SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint cd88cc0a598699a781864bdef18f50dab06f818d.
Database Entry
| SHA1 Fingerprint: | cd88cc0a598699a781864bdef18f50dab06f818d |
|---|---|
| Certificate Common Name (CN): | daylightlights.xyz |
| Issuer Distinguished Name (DN): | Let's Encrypt Authority X3 |
| TLS Version: | TLS 1.2 |
| First seen: | 2020-04-01 18:13:23 UTC |
| Last seen: | 2020-04-01 19:16:54 UTC |
| Status: | Blacklisted |
| Listing reason: | Gozi C&C |
| Listing date: | 2020-04-01 18:47:09 |
| Malware samples: | 5 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2020-04-01 19:16:54 | 7e364a82686621745d261247a57f6082 | n/a | Gozi | 45.140.168.169:443 |
| 2020-04-01 19:16:54 | 7e364a82686621745d261247a57f6082 | n/a | Gozi | 45.140.168.169:443 |
| 2020-04-01 19:16:39 | 7dee040bc90bcce556ea8e345f7e18a9 | n/a | Gozi | 45.140.168.169:443 |
| 2020-04-01 19:16:39 | 7dee040bc90bcce556ea8e345f7e18a9 | n/a | Gozi | 45.140.168.169:443 |
| 2020-04-01 18:41:50 | 04446a8c95eb64a17ef97579c601236c | n/a | Gozi | 45.140.168.169:443 |
| 2020-04-01 18:41:50 | 04446a8c95eb64a17ef97579c601236c | n/a | Gozi | 45.140.168.169:443 |
| 2020-04-01 18:17:53 | e1b87bf4c838bf7a020279cddeb1cf02 | n/a | Gozi | 45.140.168.169:443 |
| 2020-04-01 18:17:53 | e1b87bf4c838bf7a020279cddeb1cf02 | n/a | Gozi | 45.140.168.169:443 |
| 2020-04-01 18:13:23 | c3c255956864523e77972da85ca00d02 | n/a | Gozi | 45.140.168.169:443 |
| 2020-04-01 18:13:23 | c3c255956864523e77972da85ca00d02 | n/a | Gozi | 45.140.168.169:443 |
# of entries: 10 (max: 100)