SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint d858315e4c36dd7d51c98401fc9033e3714114d9.

Database Entry


SHA1 Fingerprint:d858315e4c36dd7d51c98401fc9033e3714114d9
Certificate Common Name (CN):*
Issuer Distinguished Name (DN):*
TLS Version:TLS 1.2
First seen:2019-02-28 17:55:58 UTC
Last seen:2019-03-01 06:11:21 UTC
Status:Blacklisted
Listing reason:Gozi C&C
Listing date:2019-03-01 06:30:00
Malware samples:5
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2019-03-01 06:11:21173c9aa076b1df9e4e17b42fcda20eefVirustotal results 17/68 (25.00%) Gozi 89.223.91.7:443
2019-03-01 06:11:21173c9aa076b1df9e4e17b42fcda20eefVirustotal results 17/68 (25.00%) Gozi 89.223.91.7:443
2019-03-01 04:21:26a43f637a3da7dfa19a58f87adb0fea23Virustotal results 26/70 (37.14%) Gozi 89.223.91.7:443
2019-03-01 04:21:26a43f637a3da7dfa19a58f87adb0fea23Virustotal results 26/70 (37.14%) Gozi 89.223.91.7:443
2019-02-28 19:28:22e382fa3c816466ef118a4016163d8c27Virustotal results 26/71 (36.62%) Gozi 89.223.91.7:443
2019-02-28 19:28:22e382fa3c816466ef118a4016163d8c27Virustotal results 26/71 (36.62%) Gozi 89.223.91.7:443
2019-02-28 18:19:20deaafd2392c43af3a3210a72ef3b797cVirustotal results 26/62 (41.94%) Gozi 89.223.91.7:443
2019-02-28 18:19:20deaafd2392c43af3a3210a72ef3b797cVirustotal results 26/62 (41.94%) Gozi 89.223.91.7:443
2019-02-28 17:55:5823d0ced8193c6f545bc848ed533c6b88Virustotal results 12/64 (18.75%) Gozi 89.223.91.7:443
2019-02-28 17:55:5823d0ced8193c6f545bc848ed533c6b88Virustotal results 12/64 (18.75%) Gozi 89.223.91.7:443

# of entries: 10 (max: 100)