SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 346160fdd36f63562b60e3ed39d1fd65b3e5d282.
Database Entry
| SHA1 Fingerprint: | 346160fdd36f63562b60e3ed39d1fd65b3e5d282 |
|---|---|
| Certificate Common Name (CN): | pharmarel.space |
| Issuer Distinguished Name (DN): | Let's Encrypt Authority X3 |
| TLS Version: | TLS 1.2 |
| First seen: | 2018-08-10 13:23:01 UTC |
| Last seen: | 2018-09-12 14:27:27 UTC |
| Status: | Blacklisted |
| Listing reason: | Gozi C&C |
| Listing date: | 2018-09-13 08:16:39 |
| Malware samples: | 4 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2018-09-12 14:27:27 | c4a59c45eae47bc501f63c035dd716bc |  8/67 (11.94%)
| Gozi | 185.75.90.192:443 |
| 2018-09-12 14:27:27 | c4a59c45eae47bc501f63c035dd716bc | 8/67 (11.94%)
| Gozi | 185.75.90.192:443 |
| 2018-09-07 14:14:30 | 5d80439d12dfd60333f69df07ddcbbb5 | 5/66 (7.58%)
| 185.75.90.192:443 | |
| 2018-09-07 14:14:30 | 5d80439d12dfd60333f69df07ddcbbb5 | 5/66 (7.58%)
| 185.75.90.192:443 | |
| 2018-08-17 03:45:35 | ef780b6a28317dbfea1970c4dc083042 | 31/67 (46.27%)
| 185.75.90.192:443 | |
| 2018-08-17 03:45:35 | ef780b6a28317dbfea1970c4dc083042 | 31/67 (46.27%)
| 185.75.90.192:443 | |
| 2018-08-10 13:23:01 | 336eaf857ddf3b795b2cbebaa4fb0a96 | 38/68 (55.88%)
| 185.75.90.192:443 | |
| 2018-08-10 13:23:01 | 336eaf857ddf3b795b2cbebaa4fb0a96 | 38/68 (55.88%)
| 185.75.90.192:443 |
# of entries: 8 (max: 100)