SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 3979fde3b5025f8b331ee90a998bdef8fb741c6d.

Database Entry


SHA1 Fingerprint:3979fde3b5025f8b331ee90a998bdef8fb741c6d
Certificate Common Name (CN):*
Issuer Distinguished Name (DN):*
TLS Version:TLS 1.2' NOTBEF
First seen:2019-06-15 09:47:26 UTC
Last seen:2019-06-25 20:15:56 UTC
Status:Blacklisted
Listing reason:Gozi C&C
Listing date:2019-06-25 19:23:59
Malware samples:4
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2019-06-25 20:15:56370b2dc12514c6c5c78a94d8f43ed2daVirustotal results 28/72 (38.89%) Gozi 31.214.157.78:443
2019-06-25 20:15:56370b2dc12514c6c5c78a94d8f43ed2daVirustotal results 28/72 (38.89%) Gozi 31.214.157.78:443
2019-06-25 19:36:207c3f801620ea1cebd29889400ec9af67Virustotal results 11/67 (16.42%) Gozi 31.214.157.78:443
2019-06-25 19:36:207c3f801620ea1cebd29889400ec9af67Virustotal results 11/67 (16.42%) Gozi 31.214.157.78:443
2019-06-25 15:56:59ff0a23c11a980330aa29ae387777eb43Virustotal results 20/70 (28.57%) Gozi 31.214.157.78:443
2019-06-25 15:56:59ff0a23c11a980330aa29ae387777eb43Virustotal results 20/70 (28.57%) Gozi 31.214.157.78:443
2019-06-15 09:47:26d78e9c3dec27d722f9d9bea27d0327ffVirustotal results 32/70 (45.71%) Gozi 31.214.157.78:443
2019-06-15 09:47:26d78e9c3dec27d722f9d9bea27d0327ffVirustotal results 32/70 (45.71%) Gozi 31.214.157.78:443

# of entries: 8 (max: 100)