SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 22cb55b88aeeec8b0842d30f8e1377b3cce3322c.

Database Entry

SHA1 Fingerprint:	22cb55b88aeeec8b0842d30f8e1377b3cce3322c
Certificate Common Name (CN):	exeupay.xyz
Issuer Distinguished Name (DN):	Let's Encrypt Authority X3
TLS Version:	TLS 1.2
First seen:	2020-06-05 05:50:41 UTC
Last seen:	2020-06-06 06:38:31 UTC
Status:	Blacklisted
Listing reason:	Gozi C&C
Listing date:	2020-06-05 06:21:38
Malware samples:	484
Botnet C&Cs:	1

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2020-06-06 06:38:31	b08c48ecd129740fe0f631a69db63d08	14 / 73 (19.18%)	Gozi	45.67.228.170:443
2020-06-06 06:38:31	b08c48ecd129740fe0f631a69db63d08	14 / 73 (19.18%)	Gozi	45.67.228.170:443
2020-06-05 10:56:38	29068cab038175575c4b3058ca9f9658	17 / 72 (23.61%)	Gozi	45.67.228.170:443
2020-06-05 10:56:38	29068cab038175575c4b3058ca9f9658	17 / 72 (23.61%)	Gozi	45.67.228.170:443
2020-06-05 10:45:40	6a9b02cdf9884fdb242269138b9c4c75	15 / 65 (23.08%)	Gozi	45.67.228.170:443
2020-06-05 10:45:40	6a9b02cdf9884fdb242269138b9c4c75	15 / 65 (23.08%)	Gozi	45.67.228.170:443
2020-06-05 10:41:53	7a258790fc13ff0e818cacc79a24087a	21 / 72 (29.17%)	Gozi	45.67.228.170:443
2020-06-05 10:41:53	7a258790fc13ff0e818cacc79a24087a	21 / 72 (29.17%)	Gozi	45.67.228.170:443
2020-06-05 10:38:12	98d42a0b5ceb20039882134f91bbbfbb	18 / 73 (24.66%)	Gozi	45.67.228.170:443
2020-06-05 10:38:12	98d42a0b5ceb20039882134f91bbbfbb	18 / 73 (24.66%)	Gozi	45.67.228.170:443
2020-06-05 10:38:08	1d7a04012d62637e563821def39d75e6	16 / 72 (22.22%)	Gozi	45.67.228.170:443
2020-06-05 10:38:08	1d7a04012d62637e563821def39d75e6	16 / 72 (22.22%)	Gozi	45.67.228.170:443
2020-06-05 10:36:52	caf2b536623d127b059f7485b024efda	22 / 72 (30.56%)	Gozi	45.67.228.170:443
2020-06-05 10:36:52	caf2b536623d127b059f7485b024efda	22 / 72 (30.56%)	Gozi	45.67.228.170:443
2020-06-05 10:36:46	c0863d39f22a685a1159a56f40abdc24	25 / 72 (34.72%)	Gozi	45.67.228.170:443
2020-06-05 10:36:46	c0863d39f22a685a1159a56f40abdc24	25 / 72 (34.72%)	Gozi	45.67.228.170:443
2020-06-05 10:36:31	8b5636e2e43740d72d369c740e0a36c2	14 / 70 (20.00%)	Gozi	45.67.228.170:443
2020-06-05 10:36:31	8b5636e2e43740d72d369c740e0a36c2	14 / 70 (20.00%)	Gozi	45.67.228.170:443
2020-06-05 10:36:15	ac2f29560498e71c60c2d53f5f91d6b9	17 / 72 (23.61%)	Gozi	45.67.228.170:443
2020-06-05 10:36:15	ac2f29560498e71c60c2d53f5f91d6b9	17 / 72 (23.61%)	Gozi	45.67.228.170:443
2020-06-05 10:35:37	9aaccbb8262c9d2b54b3aee7fea93fca	17 / 71 (23.94%)	Gozi	45.67.228.170:443
