SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 32660e3b487dc58b5f97db12492a2744af449a94.
Database Entry
| SHA1 Fingerprint: | 32660e3b487dc58b5f97db12492a2744af449a94 |
|---|---|
| Certificate Common Name (CN): | * |
| Issuer Distinguished Name (DN): | * |
| TLS Version: | TLS 1.2' NOTBEF |
| First seen: | 2021-04-22 13:11:27 UTC |
| Last seen: | 2021-04-23 13:36:22 UTC |
| Status: | Blacklisted |
| Listing reason: | Gozi C&C |
| Listing date: | 2021-04-23 17:41:40 |
| Malware samples: | 11 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2021-04-23 13:36:22 | a1acba462ec14ddccbc4fa7aedcc8f3f | n/a | Gozi | 193.239.84.240:443 |
| 2021-04-23 13:36:22 | a1acba462ec14ddccbc4fa7aedcc8f3f | n/a | Gozi | 193.239.84.240:443 |
| 2021-04-23 13:29:49 | 92710c065845ffe8e33ed0d342a49f20 | n/a | Gozi | 193.239.84.240:443 |
| 2021-04-23 13:29:49 | 92710c065845ffe8e33ed0d342a49f20 | n/a | Gozi | 193.239.84.240:443 |
| 2021-04-23 13:14:41 | 47e931c535800e7256c81e73b758f6d7 | n/a | Gozi | 193.239.84.240:443 |
| 2021-04-23 13:14:41 | 47e931c535800e7256c81e73b758f6d7 | n/a | Gozi | 193.239.84.240:443 |
| 2021-04-23 13:13:00 | 3bd96751598e4963dfa01b9f027a06b6 | n/a | Gozi | 193.239.84.240:443 |
| 2021-04-23 13:13:00 | 3bd96751598e4963dfa01b9f027a06b6 | n/a | Gozi | 193.239.84.240:443 |
| 2021-04-23 13:07:54 | ca90f0bb0563a950f02e3d90ae77b5a9 | n/a | Gozi | 193.239.84.240:443 |
| 2021-04-23 13:07:54 | ca90f0bb0563a950f02e3d90ae77b5a9 | n/a | Gozi | 193.239.84.240:443 |
| 2021-04-23 12:57:14 | 1d6646c08ca515f04efaec1435392455 | n/a | Gozi | 193.239.84.240:443 |
| 2021-04-23 12:57:14 | 1d6646c08ca515f04efaec1435392455 | n/a | Gozi | 193.239.84.240:443 |
| 2021-04-23 12:49:46 | 35b3b3720df931351c489bcbd5b901a2 | n/a | Gozi | 193.239.84.240:443 |
| 2021-04-23 12:49:46 | 35b3b3720df931351c489bcbd5b901a2 | n/a | Gozi | 193.239.84.240:443 |
| 2021-04-23 12:24:37 | a0b148aadc09e8fee10d31eb4cae32ed | n/a | Gozi | 193.239.84.240:443 |
| 2021-04-23 12:24:37 | a0b148aadc09e8fee10d31eb4cae32ed | n/a | Gozi | 193.239.84.240:443 |
| 2021-04-22 14:30:12 | 6689ae7167a26a4f126c584151250c80 |  2 / 67 (2.99%)
| Gozi | 193.239.84.240:443 |
| 2021-04-22 14:30:12 | 6689ae7167a26a4f126c584151250c80 | 2 / 67 (2.99%)
| Gozi | 193.239.84.240:443 |
| 2021-04-22 14:27:31 | 6c1af3abf5fa3e892c855892fcf2fef0 | n/a | Gozi | 193.239.84.240:443 |
| 2021-04-22 14:27:31 | 6c1af3abf5fa3e892c855892fcf2fef0 | n/a | Gozi | 193.239.84.240:443 |
| 2021-04-22 13:11:27 | 8ae208c2087200335b521476aace6805 | n/a | Gozi | 193.239.84.240:443 |
| 2021-04-22 13:11:27 | 8ae208c2087200335b521476aace6805 | n/a | Gozi | 193.239.84.240:443 |
# of entries: 22 (max: 100)