SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 64c842147942b6e7a7fb09d902766696ad07de89.
Database Entry
| SHA1 Fingerprint: | 64c842147942b6e7a7fb09d902766696ad07de89 |
|---|---|
| Certificate Common Name (CN): | texestet.ru |
| Issuer Distinguished Name (DN): | Let's Encrypt Authority X3 |
| TLS Version: | TLS 1.2 |
| First seen: | 2018-11-11 07:41:51 UTC |
| Last seen: | 2018-11-18 11:20:23 UTC |
| Status: | Blacklisted |
| Listing reason: | Gozi C&C |
| Listing date: | 2018-11-11 09:29:53 |
| Malware samples: | 40 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2018-11-18 11:20:23 | a34e056cdacb91d8a2c812a3243502e6 |  44/66 (66.67%)
| Gozi | 95.181.198.115:443 |
| 2018-11-18 11:20:23 | a34e056cdacb91d8a2c812a3243502e6 | 44/66 (66.67%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 02:47:30 | 26654df7aa155b5f91e2441e5d0a9232 | 40/66 (60.61%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 02:47:30 | 26654df7aa155b5f91e2441e5d0a9232 | 40/66 (60.61%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 02:36:19 | 25425216bf76fe761f518d8694f0bbe6 | 33/66 (50.00%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 02:36:19 | 25425216bf76fe761f518d8694f0bbe6 | 33/66 (50.00%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 02:33:13 | 19d01ab9f30bcf4bb447db77d9f6f796 | 36/66 (54.55%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 02:33:13 | 19d01ab9f30bcf4bb447db77d9f6f796 | 36/66 (54.55%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 02:23:42 | 401a335ebb87b007521fa982b0c9bc4b | 33/67 (49.25%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 02:23:42 | 401a335ebb87b007521fa982b0c9bc4b | 33/67 (49.25%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 02:15:44 | 0739f68cf56df2eb5ae8714a33f472bb | 31/68 (45.59%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 02:15:44 | 0739f68cf56df2eb5ae8714a33f472bb | 31/68 (45.59%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 02:11:51 | 46eb8bd58a0a932fea694a6e510a353f | 34/66 (51.52%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 02:11:51 | 46eb8bd58a0a932fea694a6e510a353f | 34/66 (51.52%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 02:08:27 | 30d63fed2f983d3839fbf159201ac806 | 32/66 (48.48%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 02:08:27 | 30d63fed2f983d3839fbf159201ac806 | 32/66 (48.48%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 02:05:11 | 338535363dbac7851f81cc7ac51793ab | 31/67 (46.27%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 02:05:11 | 338535363dbac7851f81cc7ac51793ab | 31/67 (46.27%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 01:51:38 | 329138e1ddd95f58cf1ccb75cff18cab | 31/66 (46.97%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 01:51:38 | 329138e1ddd95f58cf1ccb75cff18cab | 31/66 (46.97%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 01:10:41 | a4f4e1ce4c6232fd425e7fe4a6c632c8 | 32/64 (50.00%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 01:10:41 | a4f4e1ce4c6232fd425e7fe4a6c632c8 | 32/64 (50.00%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 