2020-06-05 10:35:37	9aaccbb8262c9d2b54b3aee7fea93fca	17 / 71 (23.94%)	Gozi	45.67.228.170:443
2020-06-05 10:35:01	7a7b56c8195176367c3da9a3d368e1fb	25 / 72 (34.72%)	Gozi	45.67.228.170:443
2020-06-05 10:35:01	7a7b56c8195176367c3da9a3d368e1fb	25 / 72 (34.72%)	Gozi	45.67.228.170:443
2020-06-05 10:34:43	40e7ddd8e470e069428f073ac07c8da2	17 / 72 (23.61%)	Gozi	45.67.228.170:443
2020-06-05 10:34:43	40e7ddd8e470e069428f073ac07c8da2	17 / 72 (23.61%)	Gozi	45.67.228.170:443
2020-06-05 10:31:58	c9b1bdfa98237fd3b05272cb0ac5a029	17 / 72 (23.61%)	Gozi	45.67.228.170:443
2020-06-05 10:31:58	c9b1bdfa98237fd3b05272cb0ac5a029	17 / 72 (23.61%)	Gozi	45.67.228.170:443
2020-06-05 10:31:42	5b598cf0fca73a19be5fb97aa493cc9d	21 / 72 (29.17%)	Gozi	45.67.228.170:443
2020-06-05 10:31:42	5b598cf0fca73a19be5fb97aa493cc9d	21 / 72 (29.17%)	Gozi	45.67.228.170:443
2020-06-05 10:31:05	671cd50a52bb47116add60ccd6136a52	25 / 72 (34.72%)	Gozi	45.67.228.170:443
2020-06-05 10:31:05	671cd50a52bb47116add60ccd6136a52	25 / 72 (34.72%)	Gozi	45.67.228.170:443
2020-06-05 10:30:18	02a98a98b55be2e62da0c63d8ae97662	23 / 72 (31.94%)	Gozi	45.67.228.170:443
2020-06-05 10:30:18	02a98a98b55be2e62da0c63d8ae97662	23 / 72 (31.94%)	Gozi	45.67.228.170:443
2020-06-05 10:30:04	c667e44d9e70f9467b5d75618921935f	25 / 73 (34.25%)	Gozi	45.67.228.170:443
2020-06-05 10:30:04	c667e44d9e70f9467b5d75618921935f	25 / 73 (34.25%)	Gozi	45.67.228.170:443
2020-06-05 10:29:35	c2eaa1010df56780436ac21e5359ddc4	25 / 73 (34.25%)	Gozi	45.67.228.170:443
2020-06-05 10:29:35	c2eaa1010df56780436ac21e5359ddc4	25 / 73 (34.25%)	Gozi	45.67.228.170:443
2020-06-05 10:29:04	c799cd91d163f6961459f8d92b9a4f5a	17 / 73 (23.29%)	Gozi	45.67.228.170:443
2020-06-05 10:29:04	c799cd91d163f6961459f8d92b9a4f5a	17 / 73 (23.29%)	Gozi	45.67.228.170:443
2020-06-05 10:27:50	9eac39546f22f63e1a68d7733cb65ef7	23 / 73 (31.51%)	Gozi	45.67.228.170:443
2020-06-05 10:27:50	9eac39546f22f63e1a68d7733cb65ef7	23 / 73 (31.51%)	Gozi	45.67.228.170:443
2020-06-05 10:27:44	c4615f2f9e1b6bda868ce403139bb91c	24 / 73 (32.88%)	Gozi	45.67.228.170:443
2020-06-05 10:27:44	c4615f2f9e1b6bda868ce403139bb91c	24 / 73 (32.88%)	Gozi	45.67.228.170:443
2020-06-05 10:27:29	5ffabef4c1453d3472a052259305e53b	24 / 72 (33.33%)	Gozi	45.67.228.170:443
2020-06-05 10:27:29	5ffabef4c1453d3472a052259305e53b	24 / 72 (33.33%)	Gozi	45.67.228.170:443
2020-06-05 10:27:27	505ce8207fd361294c64116b4a4cf599	25 / 71 (35.21%)	Gozi	45.67.228.170:443
