SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 73c34b9498934f5f781a4687bac29017f6c95fac.

Database Entry


SHA1 Fingerprint:73c34b9498934f5f781a4687bac29017f6c95fac
Certificate Common Name (CN):*
Issuer Distinguished Name (DN):*
TLS Version:TLS 1.2
First seen:2018-11-08 14:12:27 UTC
Last seen:2018-12-14 09:11:13 UTC
Status:Blacklisted
Listing reason:Gozi C&C
Listing date:2018-11-14 10:52:40
Malware samples:11
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2018-12-14 09:11:139899612bec623d464cda6a6b8c9deb3fVirustotal results 17/69 (24.64%) Gozi 51.38.146.101:443
2018-12-07 10:17:42db8f5e067d871f1f1b7eb3524dbb3343Virustotal results 46/70 (65.71%) Gozi 51.38.146.101:443
2018-12-04 18:45:227b9c141f8c62a2a8ff8af01b96631451Virustotal results 15/69 (21.74%) Gozi 51.38.146.101:443
2018-11-22 09:45:402baf9375f27c037390d60eef89aefd08n/a51.38.146.101:443
2018-11-21 15:53:377e603ac7945eb3bb8c9d3cb0563253b5Virustotal results 16/67 (23.88%) Gozi 51.38.146.101:443
2018-11-20 14:52:24e4b4d007d9d8940debd84ec2a68d02fcn/aGozi 51.38.146.101:443
2018-11-15 14:12:30197fbc6e77065bbd8e7034d352afe528n/aGozi 51.38.146.101:443
2018-11-15 14:09:4058e89ecec4f8ea865ab69ff94ab57b6an/aGozi 51.38.146.101:443
2018-11-15 11:44:36530a62e28fd63ca7ec53f4ae8553fb60n/a51.38.146.101:443
2018-11-08 18:17:06c3b32fe569399dd5f362bf35cd036537Virustotal results 16/60 (26.67%) Gozi 51.38.146.101:443
2018-11-08 14:12:271f6c2fcb5a99bccfff1af75490c51e80n/aGozi 51.38.146.101:443

# of entries: 11 (max: 100)