SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 35b9d1cf1a0d23fabf3b7d419299e4df395f8a1a.
Database Entry
| SHA1 Fingerprint: | 35b9d1cf1a0d23fabf3b7d419299e4df395f8a1a |
|---|---|
| Certificate Common Name (CN): | * |
| Issuer Distinguished Name (DN): | * |
| TLS Version: | TLS 1.2' NOTBEF |
| First seen: | 2021-04-02 16:53:48 UTC |
| Last seen: | 2021-04-03 09:43:12 UTC |
| Status: | Blacklisted |
| Listing reason: | Gozi C&C |
| Listing date: | 2021-04-02 18:10:16 |
| Malware samples: | 6 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2021-04-03 09:43:12 | 069aab99bf53ea8d3bc2bc8fbf05fbbb | n/a | Gozi | 92.223.90.242:443 |
| 2021-04-03 09:43:12 | 069aab99bf53ea8d3bc2bc8fbf05fbbb | n/a | Gozi | 92.223.90.242:443 |
| 2021-04-03 05:08:56 | d8c2eba7ee9824aa4f0348275eeb5737 | n/a | Gozi | 92.223.90.242:443 |
| 2021-04-03 05:08:56 | d8c2eba7ee9824aa4f0348275eeb5737 | n/a | Gozi | 92.223.90.242:443 |
| 2021-04-03 03:09:53 | 3d7a55008f35de0dc58f28b2d931ffb2 | n/a | Gozi | 92.223.90.242:443 |
| 2021-04-03 03:09:53 | 3d7a55008f35de0dc58f28b2d931ffb2 | n/a | Gozi | 92.223.90.242:443 |
| 2021-04-02 23:37:38 | 6e863c33375747a0a8baec08d65b25fe | n/a | Gozi | 92.223.90.242:443 |
| 2021-04-02 23:37:38 | 6e863c33375747a0a8baec08d65b25fe | n/a | Gozi | 92.223.90.242:443 |
| 2021-04-02 23:02:36 | 1232df21631cca7ed008be6882e8ace1 | n/a | Gozi | 92.223.90.242:443 |
| 2021-04-02 23:02:36 | 1232df21631cca7ed008be6882e8ace1 | n/a | Gozi | 92.223.90.242:443 |
| 2021-04-02 16:53:48 | a133ba4dee8c87e763eddb6445ae7725 | n/a | Gozi | 92.223.90.242:443 |
| 2021-04-02 16:53:48 | a133ba4dee8c87e763eddb6445ae7725 | n/a | Gozi | 92.223.90.242:443 |
# of entries: 12 (max: 100)