SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 5d8e26000d2c35f407e9aabe58aa00c67fc30b8b.
Database Entry
| SHA1 Fingerprint: | 5d8e26000d2c35f407e9aabe58aa00c67fc30b8b |
|---|---|
| Certificate Common Name (CN): | ryanfitzgibbon.com |
| Issuer Distinguished Name (DN): | Let's Encrypt Authority X3 |
| TLS Version: | TLS 1.2 |
| First seen: | 2018-11-05 09:00:29 UTC |
| Last seen: | 2018-11-08 10:26:56 UTC |
| Status: | Blacklisted |
| Listing reason: | Gozi C&C |
| Listing date: | 2018-11-08 11:42:31 |
| Malware samples: | 3 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2018-11-08 10:26:56 | d0a9334b5b6b7d8f18677a8f6677ad48 |  8/67 (11.94%)
| Gozi | 93.189.43.230:443 |
| 2018-11-08 10:26:56 | d0a9334b5b6b7d8f18677a8f6677ad48 | 8/67 (11.94%)
| Gozi | 93.189.43.230:443 |
| 2018-11-08 10:25:06 | 40f21ca82be00e059495072e0719b937 | n/a | Gozi | 93.189.43.230:443 |
| 2018-11-08 10:25:06 | 40f21ca82be00e059495072e0719b937 | n/a | Gozi | 93.189.43.230:443 |
| 2018-11-05 09:00:30 | 16f9a6dd76394a9521739e9af36e1f97 | 33/67 (49.25%)
| 93.189.43.230:443 | |
| 2018-11-05 09:00:30 | 16f9a6dd76394a9521739e9af36e1f97 | 33/67 (49.25%)
| 93.189.43.230:443 |
# of entries: 6 (max: 100)