SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 66f692631bd7c5825c69fe941a6847b9968fd72f.

Database Entry

SHA1 Fingerprint:	66f692631bd7c5825c69fe941a6847b9968fd72f
Certificate Common Name (CN):	*
Issuer Distinguished Name (DN):	*
TLS Version:	TLS 1.2
First seen:	2018-11-07 16:37:38 UTC
Last seen:	2018-11-08 14:17:35 UTC
Status:	Blacklisted
Listing reason:	Gozi C&C
Listing date:	2018-11-08 09:29:15
Malware samples:	19
Botnet C&Cs:	1

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2018-11-08 14:17:35	991a9dc9f9d1ef6ac961be4ac59e75bd	n/a	Gozi	46.229.214.92:443
2018-11-08 14:17:35	991a9dc9f9d1ef6ac961be4ac59e75bd	n/a	Gozi	46.229.214.92:443
2018-11-08 11:11:00	e0a1c3f047626dd9c20d1eaa63492153	37/69 (53.62%)	Gozi	46.229.214.92:443
2018-11-08 11:11:00	e0a1c3f047626dd9c20d1eaa63492153	37/69 (53.62%)	Gozi	46.229.214.92:443
2018-11-08 10:18:06	abd4578ccf67135d6dfab62a8ba118c5	36/66 (54.55%)	Gozi	46.229.214.92:443
2018-11-08 10:18:06	abd4578ccf67135d6dfab62a8ba118c5	36/66 (54.55%)	Gozi	46.229.214.92:443
2018-11-08 06:50:34	4cb52b3cd9e346a8596013034ac67594	16/58 (27.59%)	Gozi	46.229.214.92:443
2018-11-08 06:50:34	4cb52b3cd9e346a8596013034ac67594	16/58 (27.59%)	Gozi	46.229.214.92:443
2018-11-08 04:38:32	20e5077bdf3aff9187baa64360b5f929	n/a	Gozi	46.229.214.92:443
2018-11-08 04:38:32	20e5077bdf3aff9187baa64360b5f929	n/a	Gozi	46.229.214.92:443
2018-11-08 04:37:16	c08b5b3d3ced6ccd79bc386928220328	49/70 (70.00%)	Gozi	46.229.214.92:443
2018-11-08 04:37:16	c08b5b3d3ced6ccd79bc386928220328	49/70 (70.00%)	Gozi	46.229.214.92:443
2018-11-08 04:35:12	d14a502b7b90d48c33facb244e26841f	n/a	Gozi	46.229.214.92:443
2018-11-08 04:35:12	d14a502b7b90d48c33facb244e26841f	n/a	Gozi	46.229.214.92:443
2018-11-08 04:33:53	70940e7ed35f3a0daf11364be4161f95	n/a	Gozi	46.229.214.92:443
2018-11-08 04:33:53	70940e7ed35f3a0daf11364be4161f95	n/a	Gozi	46.229.214.92:443
2018-11-08 02:55:01	a0ee33be36d736356a0c31d48dee225f	25/67 (37.31%)	Gozi	46.229.214.92:443
2018-11-08 02:55:01	a0ee33be36d736356a0c31d48dee225f	25/67 (37.31%)	Gozi	46.229.214.92:443
2018-11-08 02:34:00	45f19e488797767f31eae7af8652ba09	n/a	Gozi	46.229.214.92:443
2018-11-08 02:34:00	45f19e488797767f31eae7af8652ba09	n/a	Gozi	46.229.214.92:443
2018-11-08 02:27:04	21415e3b29f695f179c07f4139e71c65	n/a	Gozi	46.229.214.92:443
2018-11-08 02:27:04	21415e3b29f695f179c07f4139e71c65	n/a	Gozi	46.229.214.92:443
2018-11-08 00:17:18	615ab2b31f713421cb8e51ebaef31850	n/a	Gozi	46.229.214.92:443
2018-11-08 00:17:18	615ab2b31f713421cb8e51ebaef31850	n/a	Gozi	46.229.214.92:443
2018-11-08 00:16:23	1636a4baf77c9d98c91f8b9abce8c65e	46/70 (65.71%)	Gozi	46.229.214.92:443
2018-11-08 00:16:23	1636a4baf77c9d98c91f8b9abce8c65e	46/70 (65.71%)	Gozi	46.229.214.92:443
2018-11-07 21:19:09	c7af26b4fecfecf061ba4a4c929c5f75	37/67 (55.22%)	Gozi	46.229.214.92:443
2018-11-07 21:19:09	c7af26b4fecfecf061ba4a4c929c5f75	37/67 (55.22%)	Gozi	46.229.214.92:443
2018-11-07 18:06:57	afbd3a6889b1ee0bc9e205ef916f9537	47/68 (69.12%)	Gozi	46.229.214.92:443
2018-11-07 18:06:57	afbd3a6889b1ee0bc9e205ef916f9537	47/68 (69.12%)	Gozi	46.229.214.92:443
2018-11-07 17:55:34	f565b98b3545f90d0404711c67cbbebd	50/70 (71.43%)	Gozi	46.229.214.92:443
2018-11-07 17:55:34	f565b98b3545f90d0404711c67cbbebd	50/70 (71.43%)	Gozi	46.229.214.92:443
2018-11-07 17:50:39	b5e3906695c122715dd7b0ef96a084bb	47/68 (69.12%)	Gozi	46.229.214.92:443
2018-11-07 17:50:39	b5e3906695c122715dd7b0ef96a084bb	47/68 (69.12%)	Gozi	46.229.214.92:443
2018-11-07 17:47:47	89bd4d252f908c81ab399e6a8f748499	47/67 (70.15%)	Gozi	46.229.214.92:443
2018-11-07 17:47:47	89bd4d252f908c81ab399e6a8f748499	47/67 (70.15%)	Gozi	46.229.214.92:443
2018-11-07 16:37:39	a30502eaea733c662a1f0e150531b9bb	45/66 (68.18%)	Gozi	46.229.214.92:443
2018-11-07 16:37:39	a30502eaea733c662a1f0e150531b9bb	45/66 (68.18%)	Gozi	46.229.214.92:443

# of entries: 38 (max: 100)