SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 388d99592d32b7607e5ccbfff60878d14ec2163f.
Database Entry
| SHA1 Fingerprint: | 388d99592d32b7607e5ccbfff60878d14ec2163f |
|---|---|
| Certificate Common Name (CN): | * |
| Issuer Distinguished Name (DN): | * |
| TLS Version: | TLS 1.2 |
| First seen: | 2018-11-19 12:29:49 UTC |
| Last seen: | 2018-11-23 15:12:30 UTC |
| Status: | Blacklisted |
| Listing reason: | Gozi C&C |
| Listing date: | 2018-11-19 14:13:14 |
| Malware samples: | 25 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2018-11-23 15:12:30 | bd6639acc3106a4d3a240f64987bd26e | n/a | Gozi | 83.166.240.191:443 |
| 2018-11-23 15:12:30 | bd6639acc3106a4d3a240f64987bd26e | n/a | Gozi | 83.166.240.191:443 |
| 2018-11-19 15:58:55 | 31b912465d8742b777af41e8358269ae |  23/58 (39.66%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 15:58:55 | 31b912465d8742b777af41e8358269ae | 23/58 (39.66%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 15:36:15 | 1672e4f3cece8c783ca63b68b05acddb | 45/69 (65.22%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 15:36:15 | 1672e4f3cece8c783ca63b68b05acddb | 45/69 (65.22%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 14:03:09 | de326b19955ec709192d268e7dbf01b6 | 13/59 (22.03%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 14:03:09 | de326b19955ec709192d268e7dbf01b6 | 13/59 (22.03%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 13:52:15 | 52c593c9a34f8a9a1635ccb74450733a | n/a | Gozi | 83.166.240.191:443 |
| 2018-11-19 13:52:15 | 52c593c9a34f8a9a1635ccb74450733a | n/a | Gozi | 83.166.240.191:443 |
| 2018-11-19 13:51:17 | 2bc9b8c12b196f38d28ad829bfe70e2f | n/a | Gozi | 83.166.240.191:443 |
| 2018-11-19 13:51:17 | 2bc9b8c12b196f38d28ad829bfe70e2f | n/a | Gozi | 83.166.240.191:443 |
| 2018-11-19 13:46:46 | 276fe352efd7255e58e9467baa38a683 | 29/59 (49.15%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 13:46:46 | 276fe352efd7255e58e9467baa38a683 | 29/59 (49.15%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 13:41:51 | 532471f39a34367ae38e0720067835f7 | 40/70 (57.14%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 13:41:51 | 532471f39a34367ae38e0720067835f7 | 40/70 (57.14%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 13:17:12 | 93a4ae48fb15e59f34b70957afd4f861 | n/a | Gozi | 83.166.240.191:443 |
| 2018-11-19 13:17:12 | 93a4ae48fb15e59f34b70957afd4f861 | n/a | Gozi | 83.166.240.191:443 |
| 2018-11-19 13:16:11 | 3f9b55a83b564e4ed63ece17fbf6e691 | 12/58 (20.69%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 13:16:11 | 3f9b55a83b564e4ed63ece17fbf6e691 | 12/58 (20.69%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 13:12:44 | cce8a77a656c2573fd01e4270baf8185 | 12/58 (20.69%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 13:12:44 | cce8a77a656c2573fd01e4270baf8185 | 12/58 (20.69%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 13:09:40 | 853bacb25bc03a38d325bb06fd8d9b4a | 38/69 (55.07%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 13:09:40 | 853bacb25bc03a38d325bb06fd8d9b4a | 38/69 (55.07%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 13:08:35 | d4b3c30390353905ac8ccae1d8bc4c9a | 34/69 (49.28%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 13:08:35 | d4b3c30390353905ac8ccae1d8bc4c9a | 34/69 (49.28%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 13:06:06 | 3709652c34169d2a95b97269753d3e02 | n/a | Gozi | 83.166.240.191:443 |
| 2018-11-19 13:06:06 | 3709652c34169d2a95b97269753d3e02 | n/a | Gozi | 83.166.240.191:443 |
| 2018-11-19 13:04:28 | dba93e4916cd08defa6767914a13657d | 33/69 (47.83%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 13:04:28 | dba93e4916cd08defa6767914a13657d | 33/69 (47.83%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 13:03:02 | accde7fba4be41eac97323b415487993 | 36/68 (52.94%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 13:03:02 | accde7fba4be41eac97323b415487993 | 36/68 (52.94%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 13:02:51 | 9503788b0e5b9c3aca00d3fe55418203 | n/a | Gozi | 83.166.240.191:443 |
| 2018-11-19 13:02:51 | 9503788b0e5b9c3aca00d3fe55418203 | n/a | Gozi | 83.166.240.191:443 |
| 2018-11-19 13:02:48 | 53d4055e908ae9425e1b017cf68000ff | 39/69 (56.52%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 13:02:48 | 53d4055e908ae9425e1b017cf68000ff | 39/69 (56.52%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 13:01:27 | aa99546b5faf6037e7216d32586cf2ad | 32/70 (45.71%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 13:01:27 | aa99546b5faf6037e7216d32586cf2ad | 32/70 (45.71%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 12:59:22 | 306a2b55333803d66156d12c89114094 | n/a | Gozi | 83.166.240.191:443 |
| 2018-11-19 12:59:22 | 306a2b55333803d66156d12c89114094 | n/a | Gozi | 83.166.240.191:443 |
| 2018-11-19 12:56:28 | b8e95f07c13df04b03561dca79996572 | 8/68 (11.76%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 12:56:28 | b8e95f07c13df04b03561dca79996572 | 8/68 (11.76%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 12:55:58 | 3354bf13fa290cfa6ca6781df148ea58 | n/a | Gozi | 83.166.240.191:443 |
| 2018-11-19 12:55:58 | 3354bf13fa290cfa6ca6781df148ea58 | n/a | Gozi | 83.166.240.191:443 |
| 2018-11-19 12:53:06 | 74f87963474d6c1c19629e95928e8a61 | n/a | Gozi | 83.166.240.191:443 |
| 2018-11-19 12:53:06 | 74f87963474d6c1c19629e95928e8a61 | n/a | Gozi | 83.166.240.191:443 |
| 2018-11-19 12:51:20 | f5c2859b57d99ec1623ad123fa820972 | n/a | Gozi | 83.166.240.191:443 |
| 2018-11-19 12:51:20 | f5c2859b57d99ec1623ad123fa820972 | n/a | Gozi | 83.166.240.191:443 |
| 2018-11-19 12:29:49 | 08de63df812638c63afa8208a3408567 | 39/59 (66.10%)
| Gozi | 83.166.240.191:443 |
| 2018-11-19 12:29:49 | 08de63df812638c63afa8208a3408567 | 39/59 (66.10%)
| Gozi | 83.166.240.191:443 |
# of entries: 50 (max: 100)