SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 604c15528860f0f9def6a5ace419105f133a886c.
Database Entry
| SHA1 Fingerprint: | 604c15528860f0f9def6a5ace419105f133a886c |
|---|---|
| Certificate Common Name (CN): | surfclubrye.com |
| Issuer Distinguished Name (DN): | Let's Encrypt Authority X3 |
| TLS Version: | TLS 1.2 |
| First seen: | 2018-11-01 15:21:38 UTC |
| Last seen: | 2018-12-04 04:16:09 UTC |
| Status: | Blacklisted |
| Listing reason: | Gozi C&C |
| Listing date: | 2018-11-23 11:26:12 |
| Malware samples: | 56 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2018-12-04 04:16:09 | 0f930c9ad106265c5fd604a976a7ec43 |  46/70 (65.71%)
| Gozi | 192.162.244.170:443 |
| 2018-12-04 04:16:09 | 0f930c9ad106265c5fd604a976a7ec43 | 46/70 (65.71%)
| Gozi | 192.162.244.170:443 |
| 2018-12-03 17:08:23 | b3f0ff2ff6d777a6608ca6b47e7c4719 | 25/67 (37.31%)
| Gozi | 192.162.244.170:443 |
| 2018-12-03 17:08:23 | b3f0ff2ff6d777a6608ca6b47e7c4719 | 25/67 (37.31%)
| Gozi | 192.162.244.170:443 |
| 2018-12-03 10:34:16 | 20b09b6eba0f55b5e3d3051be6c174e6 | 26/67 (38.81%)
| Gozi | 192.162.244.170:443 |
| 2018-12-03 10:34:16 | 20b09b6eba0f55b5e3d3051be6c174e6 | 26/67 (38.81%)
| Gozi | 192.162.244.170:443 |
| 2018-12-03 10:13:01 | cbe11741930cc6559f6b22f42848fcc8 | 9/68 (13.24%)
| Gozi | 192.162.244.170:443 |
| 2018-12-03 10:13:01 | cbe11741930cc6559f6b22f42848fcc8 | 9/68 (13.24%)
| Gozi | 192.162.244.170:443 |
| 2018-12-03 08:33:40 | 70acfa5b2185bf9c1cfaa0389c7cb320 | 43/69 (62.32%)
| Gozi | 192.162.244.170:443 |
| 2018-12-03 08:33:40 | 70acfa5b2185bf9c1cfaa0389c7cb320 | 43/69 (62.32%)
| Gozi | 192.162.244.170:443 |
| 2018-12-03 06:25:49 | 42d4fb42ced605e6fc1f96c78a4ae48b | 25/67 (37.31%)
| Gozi | 192.162.244.170:443 |
| 2018-12-03 06:25:49 | 42d4fb42ced605e6fc1f96c78a4ae48b | 25/67 (37.31%)
| Gozi | 192.162.244.170:443 |
| 2018-12-02 15:12:13 | d24c46cb6a2d3c586acb4d37b225ffd0 | 25/68 (36.76%)
| Gozi | 192.162.244.170:443 |
| 2018-12-02 15:12:13 | d24c46cb6a2d3c586acb4d37b225ffd0 | 25/68 (36.76%)
| Gozi | 192.162.244.170:443 |
| 2018-12-02 14:23:14 | 2db25406150eab8e4c487008a1c615e8 | 48/67 (71.64%)
| Gozi | 192.162.244.170:443 |
| 2018-12-02 14:23:14 | 2db25406150eab8e4c487008a1c615e8 | 48/67 (71.64%)
| Gozi | 192.162.244.170:443 |
| 2018-12-02 11:39:36 | eba8b5b8b9d9783900cf89e28e58e065 | 26/68 (38.24%)
| Gozi | 192.162.244.170:443 |
| 2018-12-02 11:39:36 | eba8b5b8b9d9783900cf89e28e58e065 | 26/68 (38.24%)
| Gozi | 192.162.244.170:443 |
| 2018-12-02 11:07:29 | 2d51d9949710cf8105c183016ea52ab3 | 25/65 (38.46%)
| Gozi | 192.162.244.170:443 |
| 2018-12-02 11:07:29 | 2d51d9949710cf8105c183016ea52ab3 | 25/65 (38.46%)
| Gozi | 192.162.244.170:443 |
| 2018-11-28 13:56:34 | d99180388f5268a16ef67bec5b2d5066 | 9/70 (12.86%)
| Gozi | 192.162.244.170:443 |
| 2018-11-28 13:56:34 | d99180388f5268a16ef67bec5b2d5066 | 9/70 (12.86%)
