SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 20d66b71749f52092fb9e2afeaa2b9cce8a57520.

Database Entry


SHA1 Fingerprint:20d66b71749f52092fb9e2afeaa2b9cce8a57520
Certificate Common Name (CN):*
Issuer Distinguished Name (DN):*
TLS Version:TLS 1.2
First seen:2019-02-25 16:36:46 UTC
Last seen:2019-02-25 21:17:14 UTC
Status:Blacklisted
Listing reason:Gozi C&C
Listing date:2019-02-25 20:23:40
Malware samples:16
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2019-02-25 21:17:1499bf8c26b1fea6979d30f450b2580578n/aGozi 185.228.234.105:443
2019-02-25 21:17:074afa21899eb4d1262575a1533ed31ffen/aGozi 185.228.234.105:443
2019-02-25 21:11:3982f98da1b8c8baae9cf66acc7a577c89n/aGozi 185.228.234.105:443
2019-02-25 21:08:41fd4f7bbe1b6701b6e94f2f2ef0dc53ban/aGozi 185.228.234.105:443
2019-02-25 19:59:39e8f9af963e9a05c3b7232721fbc5825fn/aGozi 185.228.234.105:443
2019-02-25 19:34:52d60ae3763abf75282ea6b84e0fa71f99n/aGozi 185.228.234.105:443
2019-02-25 19:23:063152489b5a820b42f4d6cc76671217fan/aGozi 185.228.234.105:443
2019-02-25 18:57:37f99ccc9faebae2759862281e7bc08f28n/aGozi 185.228.234.105:443
2019-02-25 18:41:391b9a27a4154bd081b59c4d2ce5b3e82bn/a185.228.234.105:443
2019-02-25 18:23:30602296993823279bebe42e02afcc8613n/aGozi 185.228.234.105:443
2019-02-25 17:44:3174cd1af58a05728674a2c38d2d4fd594n/aGozi 185.228.234.105:443
2019-02-25 17:44:0149b0626c5e8a38318eea6accdceb43d1n/aGozi 185.228.234.105:443
2019-02-25 17:03:543643fb75a1d03d7ce60b7e4955e496a8n/aGozi 185.228.234.105:443
2019-02-25 16:59:0045720d6cff198c150f773c31980e6f9cn/aGozi 185.228.234.105:443
2019-02-25 16:54:5057e5a69984288f71558ab11793714cf6n/a185.228.234.105:443
2019-02-25 16:36:468cc1683091921bc0e696186ea085f3d8n/a185.228.234.105:443

# of entries: 16 (max: 100)