SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint a3d55482a8e9037d9beebb4e1e6b245eef5e9594.

Database Entry


SHA1 Fingerprint:a3d55482a8e9037d9beebb4e1e6b245eef5e9594
Certificate Common Name (CN):highmynameis.xyz
Issuer Distinguished Name (DN):Let's Encrypt Authority X3
TLS Version:TLS 1.2
First seen:2020-04-03 08:48:43 UTC
Last seen:2020-04-03 15:04:05 UTC
Status:Blacklisted
Listing reason:Gozi C&C
Listing date:2020-04-03 08:50:57
Malware samples:8
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2020-04-03 15:04:05ce5a8d6454a4b421721bfab149bc5467n/aGozi 188.130.138.125:443
2020-04-03 13:51:044a2bb967262d3a1d39796641f8d1baaen/aGozi 188.130.138.125:443
2020-04-03 13:36:410077dbe163ca74e4eafdbe94566c0210n/aGozi 188.130.138.125:443
2020-04-03 10:47:12a03488b027d670d8a3f0a1e8ddcb0f0bn/aGozi 188.130.138.125:443
2020-04-03 09:14:335d661f5d7ffc1346b2ad9c05dd087439n/aGozi 188.130.138.125:443
2020-04-03 09:11:30303ad416420fcae683c83fa2dc097f50n/aGozi 188.130.138.125:443
2020-04-03 09:09:112c644d65335eaca6fbf0ba1f9077c4fbn/aGozi 188.130.138.125:443
2020-04-03 08:48:43b31b8740568360abdfcf934916c65bcan/aGozi 188.130.138.125:443

# of entries: 8 (max: 100)