SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 98c97ebcf9a16f604136307bcf251f9e00755d99.

Database Entry

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2018-10-04 10:49:52	17a9847e2dbf83dbf2f81539005e1e8c	n/a	Gozi	46.29.165.207:443
2018-10-04 10:49:52	17a9847e2dbf83dbf2f81539005e1e8c	n/a	Gozi	46.29.165.207:443
2018-10-04 07:32:00	cf6e87af545745f6bb6ab4fa7161badb	37/69 (53.62%)	Gozi	46.29.165.207:443
2018-10-04 07:32:00	cf6e87af545745f6bb6ab4fa7161badb	37/69 (53.62%)	Gozi	46.29.165.207:443
2018-10-04 06:47:47	8a34bda136a8e7858bac01c1f257d251	n/a	Gozi	46.29.165.207:443
2018-10-04 06:47:47	8a34bda136a8e7858bac01c1f257d251	n/a	Gozi	46.29.165.207:443
2018-10-04 06:31:41	d919668b29eb88b6a530eec0406aa743	35/68 (51.47%)	Gozi	46.29.165.207:443
2018-10-04 06:31:41	d919668b29eb88b6a530eec0406aa743	35/68 (51.47%)	Gozi	46.29.165.207:443
2018-10-03 19:46:11	8eac083433afc180c728fad286c37200	n/a	Gozi	46.29.165.207:443
2018-10-03 19:46:11	8eac083433afc180c728fad286c37200	n/a	Gozi	46.29.165.207:443
2018-10-03 19:11:30	ed33fcde6695edccbd0d844f1a9ea373	36/68 (52.94%)	Gozi	46.29.165.207:443
2018-10-03 19:11:30	ed33fcde6695edccbd0d844f1a9ea373	36/68 (52.94%)	Gozi	46.29.165.207:443
2018-10-03 15:50:50	50597e436876e9c69996ac3147571733	18/58 (31.03%)	Gozi	46.29.165.207:443
2018-10-03 15:50:50	50597e436876e9c69996ac3147571733	18/58 (31.03%)	Gozi	46.29.165.207:443
2018-10-03 15:04:52	cea99798368c5d89ccd16ea98a9c1a21	35/69 (50.72%)	Gozi	46.29.165.207:443
2018-10-03 15:04:52	cea99798368c5d89ccd16ea98a9c1a21	35/69 (50.72%)	Gozi	46.29.165.207:443

# of entries: 16 (max: 100)