2020-06-05 10:27:27	505ce8207fd361294c64116b4a4cf599	25 / 71 (35.21%)	Gozi	45.67.228.170:443
2020-06-05 10:26:55	ae9ca44e35189fc4f0d05ed3835e51fd	25 / 72 (34.72%)	Gozi	45.67.228.170:443
2020-06-05 10:26:55	ae9ca44e35189fc4f0d05ed3835e51fd	25 / 72 (34.72%)	Gozi	45.67.228.170:443
2020-06-05 10:26:17	1ac5d8b2e0a38fa2204fa22bd9acdd48	25 / 72 (34.72%)	Gozi	45.67.228.170:443
2020-06-05 10:26:17	1ac5d8b2e0a38fa2204fa22bd9acdd48	25 / 72 (34.72%)	Gozi	45.67.228.170:443
2020-06-05 10:26:10	c616b113c7de8a4ee2e35703631c5f21	17 / 72 (23.61%)	Gozi	45.67.228.170:443
2020-06-05 10:26:10	c616b113c7de8a4ee2e35703631c5f21	17 / 72 (23.61%)	Gozi	45.67.228.170:443
2020-06-05 10:25:21	8f4d0c516aa5e1989cc46676144cedd1	18 / 72 (25.00%)	Gozi	45.67.228.170:443
2020-06-05 10:25:21	8f4d0c516aa5e1989cc46676144cedd1	18 / 72 (25.00%)	Gozi	45.67.228.170:443
2020-06-05 10:25:13	52ea901f0b895a7ffa186ac64668c9b9	20 / 72 (27.78%)	Gozi	45.67.228.170:443
2020-06-05 10:25:13	52ea901f0b895a7ffa186ac64668c9b9	20 / 72 (27.78%)	Gozi	45.67.228.170:443
2020-06-05 10:25:02	9c766ca1c571e315c4b02e93110a2600	23 / 73 (31.51%)	Gozi	45.67.228.170:443
2020-06-05 10:25:02	9c766ca1c571e315c4b02e93110a2600	23 / 73 (31.51%)	Gozi	45.67.228.170:443
2020-06-05 10:24:46	1c7b7afcbeffacb9f2d4622eec232832	21 / 72 (29.17%)	Gozi	45.67.228.170:443
2020-06-05 10:24:46	1c7b7afcbeffacb9f2d4622eec232832	21 / 72 (29.17%)	Gozi	45.67.228.170:443
2020-06-05 10:23:33	c39cda8e9b9f297acab981bd1bd2af58	16 / 72 (22.22%)	Gozi	45.67.228.170:443
2020-06-05 10:23:33	c39cda8e9b9f297acab981bd1bd2af58	16 / 72 (22.22%)	Gozi	45.67.228.170:443
2020-06-05 10:21:52	a93bf8cf0d4fafab9b933a603ef130c9	n/a	Gozi	45.67.228.170:443
2020-06-05 10:21:52	a93bf8cf0d4fafab9b933a603ef130c9	n/a	Gozi	45.67.228.170:443
2020-06-05 10:20:29	8f245574eb14568d5ca4f4c00581bd78	15 / 73 (20.55%)	Gozi	45.67.228.170:443
2020-06-05 10:20:29	8f245574eb14568d5ca4f4c00581bd78	15 / 73 (20.55%)	Gozi	45.67.228.170:443
2020-06-05 10:19:28	c1ec84271606bf100f345abe04ff5283	15 / 72 (20.83%)	Gozi	45.67.228.170:443
2020-06-05 10:19:28	c1ec84271606bf100f345abe04ff5283	15 / 72 (20.83%)	Gozi	45.67.228.170:443
2020-06-05 10:19:12	c1392d4cf59153642a6ae5f1237135c8	25 / 73 (34.25%)	Gozi	45.67.228.170:443
2020-06-05 10:19:12	c1392d4cf59153642a6ae5f1237135c8	25 / 73 (34.25%)	Gozi	45.67.228.170:443
2020-06-05 10:19:11	7aa4153c5fc30cf3585472f799286683	15 / 71 (21.13%)	Gozi	45.67.228.170:443
2020-06-05 10:19:11	7aa4153c5fc30cf3585472f799286683	15 / 71 (21.13%)	Gozi	45.67.228.170:443
