SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 4ef2cce6edaecb12652259cdf9815b656d1da27a.
Database Entry
| SHA1 Fingerprint: | 4ef2cce6edaecb12652259cdf9815b656d1da27a |
|---|---|
| Certificate Common Name (CN): | * |
| Issuer Distinguished Name (DN): | * |
| TLS Version: | TLS 1.2 |
| First seen: | 2018-10-18 11:50:25 UTC |
| Last seen: | 2018-10-28 11:21:30 UTC |
| Status: | Blacklisted |
| Listing reason: | Gozi C&C |
| Listing date: | 2018-10-28 12:43:48 |
| Malware samples: | 74 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2018-10-28 11:21:30 | 5f6c89bd17765daf9a6902a9063348af | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-28 11:21:30 | 5f6c89bd17765daf9a6902a9063348af | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:28:00 | 71fe52bfc6a1f08cc09fe6765d854817 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:28:00 | 71fe52bfc6a1f08cc09fe6765d854817 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:24:14 | 27c52caecb2b22d95d0e843f6759f984 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:24:14 | 27c52caecb2b22d95d0e843f6759f984 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:22:53 | b0b0c679f20a4278445c48fa05f4dc86 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:22:53 | b0b0c679f20a4278445c48fa05f4dc86 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:22:42 | 246c3f8c4fe7267d57e8096ada338e8b | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:22:42 | 246c3f8c4fe7267d57e8096ada338e8b | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:21:37 | 28af8831d6dc4266b74f7571e4da2ce9 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:21:37 | 2c469037935323775fe2c59f96beedab | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:21:37 | 28af8831d6dc4266b74f7571e4da2ce9 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:21:37 | 2c469037935323775fe2c59f96beedab | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:17:46 | 9af648654ca02b53f62979a2fddb195e | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:17:46 | 9af648654ca02b53f62979a2fddb195e | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:17:11 | 3a8bc6488f480ca670ae1a2497df6e6a | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:17:11 | 3a8bc6488f480ca670ae1a2497df6e6a | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:16:50 | f38b80b5eb766ac37513777970fa52be |  33/68 (48.53%)
| Gozi | 54.39.81.123:443 |
| 2018-10-19 06:16:50 | f38b80b5eb766ac37513777970fa52be | 33/68 (48.53%)
| Gozi | 54.39.81.123:443 |
| 2018-10-19 06:09:22 | 146ebf50aa47b6f1594641dce7556d5d | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:09:22 | 146ebf50aa47b6f1594641dce7556d5d | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:07:51 | 2c46d737e4b5b8470f166a222c45bc77 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:07:51 | 2c46d737e4b5b8470f166a222c45bc77 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:03:08 | 7a28fd5242cddd9b782d9234ed44f78a | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:03:08 | 7a28fd5242cddd9b782d9234ed44f78a | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:02:28 | 91fcdf224ee443911081509425a23e68 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:02:28 | 91fcdf224ee443911081509425a23e68 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:02:05 | 7514dc1ef01c49c5d2e79aea312719bc | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 06:02:05 | 7514dc1ef01c49c5d2e79aea312719bc | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 05:58:17 | ff2457e8ceafe0abe9853620fa3120ee | 35/68 (51.47%)
| Gozi | 54.39.81.123:443 |
| 2018-10-19 05:58:17 | ff2457e8ceafe0abe9853620fa3120ee | 35/68 (51.47%)
| Gozi | 54.39.81.123:443 |
| 2018-10-19 04:38:56 | 27bb32fc386be17fd7a328949f601897 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 04:38:56 | 27bb32fc386be17fd7a328949f601897 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 04:38:07 | 562e4ceca15b6d147d73d3deb5e5e6df | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 04:38:07 | 562e4ceca15b6d147d73d3deb5e5e6df | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 04:32:22 | 620215b0c467d3976d5f1af6598ad7c0 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 04:32:22 | 620215b0c467d3976d5f1af6598ad7c0 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 04:32:01 | a005f84b374a748313a9b251a6a32748 | 33/68 (48.53%)
| Gozi | 54.39.81.123:443 |
| 2018-10-19 04:32:01 | a005f84b374a748313a9b251a6a32748 | 33/68 (48.53%)
| Gozi | 54.39.81.123:443 |
| 2018-10-19 04:30:44 | d5ea5e71dbf8647ec15edf5fb40a94c0 | 32/67 (47.76%)
| Gozi | 54.39.81.123:443 |
| 2018-10-19 04:30:44 | d5ea5e71dbf8647ec15edf5fb40a94c0 | 32/67 (47.76%)
| Gozi | 54.39.81.123:443 |
| 2018-10-19 04:25:29 | 229e68e15417c328550b343e1a4bf203 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 04:25:29 | 229e68e15417c328550b343e1a4bf203 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 04:14:25 | 208dfd3f9877f4e657a7ee93d0598460 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 04:14:25 | 208dfd3f9877f4e657a7ee93d0598460 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 04:14:23 | a3bd683e5701928d55b13eec7c9fc3e8 | 31/67 (46.27%)
| Gozi | 54.39.81.123:443 |
| 2018-10-19 04:14:23 | a3bd683e5701928d55b13eec7c9fc3e8 | 31/67 (46.27%)
