SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 0e95717d24caa218bdd1d5ba3587677b427a8933.

Database Entry

SHA1 Fingerprint:	0e95717d24caa218bdd1d5ba3587677b427a8933
Certificate Common Name (CN):	*
Issuer Distinguished Name (DN):	*
TLS Version:	TLS 1.2' NOTBEF
First seen:	2021-02-21 22:29:30 UTC
Last seen:	2021-03-18 07:42:31 UTC
Status:	Blacklisted
Listing reason:	Gozi C&C
Listing date:	2021-03-18 06:55:29
Malware samples:	24
Botnet C&Cs:	1

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2021-03-18 07:42:31	5fd20c1884f0ed0c8e72b0ff041c2db1	n/a	Gozi	185.82.218.53:443
2021-03-18 07:42:31	5fd20c1884f0ed0c8e72b0ff041c2db1	n/a	Gozi	185.82.218.53:443
2021-03-18 07:39:57	6eb4e9eae07825cd09510e107239f41d	n/a	Gozi	185.82.218.53:443
2021-03-18 07:39:57	6eb4e9eae07825cd09510e107239f41d	n/a	Gozi	185.82.218.53:443
2021-03-18 07:38:28	72982390e4f5196a541cc7f3b4bed79f	n/a	Gozi	185.82.218.53:443
2021-03-18 07:38:28	72982390e4f5196a541cc7f3b4bed79f	n/a	Gozi	185.82.218.53:443
2021-03-18 07:36:08	deba2e146fa50be95459d64b59a24b2f	n/a	Gozi	185.82.218.53:443
2021-03-18 07:36:08	deba2e146fa50be95459d64b59a24b2f	n/a	Gozi	185.82.218.53:443
2021-03-18 07:34:46	390357cbc38965bfc9e53b8428fe59be	n/a	Gozi	185.82.218.53:443
2021-03-18 07:34:46	390357cbc38965bfc9e53b8428fe59be	n/a	Gozi	185.82.218.53:443
2021-03-18 07:29:54	bae60f2c8a14eb4bb86366508a86092f	n/a	Gozi	185.82.218.53:443
2021-03-18 07:29:54	bae60f2c8a14eb4bb86366508a86092f	n/a	Gozi	185.82.218.53:443
2021-03-18 07:06:53	ff64e9288a7c0ac649b9035979362b9c	n/a	Gozi	185.82.218.53:443
2021-03-18 07:06:53	ff64e9288a7c0ac649b9035979362b9c	n/a	Gozi	185.82.218.53:443
2021-03-18 06:44:51	878c75d9cf00b6ef98231cc6a3e34a36	n/a	Gozi	185.82.218.53:443
2021-03-18 06:44:51	878c75d9cf00b6ef98231cc6a3e34a36	n/a	Gozi	185.82.218.53:443
2021-03-18 05:43:59	11fabcb45618b325da47dadd6dbe4ca7	n/a	Gozi	185.82.218.53:443
2021-03-18 05:43:59	11fabcb45618b325da47dadd6dbe4ca7	n/a	Gozi	185.82.218.53:443
2021-03-18 04:23:16	1683b80450d84069c375ebe3aff04a11	n/a	Gozi	185.82.218.53:443
2021-03-18 04:23:16	1683b80450d84069c375ebe3aff04a11	n/a	Gozi	185.82.218.53:443
2021-03-17 21:54:29	b53edc7386e80162fbccfc6fb16dddc5	n/a	Gozi	185.82.218.53:443
2021-03-17 21:54:29	b53edc7386e80162fbccfc6fb16dddc5	n/a	Gozi	185.82.218.53:443
2021-03-17 17:50:42	d25e57a088d1328f444d9f60828b478c	n/a	Quakbot	185.82.218.53:443
2021-03-17 17:50:42	d25e57a088d1328f444d9f60828b478c	n/a	Quakbot	185.82.218.53:443
2021-03-17 17:43:55	46ca9dd945311f8742a83dcb112a6c97	n/a	Gozi	185.82.218.53:443
2021-03-17 17:43:55	46ca9dd945311f8742a83dcb112a6c97	n/a	Gozi	185.82.218.53:443
2021-03-17 14:22:18	4a974598ecf53d58875df09db2db3f4d	n/a	Gozi	185.82.218.53:443
2021-03-17 14:22:18	4a974598ecf53d58875df09db2db3f4d	n/a	Gozi	185.82.218.53:443
2021-03-17 12:26:04	51967c9dad7f06417c94a6a72612b251	n/a	Gozi	185.82.218.53:443
2021-03-17 12:26:04	51967c9dad7f06417c94a6a72612b251	n/a	Gozi	185.82.218.53:443
2021-03-17 11:47:05	f6e1bc85e9f6a43391b896416a3544dd	n/a	Gozi	185.82.218.53:443
2021-03-17 11:47:05	f6e1bc85e9f6a43391b896416a3544dd	n/a	Gozi	185.82.218.53:443
2021-03-17 10:56:57	f315800877f23ba550d69e8d35ab4a71	n/a	Gozi	185.82.218.53:443
2021-03-17 10:56:57	f315800877f23ba550d69e8d35ab4a71	n/a	Gozi	185.82.218.53:443
2021-03-17 10:55:32	24e7b6a3e261bf1cbc810f9f07cdbdd0	n/a	Gozi	185.82.218.53:443
2021-03-17 10:55:32	24e7b6a3e261bf1cbc810f9f07cdbdd0	n/a	Gozi	185.82.218.53:443
2021-03-17 10:30:06	004153ccd0014d80a0f272634bd6113e	n/a	Gozi	185.82.218.53:443
2021-03-17 10:30:06	004153ccd0014d80a0f272634bd6113e	n/a	Gozi	185.82.218.53:443
2021-03-13 13:09:36	8b851b9d3d35d64a9692234069c2572d	12 / 67 (17.91%)	Gozi	185.82.218.53:443
2021-03-13 13:09:36	8b851b9d3d35d64a9692234069c2572d	12 / 67 (17.91%)	Gozi	185.82.218.53:443
2021-03-13 13:05:12	9d7f1e8c8fca96cc2cbed2c7d1b954ca	12 / 67 (17.91%)	Gozi	185.82.218.53:443
2021-03-13 13:05:12	9d7f1e8c8fca96cc2cbed2c7d1b954ca	12 / 67 (17.91%)	Gozi	185.82.218.53:443
2021-03-12 10:47:08	31a9651f386ed20b3dd3bda2d6177cca	7 / 66 (10.61%)	Gozi	185.82.218.53:443
2021-03-12 10:47:08	31a9651f386ed20b3dd3bda2d6177cca	7 / 66 (10.61%)	Gozi	185.82.218.53:443
2021-03-12 10:06:30	d70a8324f5cc45cb4333370db86af6dc	n/a	Quakbot	185.82.218.53:443
2021-03-12 10:06:30	d70a8324f5cc45cb4333370db86af6dc	n/a	Quakbot	185.82.218.53:443
2021-02-21 22:29:30	a2f914433461b45fc5505e9f89683625	30 / 70 (42.86%)	Quakbot	185.82.218.53:443
2021-02-21 22:29:30	a2f914433461b45fc5505e9f89683625	30 / 70 (42.86%)	Quakbot	185.82.218.53:443

# of entries: 48 (max: 100)