2020-06-05 10:18:36	58b34c3d5cfd02d2620352894120e844	25 / 72 (34.72%)	Gozi	45.67.228.170:443
2020-06-05 10:18:36	58b34c3d5cfd02d2620352894120e844	25 / 72 (34.72%)	Gozi	45.67.228.170:443
2020-06-05 10:18:23	b97955287874f1013182d670e5e5c212	17 / 73 (23.29%)	Gozi	45.67.228.170:443
2020-06-05 10:18:23	b97955287874f1013182d670e5e5c212	17 / 73 (23.29%)	Gozi	45.67.228.170:443
2020-06-05 10:18:19	bf5451913983973e4ba7c08a76515e60	15 / 72 (20.83%)	Gozi	45.67.228.170:443
2020-06-05 10:18:19	bf5451913983973e4ba7c08a76515e60	15 / 72 (20.83%)	Gozi	45.67.228.170:443
2020-06-05 10:16:10	b6f38b20b2ec64a60af997706feb55e9	23 / 72 (31.94%)	Gozi	45.67.228.170:443
2020-06-05 10:16:10	b6f38b20b2ec64a60af997706feb55e9	23 / 72 (31.94%)	Gozi	45.67.228.170:443
2020-06-05 10:14:39	ba65a2602f9e7cc4bbd64d13cc1b52d2	25 / 72 (34.72%)	Gozi	45.67.228.170:443
2020-06-05 10:14:39	ba65a2602f9e7cc4bbd64d13cc1b52d2	25 / 72 (34.72%)	Gozi	45.67.228.170:443
2020-06-05 10:14:32	7807e60653bd0466cbb7591230b83634	17 / 73 (23.29%)	Gozi	45.67.228.170:443
2020-06-05 10:14:32	7807e60653bd0466cbb7591230b83634	17 / 73 (23.29%)	Gozi	45.67.228.170:443
2020-06-05 10:14:29	2aa035b754264dedf283585e82bf0202	25 / 72 (34.72%)	Gozi	45.67.228.170:443
2020-06-05 10:14:29	2aa035b754264dedf283585e82bf0202	25 / 72 (34.72%)	Gozi	45.67.228.170:443
2020-06-05 10:13:50	493725c29caa752b23328954921d1070	24 / 72 (33.33%)	Gozi	45.67.228.170:443
2020-06-05 10:13:50	493725c29caa752b23328954921d1070	24 / 72 (33.33%)	Gozi	45.67.228.170:443
2020-06-05 10:13:39	ade256e24348a39994fb7063a68452a1	25 / 71 (35.21%)	Gozi	45.67.228.170:443
2020-06-05 10:13:39	ade256e24348a39994fb7063a68452a1	25 / 71 (35.21%)	Gozi	45.67.228.170:443
2020-06-05 10:13:36	b77677f197e36bd0d665b69c0bd45a59	20 / 72 (27.78%)	Gozi	45.67.228.170:443
2020-06-05 10:13:36	b77677f197e36bd0d665b69c0bd45a59	20 / 72 (27.78%)	Gozi	45.67.228.170:443
2020-06-05 10:13:31	b83ea82ea0e7be8d9d0c526893d20503	25 / 71 (35.21%)	Gozi	45.67.228.170:443
2020-06-05 10:13:31	b83ea82ea0e7be8d9d0c526893d20503	25 / 71 (35.21%)	Gozi	45.67.228.170:443
2020-06-05 10:13:21	4c7dfd9462fac3df4e881712dcc250c4	17 / 73 (23.29%)	Gozi	45.67.228.170:443
2020-06-05 10:13:21	4c7dfd9462fac3df4e881712dcc250c4	17 / 73 (23.29%)	Gozi	45.67.228.170:443
2020-06-05 10:12:42	b7ec82169a312c57f872b6e4a59a3230	16 / 73 (21.92%)	Gozi	45.67.228.170:443
2020-06-05 10:12:42	b7ec82169a312c57f872b6e4a59a3230	16 / 73 (21.92%)	Gozi	45.67.228.170:443

# of entries: 100 (max: 100)