| Gozi | 54.39.81.123:443 |
| 2018-10-19 04:11:36 | 65b3ac51e3e0d93dc9b357bb539343f4 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 04:11:36 | 65b3ac51e3e0d93dc9b357bb539343f4 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 04:07:39 | e89fc3f6d6a7b3176294e92071499e01 | 35/67 (52.24%)
| Gozi | 54.39.81.123:443 |
| 2018-10-19 04:07:39 | e89fc3f6d6a7b3176294e92071499e01 | 35/67 (52.24%)
| Gozi | 54.39.81.123:443 |
| 2018-10-19 02:47:28 | 1df077638e68b8fbb49c2defe05ddcfd | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 02:47:28 | 1df077638e68b8fbb49c2defe05ddcfd | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 02:43:44 | 44cb79fa50d5a90630bba13a08319c3c | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 02:43:44 | 44cb79fa50d5a90630bba13a08319c3c | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 02:40:59 | 47a3377b861c89b157b85762ca1da8b2 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 02:40:59 | 47a3377b861c89b157b85762ca1da8b2 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 02:31:55 | 79c62fcd827ba4dae5c16e7379d0cd9e | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 02:31:55 | 79c62fcd827ba4dae5c16e7379d0cd9e | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 02:29:57 | 746d6830521610127645f7e7c1a126ed | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 02:29:57 | 746d6830521610127645f7e7c1a126ed | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 02:29:34 | 6c4b7fbbf0afa308f43b38ddf19d6598 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 02:29:34 | 6c4b7fbbf0afa308f43b38ddf19d6598 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 02:26:55 | 92d835dde038bd5f8fcfa3f36619dfb3 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 02:26:55 | 92d835dde038bd5f8fcfa3f36619dfb3 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 02:22:15 | d674360efac0d9a670d0accaca8281be | 33/67 (49.25%)
| Gozi | 54.39.81.123:443 |
| 2018-10-19 02:22:15 | d674360efac0d9a670d0accaca8281be | 33/67 (49.25%)
| Gozi | 54.39.81.123:443 |
| 2018-10-19 02:02:17 | bfa5ee0be84e61f432d6d6367b632ca3 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 02:02:17 | bfa5ee0be84e61f432d6d6367b632ca3 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 02:00:04 | 7d17ab3184c0b6ef04ca613f3060eaa3 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 02:00:04 | 7d17ab3184c0b6ef04ca613f3060eaa3 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 00:11:11 | 819c2384edace44d7ac1acf1b8ae2a42 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 00:11:11 | 819c2384edace44d7ac1acf1b8ae2a42 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 00:03:39 | 1f11eefa0dc1516f4c94b5659d215378 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 00:03:39 | 1f11eefa0dc1516f4c94b5659d215378 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 00:02:55 | 3ff08338d11b348ac11f4f04d4506a1c | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 00:02:55 | 3ff08338d11b348ac11f4f04d4506a1c | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-19 00:01:55 | a036d8092aac7dde91ce1fa323fdcdfa | 32/67 (47.76%)
| Gozi | 54.39.81.123:443 |
| 2018-10-19 00:01:55 | a036d8092aac7dde91ce1fa323fdcdfa | 32/67 (47.76%)
| Gozi | 54.39.81.123:443 |
| 2018-10-18 23:51:13 | ac1b627b41b9341dba98cb209dc39c46 | 32/67 (47.76%)
| Gozi | 54.39.81.123:443 |
| 2018-10-18 23:51:13 | ac1b627b41b9341dba98cb209dc39c46 | 32/67 (47.76%)
| Gozi | 54.39.81.123:443 |
| 2018-10-18 23:50:02 | ce74837888e299d2489e3f1ae921729d | 34/68 (50.00%)
| Gozi | 54.39.81.123:443 |
| 2018-10-18 23:50:02 | ce74837888e299d2489e3f1ae921729d | 34/68 (50.00%)
| Gozi | 54.39.81.123:443 |
| 2018-10-18 23:49:49 | 622597650fdea1990e30ec5fb65ff1bc | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-18 23:49:49 | 622597650fdea1990e30ec5fb65ff1bc | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-18 23:45:48 | 3a4f89fde8598e87598e5b2b8dce6747 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-18 23:45:48 | 3a4f89fde8598e87598e5b2b8dce6747 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-18 23:45:44 | 9803c2f9c8a26f78790065673656b028 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-18 23:45:44 | 9803c2f9c8a26f78790065673656b028 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-18 22:10:30 | 086b5adf0e5bb619331189bb34b1b31d | n/a | 54.39.81.123:443 | |
| 2018-10-18 22:10:30 | 086b5adf0e5bb619331189bb34b1b31d | n/a | 54.39.81.123:443 | |
| 2018-10-18 22:02:59 | 597d9c66bdecebaed2cf88de9101132d | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-18 22:02:59 | 597d9c66bdecebaed2cf88de9101132d | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-18 22:02:07 | 60b1addfd673bb5694ef90ab170121b3 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-18 22:02:07 | 60b1addfd673bb5694ef90ab170121b3 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-18 22:02:05 | 43b427461bea91127430e72c6b3b95a7 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-18 22:02:05 | 43b427461bea91127430e72c6b3b95a7 | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-18 22:00:41 | 5ea197d038ba8a10aadd7e2e1951512a | n/a | Gozi | 54.39.81.123:443 |
| 2018-10-18 22:00:41 | 5ea197d038ba8a10aadd7e2e1951512a | n/a | Gozi | 54.39.81.123:443 |
# of entries: 100 (max: 100)