6c9c7cd2 |  16/55 (29.09%)
| Gozi | 185.65.247.66:443 |
| 2015-08-31 03:02:41 | b8bacb31aa07d21c704de8cb6c9c7cd2 | 16/55 (29.09%)
| Gozi | 185.65.247.66:443 |
| 2015-07-28 19:52:44 | 45abd62744facdd41121884272c3cbc3 | 0/54 (0.00%)
| Gozi | 185.65.244.18:443 |
| 2015-07-28 19:52:44 | 45abd62744facdd41121884272c3cbc3 | 0/54 (0.00%)
| Gozi | 185.65.244.18:443 |
| 2015-07-28 00:10:39 | fd46de35082abbd7f9b0760273c06e36 | 26/55 (47.27%)
| Gozi | 185.65.244.18:443 |
| 2015-07-28 00:10:39 | fd46de35082abbd7f9b0760273c06e36 | 26/55 (47.27%)
| Gozi | 185.65.244.18:443 |
# of entries: 6 (max: 100)