SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint da5dc1daca7989db13166f03372062bf2a11c1eb.

Database Entry

SHA1 Fingerprint:	da5dc1daca7989db13166f03372062bf2a11c1eb
Certificate Common Name (CN):	setcursor.xyz
Issuer Distinguished Name (DN):	Let's Encrypt Authority X3
TLS Version:	TLS 1.2
First seen:	2020-06-02 00:22:55 UTC
Last seen:	2020-06-02 08:57:36 UTC
Status:	Blacklisted
Listing reason:	Gozi C&C
Listing date:	2020-06-02 07:59:23
Malware samples:	25
Botnet C&Cs:	1

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2020-06-02 08:57:36	2baee1e8ac6acb8a47bdfbb331d86206	n/a	Gozi	185.80.128.112:443
2020-06-02 08:57:36	2baee1e8ac6acb8a47bdfbb331d86206	n/a	Gozi	185.80.128.112:443
2020-06-02 05:16:20	89cc070103d9021a6d01c928e39d2cca	n/a	Gozi	185.80.128.112:443
2020-06-02 05:16:20	89cc070103d9021a6d01c928e39d2cca	n/a	Gozi	185.80.128.112:443
2020-06-02 01:45:56	a3e378526f36e061d00962751df88878	n/a	Gozi	185.80.128.112:443
2020-06-02 01:45:56	a3e378526f36e061d00962751df88878	n/a	Gozi	185.80.128.112:443
2020-06-02 01:42:31	9054b57bd64be114d9f1b2913a1a04a5	n/a	Gozi	185.80.128.112:443
2020-06-02 01:42:31	9054b57bd64be114d9f1b2913a1a04a5	n/a	Gozi	185.80.128.112:443
2020-06-02 01:28:56	e0c52ba0823c5355ab1304a011327889	1 / 59 (1.69%)	Gozi	185.80.128.112:443
2020-06-02 01:28:56	e0c52ba0823c5355ab1304a011327889	1 / 59 (1.69%)	Gozi	185.80.128.112:443
2020-06-02 01:28:50	750e2349e2d0a7adee5cc94e390c6ff0	n/a	Gozi	185.80.128.112:443
2020-06-02 01:28:50	750e2349e2d0a7adee5cc94e390c6ff0	n/a	Gozi	185.80.128.112:443
2020-06-02 01:28:26	524da6ed55cef8b8b82a3e0fe0bdd491	n/a	Gozi	185.80.128.112:443
2020-06-02 01:28:26	524da6ed55cef8b8b82a3e0fe0bdd491	n/a	Gozi	185.80.128.112:443
2020-06-02 01:24:12	0da77c8d95f147a13bb160a8cbf42a5a	n/a	Gozi	185.80.128.112:443
2020-06-02 01:24:12	0da77c8d95f147a13bb160a8cbf42a5a	n/a	Gozi	185.80.128.112:443
2020-06-02 01:20:08	55db64492c8505cd5739b72826bad1e3	n/a	Gozi	185.80.128.112:443
2020-06-02 01:20:08	55db64492c8505cd5739b72826bad1e3	n/a	Gozi	185.80.128.112:443
2020-06-02 01:19:04	c1e30b77f744df5f26e7c13a85ed4f40	n/a	Gozi	185.80.128.112:443
2020-06-02 01:19:04	c1e30b77f744df5f26e7c13a85ed4f40	n/a	Gozi	185.80.128.112:443
2020-06-02 01:17:49	06af3ed52ce798a675f4998ab3933fca	n/a	Gozi	185.80.128.112:443
2020-06-02 01:17:49	06af3ed52ce798a675f4998ab3933fca	n/a	Gozi	185.80.128.112:443
2020-06-02 01:16:23	51d0d9d9a40d4ca7f4599793390961f2	2 / 62 (3.23%)	Gozi	185.80.128.112:443
2020-06-02 01:16:23	51d0d9d9a40d4ca7f4599793390961f2	2 / 62 (3.23%)	Gozi	185.80.128.112:443
2020-06-02 01:11:33	99641c611e303c140ebdf842bb3ec373	n/a	Gozi	185.80.128.112:443
2020-06-02 01:11:33	99641c611e303c140ebdf842bb3ec373	n/a	Gozi	185.80.128.112:443
2020-06-02 01:06:34	6ce259d7347744bbc616777225a0636c	n/a	Gozi	185.80.128.112:443
2020-06-02 01:06:34	6ce259d7347744bbc616777225a0636c	n/a	Gozi	185.80.128.112:443
2020-06-02 01:03:47	dc39c44aaedaebcde23d4f30926b4a3d	n/a	Gozi	185.80.128.112:443
2020-06-02 01:03:47	dc39c44aaedaebcde23d4f30926b4a3d	n/a	Gozi	185.80.128.112:443
2020-06-02 00:56:36	56ae3d7cb9b888c3bc49744aa933c77f	n/a	Gozi	185.80.128.112:443
2020-06-02 00:56:36	56ae3d7cb9b888c3bc49744aa933c77f	n/a	Gozi	185.80.128.112:443
2020-06-02 00:55:55	4d7ffd62e2d413a53d1cdf29b4746308	n/a	Gozi	185.80.128.112:443
2020-06-02 00:55:55	4d7ffd62e2d413a53d1cdf29b4746308	n/a	Gozi	185.80.128.112:443
2020-06-02 00:39:10	de9b600f803eb13869b884b7f8fede4c	n/a	Gozi	185.80.128.112:443
2020-06-02 00:39:10	de9b600f803eb13869b884b7f8fede4c	n/a	Gozi	185.80.128.112:443
2020-06-02 00:36:44	3d20eea4d9a97b51bcb935aa1f819f08	n/a	Gozi	185.80.128.112:443
2020-06-02 00:36:44	3d20eea4d9a97b51bcb935aa1f819f08	n/a	Gozi	185.80.128.112:443
2020-06-02 00:34:46	0b28c49faf21565aa10f9a4730fd883f	n/a	Gozi	185.80.128.112:443
2020-06-02 00:34:46	0b28c49faf21565aa10f9a4730fd883f	n/a	Gozi	185.80.128.112:443
2020-06-02 00:33:05	109a6f8e4f6f7eb6ef6313c5e1a767a1	n/a	Gozi	185.80.128.112:443
2020-06-02 00:33:05	109a6f8e4f6f7eb6ef6313c5e1a767a1	n/a	Gozi	185.80.128.112:443
2020-06-02 00:31:48	585b7e4e12e1b5c6163451af59ec0510	n/a	Gozi	185.80.128.112:443
2020-06-02 00:31:48	585b7e4e12e1b5c6163451af59ec0510	n/a	Gozi	185.80.128.112:443
2020-06-02 00:29:15	5f37efbaa72a3868b56c33801c67ba2e	n/a	Gozi	185.80.128.112:443
2020-06-02 00:29:15	5f37efbaa72a3868b56c33801c67ba2e	n/a	Gozi	185.80.128.112:443
2020-06-02 00:26:01	4510adecff60d045da02c5f28eb440d5	n/a	Gozi	185.80.128.112:443
2020-06-02 00:26:01	4510adecff60d045da02c5f28eb440d5	n/a	Gozi	185.80.128.112:443
2020-06-02 00:22:55	b0506f383a563c23203aadad1671a181	n/a	Gozi	185.80.128.112:443
2020-06-02 00:22:55	b0506f383a563c23203aadad1671a181	n/a	Gozi	185.80.128.112:443

# of entries: 50 (max: 100)