SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 20d66b71749f52092fb9e2afeaa2b9cce8a57520.

Database Entry

SHA1 Fingerprint:	20d66b71749f52092fb9e2afeaa2b9cce8a57520
Certificate Common Name (CN):	*
Issuer Distinguished Name (DN):	*
TLS Version:	TLS 1.2
First seen:	2019-02-25 16:36:46 UTC
Last seen:	2019-02-25 21:17:14 UTC
Status:	Blacklisted
Listing reason:	Gozi C&C
Listing date:	2019-02-25 20:23:40
Malware samples:	16
Botnet C&Cs:	1

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2019-02-25 21:17:14	99bf8c26b1fea6979d30f450b2580578	31/65 (47.69%)	Gozi	185.228.234.105:443
2019-02-25 21:17:14	99bf8c26b1fea6979d30f450b2580578	31/65 (47.69%)	Gozi	185.228.234.105:443
2019-02-25 21:17:07	4afa21899eb4d1262575a1533ed31ffe	21/68 (30.88%)	Gozi	185.228.234.105:443
2019-02-25 21:17:07	4afa21899eb4d1262575a1533ed31ffe	21/68 (30.88%)	Gozi	185.228.234.105:443
2019-02-25 21:11:39	82f98da1b8c8baae9cf66acc7a577c89	21/69 (30.43%)	Gozi	185.228.234.105:443
2019-02-25 21:11:39	82f98da1b8c8baae9cf66acc7a577c89	21/69 (30.43%)	Gozi	185.228.234.105:443
2019-02-25 21:08:41	fd4f7bbe1b6701b6e94f2f2ef0dc53ba	20/67 (29.85%)	Gozi	185.228.234.105:443
2019-02-25 21:08:41	fd4f7bbe1b6701b6e94f2f2ef0dc53ba	20/67 (29.85%)	Gozi	185.228.234.105:443
2019-02-25 19:59:39	e8f9af963e9a05c3b7232721fbc5825f	15/69 (21.74%)	Gozi	185.228.234.105:443
2019-02-25 19:59:39	e8f9af963e9a05c3b7232721fbc5825f	15/69 (21.74%)	Gozi	185.228.234.105:443
2019-02-25 19:34:52	d60ae3763abf75282ea6b84e0fa71f99	15/68 (22.06%)	Gozi	185.228.234.105:443
2019-02-25 19:34:52	d60ae3763abf75282ea6b84e0fa71f99	15/68 (22.06%)	Gozi	185.228.234.105:443
2019-02-25 19:23:06	3152489b5a820b42f4d6cc76671217fa	14/67 (20.90%)	Gozi	185.228.234.105:443
2019-02-25 19:23:06	3152489b5a820b42f4d6cc76671217fa	14/67 (20.90%)	Gozi	185.228.234.105:443
2019-02-25 18:57:37	f99ccc9faebae2759862281e7bc08f28	15/71 (21.13%)	Gozi	185.228.234.105:443
2019-02-25 18:57:37	f99ccc9faebae2759862281e7bc08f28	15/71 (21.13%)	Gozi	185.228.234.105:443
2019-02-25 18:41:39	1b9a27a4154bd081b59c4d2ce5b3e82b	15/67 (22.39%)	Gozi	185.228.234.105:443
2019-02-25 18:41:39	1b9a27a4154bd081b59c4d2ce5b3e82b	15/67 (22.39%)	Gozi	185.228.234.105:443
2019-02-25 18:23:30	602296993823279bebe42e02afcc8613	15/69 (21.74%)	Gozi	185.228.234.105:443
2019-02-25 18:23:30	602296993823279bebe42e02afcc8613	15/69 (21.74%)	Gozi	185.228.234.105:443
2019-02-25 17:44:31	74cd1af58a05728674a2c38d2d4fd594	15/71 (21.13%)	Gozi	185.228.234.105:443
2019-02-25 17:44:31	74cd1af58a05728674a2c38d2d4fd594	15/71 (21.13%)	Gozi	185.228.234.105:443
2019-02-25 17:44:01	49b0626c5e8a38318eea6accdceb43d1	15/69 (21.74%)	Gozi	185.228.234.105:443
2019-02-25 17:44:01	49b0626c5e8a38318eea6accdceb43d1	15/69 (21.74%)	Gozi	185.228.234.105:443
2019-02-25 17:03:54	3643fb75a1d03d7ce60b7e4955e496a8	22/70 (31.43%)	Gozi	185.228.234.105:443
2019-02-25 17:03:54	3643fb75a1d03d7ce60b7e4955e496a8	22/70 (31.43%)	Gozi	185.228.234.105:443
2019-02-25 16:59:00	45720d6cff198c150f773c31980e6f9c	22/69 (31.88%)	Gozi	185.228.234.105:443
2019-02-25 16:59:00	45720d6cff198c150f773c31980e6f9c	22/69 (31.88%)	Gozi	185.228.234.105:443
2019-02-25 16:54:50	57e5a69984288f71558ab11793714cf6	22/68 (32.35%)	Gozi	185.228.234.105:443
2019-02-25 16:54:50	57e5a69984288f71558ab11793714cf6	22/68 (32.35%)	Gozi	185.228.234.105:443
2019-02-25 16:36:46	8cc1683091921bc0e696186ea085f3d8	22/70 (31.43%)	Gozi	185.228.234.105:443
2019-02-25 16:36:46	8cc1683091921bc0e696186ea085f3d8	22/70 (31.43%)	Gozi	185.228.234.105:443

# of entries: 32 (max: 100)