| Gozi | 192.162.244.170:443 |
| 2018-11-27 14:57:49 | 5afadf611f8dd7b0383c230da43987c3 | 6/68 (8.82%)
| Gozi | 192.162.244.170:443 |
| 2018-11-27 14:57:49 | 5afadf611f8dd7b0383c230da43987c3 | 6/68 (8.82%)
| Gozi | 192.162.244.170:443 |
| 2018-11-26 17:43:31 | 3e8aa3262ea3376ce8267d7d91819ee4 | 7/68 (10.29%)
| Gozi | 192.162.244.170:443 |
| 2018-11-26 17:43:31 | 3e8aa3262ea3376ce8267d7d91819ee4 | 7/68 (10.29%)
| Gozi | 192.162.244.170:443 |
| 2018-11-23 13:13:49 | 77e54f7b120ead95172560d64453b743 | 20/68 (29.41%)
| Gozi | 192.162.244.170:443 |
| 2018-11-23 13:13:49 | 77e54f7b120ead95172560d64453b743 | 20/68 (29.41%)
| Gozi | 192.162.244.170:443 |
| 2018-11-23 12:59:37 | 26ff87f9f89d5d96f022babcbf9095e9 | 41/69 (59.42%)
| Gozi | 192.162.244.170:443 |
| 2018-11-23 12:59:37 | 26ff87f9f89d5d96f022babcbf9095e9 | 41/69 (59.42%)
| Gozi | 192.162.244.170:443 |
| 2018-11-23 10:36:59 | f4036f9a4a24837c9dc57e15c38945e2 | 38/69 (55.07%)
| Gozi | 192.162.244.170:443 |
| 2018-11-23 10:36:59 | f4036f9a4a24837c9dc57e15c38945e2 | 38/69 (55.07%)
| Gozi | 192.162.244.170:443 |
| 2018-11-23 04:30:06 | f98342bd563ef8e85b354ab7b1b30aa6 | 41/70 (58.57%)
| Gozi | 192.162.244.170:443 |
| 2018-11-23 04:30:06 | f98342bd563ef8e85b354ab7b1b30aa6 | 41/70 (58.57%)
| Gozi | 192.162.244.170:443 |
| 2018-11-23 00:23:09 | a0c5a32561e7b6ea1e37bb93e6be1204 | 39/70 (55.71%)
| Gozi | 192.162.244.170:443 |
| 2018-11-23 00:23:09 | a0c5a32561e7b6ea1e37bb93e6be1204 | 39/70 (55.71%)
| Gozi | 192.162.244.170:443 |
| 2018-11-22 22:13:48 | 8fd6a639c4ef6f5c7030a854740b9e7b | 40/71 (56.34%)
| Gozi | 192.162.244.170:443 |
| 2018-11-22 22:13:48 | 8fd6a639c4ef6f5c7030a854740b9e7b | 40/71 (56.34%)
| Gozi | 192.162.244.170:443 |
| 2018-11-22 11:57:23 | 4c581a340955f3adf4ec6b6cc649dfdf | 40/70 (57.14%)
| Gozi | 192.162.244.170:443 |
| 2018-11-22 11:57:23 | 4c581a340955f3adf4ec6b6cc649dfdf | 40/70 (57.14%)
| Gozi | 192.162.244.170:443 |
| 2018-11-22 11:07:41 | c15417659ee74d1b078a2fc2422cc676 | 41/68 (60.29%)
| Gozi | 192.162.244.170:443 |
| 2018-11-22 11:07:41 | c15417659ee74d1b078a2fc2422cc676 | 41/68 (60.29%)
| Gozi | 192.162.244.170:443 |
| 2018-11-22 08:56:42 | 02d85be40a8cfb8c83ffdcbe160d6aab | 28/67 (41.79%)
| Gozi | 192.162.244.170:443 |
| 2018-11-22 08:56:42 | 02d85be40a8cfb8c83ffdcbe160d6aab | 28/67 (41.79%)
| Gozi | 192.162.244.170:443 |
| 2018-11-21 00:19:50 | 43e10a1fe987729081346658adacd41f | 40/68 (58.82%)
| Gozi | 192.162.244.170:443 |
| 2018-11-21 00:19:50 | 43e10a1fe987729081346658adacd41f | 40/68 (58.82%)
| Gozi | 192.162.244.170:443 |
| 2018-11-21 00:17:26 | 3ad2f322877b8b1b162560e1c0b9664f | 42/70 (60.00%)
| Gozi | 192.162.244.170:443 |
| 2018-11-21 00:17:26 | 3ad2f322877b8b1b162560e1c0b9664f | 42/70 (60.00%)
| Gozi | 192.162.244.170:443 |