01:08:18 | 8b57e499d96e20874249cdfe65f6d84a | 43/67 (64.18%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 01:08:18 | 8b57e499d96e20874249cdfe65f6d84a | 43/67 (64.18%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 00:51:08 | 81d404d6bdabeccfb0613957fe88f358 | 27/62 (43.55%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 00:51:08 | 81d404d6bdabeccfb0613957fe88f358 | 27/62 (43.55%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 00:19:24 | b90fd92cbb1b9324a85b5a3381582b69 | 33/67 (49.25%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 00:19:24 | b90fd92cbb1b9324a85b5a3381582b69 | 33/67 (49.25%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 00:09:56 | c83a7ff8a9ea1ac6bd2e357b888dd49f | 53/70 (75.71%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 00:09:56 | c83a7ff8a9ea1ac6bd2e357b888dd49f | 53/70 (75.71%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 00:05:05 | e6430d229f2137be67fd17d476fa523f | 32/67 (47.76%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 00:05:05 | e6430d229f2137be67fd17d476fa523f | 32/67 (47.76%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 00:03:32 | bcead03e69e4782abcf289db051a9c30 | 32/67 (47.76%)
| Gozi | 95.181.198.115:443 |
| 2018-11-16 00:03:32 | bcead03e69e4782abcf289db051a9c30 | 32/67 (47.76%)
| Gozi | 95.181.198.115:443 |
| 2018-11-15 23:41:31 | cd0a6fc714cbea5cda6d58d26e8cdce3 | 32/65 (49.23%)
| Gozi | 95.181.198.115:443 |
| 2018-11-15 23:41:31 | cd0a6fc714cbea5cda6d58d26e8cdce3 | 32/65 (49.23%)
| Gozi | 95.181.198.115:443 |
| 2018-11-15 23:21:06 | de8a133404eebead0eeacd7fc79d6af3 | 32/65 (49.23%)
| Gozi | 95.181.198.115:443 |
| 2018-11-15 23:21:06 | de8a133404eebead0eeacd7fc79d6af3 | 32/65 (49.23%)
| Gozi | 95.181.198.115:443 |
| 2018-11-15 23:17:03 | 6a5f620d6e96e732d7d33a13768b71f0 | 52/72 (72.22%)
| Gozi | 95.181.198.115:443 |
| 2018-11-15 23:17:03 | 6a5f620d6e96e732d7d33a13768b71f0 | 52/72 (72.22%)
| Gozi | 95.181.198.115:443 |
| 2018-11-15 23:01:04 | 30f10c56bbf3102490969049edf6dc4b | 33/67 (49.25%)
| Gozi | 95.181.198.115:443 |
| 2018-11-15 23:01:04 | 30f10c56bbf3102490969049edf6dc4b | 33/67 (49.25%)
| Gozi | 95.181.198.115:443 |
| 2018-11-15 22:46:04 | f784dff9e5058b9a194379e3c5163c2a | 33/68 (48.53%)
| Gozi | 95.181.198.115:443 |
| 2018-11-15 22:46:04 | f784dff9e5058b9a194379e3c5163c2a | 33/68 (48.53%)
| Gozi | 95.181.198.115:443 |
| 2018-11-15 21:20:04 | 26899b4eb055582498403d29b130cc94 | 38/66 (57.58%)
| Gozi | 95.181.198.115:443 |
| 2018-11-15 21:20:04 | 26899b4eb055582498403d29b130cc94 | 38/66 (57.58%)
| Gozi | 95.181.198.115:443 |
| 2018-11-15 20:42:59 | 9269ab9c8d348e6e1413facae4744e18 | 31/66 (46.97%)
| Gozi | 95.181.198.115:443 |
| 2018-11-15 20:42:59 | 9269ab9c8d348e6e1413facae4744e18 | 31/66 (46.97%)
| Gozi | 95.181.198.115:443 |
| 2018-11-15 19:42:45 | 2dd341743a6cc4de621824a45c2db080 | 31/66 (46.97%)
| Gozi | 95.181.198.115:443 |
| 2018-11-15 19:42:45 | 2dd341743a6cc4de621824a45c2db080 | 31/66 (46.97%)
| Gozi | 95.181.198.115:443 |
| 2018-11-15 18:55:06 | 28ad66dd5ede96212e1376b145f1e61c | 32/66 (48.48%)
