SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 142d6b4f5673ade8dd09fa3d705be329adfb7531.

Database Entry


SHA1 Fingerprint:142d6b4f5673ade8dd09fa3d705be329adfb7531
Certificate Common Name (CN):votboo.xyz
Issuer Distinguished Name (DN):Let's Encrypt Authority X3
TLS Version:TLS 1.2
First seen:2020-05-26 11:25:52 UTC
Last seen:2020-05-27 06:02:01 UTC
Status:Blacklisted
Listing reason:Gozi C&C
Listing date:2020-05-26 13:11:31
Malware samples:4
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2020-05-27 06:02:01326398e262c467bc28e00713a33cb8f2n/aGozi 185.34.52.7:443
2020-05-27 06:02:01326398e262c467bc28e00713a33cb8f2n/aGozi 185.34.52.7:443
2020-05-26 13:09:14dc5e63f80e1adc0ca0e130be0d6a08c4n/aGozi 185.34.52.7:443
2020-05-26 13:09:14dc5e63f80e1adc0ca0e130be0d6a08c4n/aGozi 185.34.52.7:443
2020-05-26 11:54:2442010d7791d78908150cbd73bc6e139en/aGozi 185.34.52.7:443
2020-05-26 11:54:2442010d7791d78908150cbd73bc6e139en/aGozi 185.34.52.7:443
2020-05-26 11:25:52491bc99a5546688074018636576f15c1n/aGozi 185.34.52.7:443
2020-05-26 11:25:52491bc99a5546688074018636576f15c1n/aGozi 185.34.52.7:443

# of entries: 8 (max: 100)