SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint d02bde779e853c84617fac740bcd47659af2f375.

Database Entry

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2019-10-18 13:00:20	44fce446096b7f309a88b2be98d484cd	13 / 68 (19.12%)	Gozi	185.127.27.238:443
2019-10-18 13:00:20	44fce446096b7f309a88b2be98d484cd	13 / 68 (19.12%)	Gozi	185.127.27.238:443
2019-09-08 16:55:18	e2aacca687f825be9d961a1966526ce2	46/70 (65.71%)	Gozi	185.127.27.238:443
2019-09-08 16:55:18	e2aacca687f825be9d961a1966526ce2	46/70 (65.71%)	Gozi	185.127.27.238:443
2019-01-21 16:21:01	133e3b758b8cfbf6cfabcbe542b17c81	8/56 (14.29%)	Gozi	185.127.27.238:443
2019-01-21 16:21:01	133e3b758b8cfbf6cfabcbe542b17c81	8/56 (14.29%)	Gozi	185.127.27.238:443
2019-01-21 14:31:08	66226898a64ac8157180452479dd366f	9/71 (12.68%)	Gozi	185.127.27.238:443
2019-01-21 14:31:08	66226898a64ac8157180452479dd366f	9/71 (12.68%)	Gozi	185.127.27.238:443
2019-01-21 14:24:08	787b3d6ea5d9429c0d5a81f6030a083c	21/56 (37.50%)	Gozi	185.127.27.238:443
2019-01-21 14:24:08	787b3d6ea5d9429c0d5a81f6030a083c	21/56 (37.50%)	Gozi	185.127.27.238:443
2019-01-21 12:04:05	18c931ee3392682a59fed765fcefce8c	36/68 (52.94%)	Gozi	185.127.27.238:443
2019-01-21 12:04:05	18c931ee3392682a59fed765fcefce8c	36/68 (52.94%)	Gozi	185.127.27.238:443
2019-01-21 11:35:07	9d0e00221920267a30fa445c9a3c0762	12/71 (16.90%)	Gozi	185.127.27.238:443
2019-01-21 11:35:07	9d0e00221920267a30fa445c9a3c0762	12/71 (16.90%)	Gozi	185.127.27.238:443
2019-01-19 07:23:33	cb13de281b7263627e8876bb36a6ed1a	43/70 (61.43%)	Gozi	185.127.27.238:443
2019-01-19 07:23:33	cb13de281b7263627e8876bb36a6ed1a	43/70 (61.43%)	Gozi	185.127.27.238:443

# of entries: 16 (max: 100)