| Gozi | 95.181.198.115:443 |
| 2018-11-15 18:55:06 | 28ad66dd5ede96212e1376b145f1e61c | 32/66 (48.48%)
| Gozi | 95.181.198.115:443 |
| 2018-11-15 18:34:54 | b7358c016c9a07f94cb17eb9d7338676 | 38/65 (58.46%)
| Gozi | 95.181.198.115:443 |
| 2018-11-15 18:34:54 | b7358c016c9a07f94cb17eb9d7338676 | 38/65 (58.46%)
| Gozi | 95.181.198.115:443 |
| 2018-11-15 18:12:36 | 6f2144f7356c690c4ef511fca41c43a7 | 32/66 (48.48%)
| Gozi | 95.181.198.115:443 |
| 2018-11-15 18:12:36 | 6f2144f7356c690c4ef511fca41c43a7 | 32/66 (48.48%)
| Gozi | 95.181.198.115:443 |
| 2018-11-14 21:39:35 | 1256d2ea7bd17f58346528ce2e52cab1 | 32/66 (48.48%)
| Gozi | 95.181.198.115:443 |
| 2018-11-14 21:39:35 | 1256d2ea7bd17f58346528ce2e52cab1 | 32/66 (48.48%)
| Gozi | 95.181.198.115:443 |
| 2018-11-14 21:33:01 | 21427f793c64b6fb81a97849c8e782f7 | 36/66 (54.55%)
| Gozi | 95.181.198.115:443 |
| 2018-11-14 21:33:01 | 21427f793c64b6fb81a97849c8e782f7 | 36/66 (54.55%)
| Gozi | 95.181.198.115:443 |
| 2018-11-14 21:13:43 | 87a49ac955ae7e59c7dcab834d6501d4 | 39/66 (59.09%)
| Gozi | 95.181.198.115:443 |
| 2018-11-14 21:13:43 | 87a49ac955ae7e59c7dcab834d6501d4 | 39/66 (59.09%)
| Gozi | 95.181.198.115:443 |
| 2018-11-14 21:12:47 | b1177d83d8fe21846226158dbe1b7914 | 44/68 (64.71%)
| Gozi | 95.181.198.115:443 |
| 2018-11-14 21:12:47 | b1177d83d8fe21846226158dbe1b7914 | 44/68 (64.71%)
| Gozi | 95.181.198.115:443 |
| 2018-11-14 21:12:08 | 957c775d88e13b08f68ab8f8b33e94b9 | 32/65 (49.23%)
| Gozi | 95.181.198.115:443 |
| 2018-11-14 21:12:08 | 957c775d88e13b08f68ab8f8b33e94b9 | 32/65 (49.23%)
| Gozi | 95.181.198.115:443 |
| 2018-11-14 21:00:23 | e987ca85a5e6589b25748e594e4c82c1 | 44/68 (64.71%)
| Gozi | 95.181.198.115:443 |
| 2018-11-14 21:00:23 | e987ca85a5e6589b25748e594e4c82c1 | 44/68 (64.71%)
| Gozi | 95.181.198.115:443 |
| 2018-11-14 19:33:52 | 04c60d58eaecfc2217456a3b316b4826 | 44/68 (64.71%)
| Gozi | 95.181.198.115:443 |
| 2018-11-14 19:33:52 | 04c60d58eaecfc2217456a3b316b4826 | 44/68 (64.71%)
| Gozi | 95.181.198.115:443 |
| 2018-11-14 19:20:33 | 712e9ee316424e395c698b8cdf9371f3 | 37/66 (56.06%)
| Gozi | 95.181.198.115:443 |
| 2018-11-14 19:20:33 | 712e9ee316424e395c698b8cdf9371f3 | 37/66 (56.06%)
| Gozi | 95.181.198.115:443 |
| 2018-11-14 18:51:34 | dec7e3b72aab3dd30bcbc4aa8482d3e6 | 47/68 (69.12%)
| Gozi | 95.181.198.115:443 |
| 2018-11-14 18:51:34 | dec7e3b72aab3dd30bcbc4aa8482d3e6 | 47/68 (69.12%)
| Gozi | 95.181.198.115:443 |
| 2018-11-14 18:34:27 | 8b37f0ca21602c510f9d551974d8996f | 43/68 (63.24%)
| Gozi | 95.181.198.115:443 |
| 2018-11-14 18:34:27 | 8b37f0ca21602c510f9d551974d8996f | 43/68 (63.24%)
| Gozi | 95.181.198.115:443 |
| 2018-11-14 16:34:05 | 02575c2938e62e703bd72c97a8b34e3a | 31/65 (47.69%)
| Gozi | 95.181.198.115:443 |
| 2018-11-14 16:34:05 | 02575c2938e62e703bd72c97a8b34e3a | 31/65 (47.69%)
| Gozi | 95.181.198.115:443 |
| 2018-11-11 07:41:51 | 0f2b112a33080bc5af5e4be94b2cf7ba | 9/67 (13.43%)
| Gozi | 95.181.198.115:443 |
| 2018-11-11 07:41:51 | 0f2b112a33080bc5af5e4be94b2cf7ba | 9/67 (13.43%)
| Gozi | 95.181.198.115:443 |
# of entries: 80 (max: 100)