SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 4aa02828567a232798763f7531ce90e0167ef9ab.
Database Entry
| SHA1 Fingerprint: | 4aa02828567a232798763f7531ce90e0167ef9ab |
|---|---|
| Certificate Common Name (CN): | vvietnamnews.xyz |
| Issuer Distinguished Name (DN): | Let's Encrypt Authority X3 |
| TLS Version: | TLS 1.2 |
| First seen: | 2020-06-16 00:23:50 UTC |
| Last seen: | 2020-06-16 14:01:40 UTC |
| Status: | Blacklisted |
| Listing reason: | Gozi C&C |
| Listing date: | 2020-06-16 05:54:36 |
| Malware samples: | 355 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2020-06-16 14:01:40 | af1d42dbc4d7b79113c90f0ae22ed22d |  26 / 71 (36.62%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 14:01:40 | af1d42dbc4d7b79113c90f0ae22ed22d | 26 / 71 (36.62%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 07:01:40 | ff1cd2983777d8752312224cd5e55700 | 23 / 72 (31.94%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 07:01:40 | ff1cd2983777d8752312224cd5e55700 | 23 / 72 (31.94%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:59:37 | fbbf5f7feb6e7198c1151deb0e11ae25 | 24 / 73 (32.88%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:59:37 | fbbf5f7feb6e7198c1151deb0e11ae25 | 24 / 73 (32.88%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:56:46 | f90f69ed063a3732ba3e2b214e1f38e7 | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:56:46 | f90f69ed063a3732ba3e2b214e1f38e7 | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:56:33 | f6d558522998ee25603b2e95a8aff419 | 23 / 74 (31.08%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:56:33 | f6d558522998ee25603b2e95a8aff419 | 23 / 74 (31.08%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:54:46 | fe58275e93d431f40f59eedc9e1de392 | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:54:46 | fe58275e93d431f40f59eedc9e1de392 | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:53:07 | faa2a08ecb3e6d1d36cbde08ab0ce6e3 | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:53:07 | faa2a08ecb3e6d1d36cbde08ab0ce6e3 | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:51:31 | e8290bafda8e223cae94a67dd696dd8a | 23 / 74 (31.08%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:51:31 | e8290bafda8e223cae94a67dd696dd8a | 23 / 74 (31.08%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:51:30 | f68ba1705196b26cfce1f964f015379d | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:51:30 | f68ba1705196b26cfce1f964f015379d | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:51:07 | fad17275b8064ff8b39d52c9a9905257 | 23 / 74 (31.08%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:51:07 | fad17275b8064ff8b39d52c9a9905257 | 23 / 74 (31.08%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:50:26 | ff5f8d96942eb8da7b99266587eac785 | 25 / 74 (33.78%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:50:26 | ff5f8d96942eb8da7b99266587eac785 | 25 / 74 (33.78%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:50:13 | fde98c57cfbb5da8cfaac27e03b4c779 | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:50:13 | fde98c57cfbb5da8cfaac27e03b4c779 | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:50:01 | fb558fa6af04ac7e3093bf70a066764c | 24 / 73 (32.88%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:50:01 | fb558fa6af04ac7e3093bf70a066764c | 24 / 73 (32.88%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:49:09 | f7a4496e581927b60ab27e44d49f4098 | 25 / 72 (34.72%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:49:09 | f7a4496e581927b60ab27e44d49f4098 | 25 / 72 (34.72%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:49:03 | f8b55a0d0b0482367fe651936c61c68a | 22 / 73 (30.14%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:49:03 | f8b55a0d0b0482367fe651936c61c68a | 22 / 73 (30.14%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:48:47 | fb50c358674fc1691b3abde081449e45 | 23 / 72 (31.94%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:48:47 | fb50c358674fc1691b3abde081449e45 | 23 / 72 (31.94%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:48:25 | f6a4eb10681d8c04fd49955fc738a726 | 23 / 72 (31.94%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:48:25 | f6a4eb10681d8c04fd49955fc738a726 | 23 / 72 (31.94%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:47:54 | fa358120c5779885716acef051c7da9d | 23 / 74 (31.08%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:47:54 | fa358120c5779885716acef051c7da9d | 23 / 74 (31.08%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:47:33 | f0c2fcd29a8f8353c5c864af2830e3bd | 23 / 74 (31.08%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:47:33 | f0c2fcd29a8f8353c5c864af2830e3bd | 23 / 74 (31.08%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:47:10 | f521e51cd0a7ace6ecd82d75c92cf59d | 23 / 74 (31.08%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:47:10 | f521e51cd0a7ace6ecd82d75c92cf59d | 23 / 74 (31.08%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:46:59 | fae0d8677a94c4085af028fd0a7d0528 | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:46:59 | fae0d8677a94c4085af028fd0a7d0528 | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:46:27 | f14aad6b4c941f992c2b179fcf69eb49 | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:46:27 | f14aad6b4c941f992c2b179fcf69eb49 | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:46:25 | f87a1d76a421f235aa7220b7a8cfbc98 | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:46:25 | f87a1d76a421f235aa7220b7a8cfbc98 | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:46:03 | e9c37380ed7dcaef84f46fcaa2b57b94 | 23 / 74 (31.08%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:46:03 | e9c37380ed7dcaef84f46fcaa2b57b94 | 23 / 74 (31.08%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:45:57 | ddacfdabad02364fd78eb42480d5332a | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:45:57 | ddacfdabad02364fd78eb42480d5332a | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:45:55 | f7ff6704a765b99fc39821b25ec1dce8 | 25 / 73 (34.25%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:45:55 | f7ff6704a765b99fc39821b25ec1dce8 | 25 / 73 (34.25%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:44:52 | f27b8bf124097eef31e7e4a681c8b8c0 | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:44:52 | f27b8bf124097eef31e7e4a681c8b8c0 | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:44:48 | eabac968f7ed4a292244aac6dc4e8654 | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:44:48 | eabac968f7ed4a292244aac6dc4e8654 | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:44:28 | f5300299b7b434dc75f5f0bccdcd0573 | 22 / 72 (30.56%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:44:28 | f5300299b7b434dc75f5f0bccdcd0573 | 22 / 72 (30.56%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:44:22 | e7b02b7f4199d3b8f7b6c1ed202ea392 | 22 / 73 (30.14%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:44:22 | e7b02b7f4199d3b8f7b6c1ed202ea392 | 22 / 73 (30.14%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:44:15 | ec872ca2ff19a949fac487c1822a16df | 25 / 73 (34.25%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:44:15 | ec872ca2ff19a949fac487c1822a16df | 25 / 73 (34.25%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:44:06 | efbc88aaba6dabab7f5ec226976da259 | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:44:06 | efbc88aaba6dabab7f5ec226976da259 | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:43:57 | efa564acbe08d730f51e4aa2060ff4ca | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:43:57 | efa564acbe08d730f51e4aa2060ff4ca | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:43:03 | f1e69af69a7b534c8d26d7d1d98843c4 | 23 / 74 (31.08%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:43:03 | f1e69af69a7b534c8d26d7d1d98843c4 | 23 / 74 (31.08%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:42:47 | e7457f6c658c8b8189628a6ef4dee402 | 23 / 74 (31.08%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:42:47 | e7457f6c658c8b8189628a6ef4dee402 | 23 / 74 (31.08%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:42:45 | f135b757f0e2004ad000a9df030d15d1 | 24 / 74 (32.43%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:42:45 | f135b757f0e2004ad000a9df030d15d1 | 24 / 74 (32.43%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:42:26 | d3b1d9d827f92ad10feda7c913c31d20 | 25 / 73 (34.25%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:42:26 | f272aa63455fc85002e0276cd06905c0 | 25 / 73 (34.25%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:42:26 | d3b1d9d827f92ad10feda7c913c31d20 | 25 / 73 (34.25%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:42:26 | f272aa63455fc85002e0276cd06905c0 | 25 / 73 (34.25%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:41:52 | e9423d30b2bea9eab35a3e0b78169838 | 24 / 71 (33.80%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:41:52 | e9423d30b2bea9eab35a3e0b78169838 | 24 / 71 (33.80%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:41:34 | e893888efb3d53788eb8f1dbb6c1924f | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:41:34 | e893888efb3d53788eb8f1dbb6c1924f | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:41:20 | ed6559271caeeec604c4c7860e35858c | 23 / 74 (31.08%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:41:20 | ed6559271caeeec604c4c7860e35858c | 23 / 74 (31.08%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:41:02 | e3dd3b95350a1d9f35b2190fa9b721e4 | 23 / 74 (31.08%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:41:02 | e3dd3b95350a1d9f35b2190fa9b721e4 | 23 / 74 (31.08%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:40:57 | e0562d8d945483e0503c1bdd7b6f3798 | 23 / 71 (32.39%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:40:57 | e0562d8d945483e0503c1bdd7b6f3798 | 23 / 71 (32.39%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:40:45 | ee31b9d32bcbae9baa0c2bea506a5cac | 22 / 72 (30.56%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:40:45 | ee31b9d32bcbae9baa0c2bea506a5cac | 22 / 72 (30.56%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:40:36 | ea5372bd1cf410e7afdb9a14b8b9f909 | 25 / 73 (34.25%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:40:36 | ea5372bd1cf410e7afdb9a14b8b9f909 | 25 / 73 (34.25%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:40:15 | d7cba70de10fd38b4656139d95be9b77 | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:40:15 | d7cba70de10fd38b4656139d95be9b77 | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:39:50 | e8cd3ce752213d83b25d61e06e54c797 | 26 / 73 (35.62%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:39:50 | e8cd3ce752213d83b25d61e06e54c797 | 26 / 73 (35.62%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:39:36 | ea4337545cab352b4dcb755c73dc24c4 | 22 / 73 (30.14%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:39:36 | ea4337545cab352b4dcb755c73dc24c4 | 22 / 73 (30.14%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:39:28 | e71e203ff46e899a4dfaf87fa1d8083e | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:39:28 | e71e203ff46e899a4dfaf87fa1d8083e | 23 / 73 (31.51%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:39:17 | e91fab9fd5e4d860c168542cab51e28a | 25 / 73 (34.25%)
| Gozi | 45.142.213.203:443 |
| 2020-06-16 06:39:17 | e91fab9fd5e4d860c168542cab51e28a | 25 / 73 (34.25%)
| Gozi | 45.142.213.203:443 |
# of entries: 100 (max: 100)