| 2018-11-21 00:10:55 | 3ff1c5e5acbe10e4d7be4ca41bc5978a | 43/69 (62.32%)
| Gozi | 192.162.244.170:443 |
| 2018-11-21 00:10:55 | 3ff1c5e5acbe10e4d7be4ca41bc5978a | 43/69 (62.32%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 23:47:26 | 56ecf0f2a1054440986464d6312e4cfc | 40/69 (57.97%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 23:47:26 | 56ecf0f2a1054440986464d6312e4cfc | 40/69 (57.97%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 23:37:11 | 748ffd11415af6b75e569cf775aea278 | 42/70 (60.00%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 23:37:11 | 748ffd11415af6b75e569cf775aea278 | 42/70 (60.00%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 22:51:57 | ba9546429bd414b7db95badc60552b5d | 40/69 (57.97%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 22:51:57 | ba9546429bd414b7db95badc60552b5d | 40/69 (57.97%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 22:39:48 | aea6314caf8ff302340bd265b014faff | 38/68 (55.88%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 22:39:48 | aea6314caf8ff302340bd265b014faff | 38/68 (55.88%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 22:32:24 | c744e3b95c4bdb6bfc8bc599fbbf0a78 | 39/69 (56.52%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 22:32:24 | c744e3b95c4bdb6bfc8bc599fbbf0a78 | 39/69 (56.52%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 22:13:10 | d54068c93017de1de5a61ead404c77f7 | 39/68 (57.35%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 22:13:10 | d54068c93017de1de5a61ead404c77f7 | 39/68 (57.35%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 22:10:20 | df3932ac71adf34ca958522d44741f45 | 38/66 (57.58%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 22:10:20 | df3932ac71adf34ca958522d44741f45 | 38/66 (57.58%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 21:38:21 | eae5c48dc40155f856de782529fb0799 | 40/67 (59.70%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 21:38:21 | eae5c48dc40155f856de782529fb0799 | 40/67 (59.70%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 18:46:11 | 38f9a23bfd6f4be5e864e7dcfa794804 | 40/69 (57.97%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 18:46:11 | 38f9a23bfd6f4be5e864e7dcfa794804 | 40/69 (57.97%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 14:56:32 | b6c05e2c2e84db507b7d9c43876fe57d | 37/67 (55.22%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 14:56:32 | b6c05e2c2e84db507b7d9c43876fe57d | 37/67 (55.22%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 09:06:12 | 411fab89fef0f084ab0cec733c4e4f38 | 38/67 (56.72%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 09:06:12 | 411fab89fef0f084ab0cec733c4e4f38 | 38/67 (56.72%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 09:05:14 | 798620bda352515762b45d1d6de916c3 | 39/69 (56.52%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 09:05:14 | 798620bda352515762b45d1d6de916c3 | 39/69 (56.52%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 08:19:02 | 491d91fb871bac29b053e77ac2362d2a | 34/67 (50.75%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 08:19:02 | 491d91fb871bac29b053e77ac2362d2a | 34/67 (50.75%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 04:20:57 | 5f69a64d9e3db34d4966d44f0f16d333 | 14/67 (20.90%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 04:20:57 | 5f69a64d9e3db34d4966d44f0f16d333 | 14/67 (20.90%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 03:42:45 | 812fb37409273bc31a046eca814df710 | 42/69 (60.87%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 03:42:45 | 812fb37409273bc31a046eca814df710 | 42/69 (60.87%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 01:24:30 | df243e5166dd6a15659d31127d8a57bc | 40/69 (57.97%)
| Gozi | 192.162.244.170:443 |
| 2018-11-20 01:24:30 | df243e5166dd6a15659d31127d8a57bc | 40/69 (57.97%)
| Gozi | 192.162.244.170:443 |
| 2018-11-19 22:45:17 | 57405e356fa64525a60b006d860c6871 | 41/70 (58.57%)
| Gozi | 192.162.244.170:443 |
| 2018-11-19 22:45:17 | 57405e356fa64525a60b006d860c6871 | 41/70 (58.57%)
| Gozi | 192.162.244.170:443 |
| 2018-11-18 18:48:26 | 28cf52ce1362fa50c93e4ecd7969902e | n/a | Gozi | 192.162.244.170:443 |
| 2018-11-18 18:48:26 | 28cf52ce1362fa50c93e4ecd7969902e | n/a | Gozi | 192.162.244.170:443 |
| 2018-11-18 17:45:35 | a2c078168055bc9661a62fbc97c3241c | 34/69 (49.28%)
| Gozi | 192.162.244.170:443 |
| 2018-11-18 17:45:35 | a2c078168055bc9661a62fbc97c3241c | 34/69 (49.28%)
| Gozi | 192.162.244.170:443 |
| 2018-11-18 17:30:15 | cbf0d3464eac32eacf313dc3361d7ea0 | 15/68 (22.06%)
| Gozi | 192.162.244.170:443 |
| 2018-11-18 17:30:15 | cbf0d3464eac32eacf313dc3361d7ea0 | 15/68 (22.06%)
| Gozi | 192.162.244.170:443 |
| 2018-11-18 16:33:43 | a446386bd4e1069ab4f5428a6afae6a9 | 9/69 (13.04%)
| Gozi | 192.162.244.170:443 |
| 2018-11-18 16:33:43 | a446386bd4e1069ab4f5428a6afae6a9 | 9/69 (13.04%)
| Gozi | 192.162.244.170:443 |
| 2018-11-18 14:55:15 | 2efa42970b505bd633f47509c646f767 | n/a | Gozi | 192.162.244.170:443 |
| 2018-11-18 14:55:15 | 2efa42970b505bd633f47509c646f767 | n/a | Gozi | 192.162.244.170:443 |
| 2018-11-18 12:06:39 | c2fdb7a2279d64e07ec12f5d16723ec3 | 33/68 (48.53%)
| Gozi | 192.162.244.170:443 |
| 2018-11-18 12:06:39 | c2fdb7a2279d64e07ec12f5d16723ec3 | 33/68 (48.53%)
| Gozi | 192.162.244.170:443 |
| 2018-11-18 10:58:13 | f589466528683f2facf9039c3ffc1cca | 34/67 (50.75%)
| Gozi | 192.162.244.170:443 |
| 2018-11-18 10:58:13 | f589466528683f2facf9039c3ffc1cca | 34/67 (50.75%)
| Gozi | 192.162.244.170:443 |
| 2018-11-18 09:24:17 | bc3f7a58445af1c990f1860c1e6a28df | 34/68 (50.00%)
| Gozi | 192.162.244.170:443 |
| 2018-11-18 09:24:17 | bc3f7a58445af1c990f1860c1e6a28df | 34/68 (50.00%)
| Gozi | 192.162.244.170:443 |
# of entries: 100 (max: 100)