SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint d02bde779e853c84617fac740bcd47659af2f375.

Database Entry


SHA1 Fingerprint:d02bde779e853c84617fac740bcd47659af2f375
Certificate Common Name (CN):*
Issuer Distinguished Name (DN):*
TLS Version:TLS 1.2
First seen:2019-01-19 07:23:33 UTC
Last seen:2019-01-21 16:21:01 UTC
Status:Blacklisted
Listing reason:Gozi C&C
Listing date:2019-01-19 08:12:41
Malware samples:6
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2019-01-21 16:21:01133e3b758b8cfbf6cfabcbe542b17c81Virustotal results 8/56 (14.29%) Gozi 185.127.27.238:443
2019-01-21 14:31:0866226898a64ac8157180452479dd366fVirustotal results 9/71 (12.68%) Gozi 185.127.27.238:443
2019-01-21 14:24:08787b3d6ea5d9429c0d5a81f6030a083cn/aGozi 185.127.27.238:443
2019-01-21 12:04:0518c931ee3392682a59fed765fcefce8cn/aGozi 185.127.27.238:443
2019-01-21 11:35:079d0e00221920267a30fa445c9a3c0762n/aGozi 185.127.27.238:443
2019-01-19 07:23:33cb13de281b7263627e8876bb36a6ed1an/aGozi 185.127.27.238:443

# of entries: 6 (max: 100)