SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 0982f84f7b7fa7c43a012c62c3eea6a96c081a54.

Database Entry


SHA1 Fingerprint:0982f84f7b7fa7c43a012c62c3eea6a96c081a54
Certificate Common Name (CN):C=AU, ST=Some-State, O=Internet Widgits Pty Ltd
Issuer Distinguished Name (DN):C=AU, ST=Some-State, O=Internet Widgits Pty Ltd
TLS Version:SSLv3
First seen:2015-07-28 00:10:39 UTC
Last seen:2015-08-31 03:02:41 UTC
Status:Blacklisted
Listing reason:Gozi C&C
Listing date:2015-07-28 11:24:32
Malware samples:3
Botnet C&Cs:2

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2015-08-31 03:02:41b8bacb31aa07d21c704de8cb6c9c7cd2Virustotal results 16/55 (29.09%) Gozi 185.65.247.66:443
2015-08-31 03:02:41b8bacb31aa07d21c704de8cb6c9c7cd2Virustotal results 16/55 (29.09%) Gozi 185.65.247.66:443
2015-07-28 19:52:4445abd62744facdd41121884272c3cbc3Virustotal results 0/54 (0.00%) Gozi 185.65.244.18:443
2015-07-28 19:52:4445abd62744facdd41121884272c3cbc3Virustotal results 0/54 (0.00%) Gozi 185.65.244.18:443
2015-07-28 00:10:39fd46de35082abbd7f9b0760273c06e36Virustotal results 26/55 (47.27%) Gozi 185.65.244.18:443
2015-07-28 00:10:39fd46de35082abbd7f9b0760273c06e36Virustotal results 26/55 (47.27%) Gozi 185.65.244.18:443

# of entries: 6 (max: 100)