SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint d858315e4c36dd7d51c98401fc9033e3714114d9.

Database Entry


SHA1 Fingerprint:d858315e4c36dd7d51c98401fc9033e3714114d9
Certificate Common Name (CN):*
Issuer Distinguished Name (DN):*
TLS Version:TLS 1.2
First seen:2019-02-28 17:55:58 UTC
Last seen:2019-03-01 06:11:21 UTC
Status:Blacklisted
Listing reason:Gozi C&C
Listing date:2019-03-01 06:30:00
Malware samples:5
Botnet C&Cs:1

Malware Samples


The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2019-03-01 06:11:21173c9aa076b1df9e4e17b42fcda20eefn/aGozi 89.223.91.7:443
2019-03-01 04:21:26a43f637a3da7dfa19a58f87adb0fea23n/aGozi 89.223.91.7:443
2019-02-28 19:28:22e382fa3c816466ef118a4016163d8c27n/aGozi 89.223.91.7:443
2019-02-28 18:19:20deaafd2392c43af3a3210a72ef3b797cn/aGozi 89.223.91.7:443
2019-02-28 17:55:5823d0ced8193c6f545bc848ed533c6b88n/aGozi 89.223.91.7:443

# of entries: 5 (max: 100)