SSL Certificates

The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint e95a3388c2a796fbe05ec11e1ff5bcb4b67260f5.

Database Entry

SHA1 Fingerprint:	e95a3388c2a796fbe05ec11e1ff5bcb4b67260f5
Certificate Common Name (CN):	*
Issuer Distinguished Name (DN):	*
TLS Version:	TLS 1.2
First seen:	2018-11-05 11:09:16 UTC
Last seen:	2018-11-08 19:43:55 UTC
Status:	Blacklisted
Listing reason:	Gozi C&C
Listing date:	2018-11-05 15:10:41
Malware samples:	269
Botnet C&Cs:	1

Malware Samples

The table below documents all malware samples associated with this SSL certificate.

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Signature	Botnet C&C (IP:port)
2018-11-08 19:43:55	1edef6c28d55bc2574ff32245cf3878f	23/67 (34.33%)	Gozi	95.181.198.72:443
2018-11-08 19:43:55	1edef6c28d55bc2574ff32245cf3878f	23/67 (34.33%)	Gozi	95.181.198.72:443
2018-11-08 19:37:43	c9127780a4a7956bae2aa21271e42e86	22/68 (32.35%)	Gozi	95.181.198.72:443
2018-11-08 19:37:43	c9127780a4a7956bae2aa21271e42e86	22/68 (32.35%)	Gozi	95.181.198.72:443
2018-11-08 19:33:13	77cbc307d537f5228e896e3d4b392131	22/67 (32.84%)	Gozi	95.181.198.72:443
2018-11-08 19:33:13	77cbc307d537f5228e896e3d4b392131	22/67 (32.84%)	Gozi	95.181.198.72:443
2018-11-08 18:17:56	c089b0d9b815dc284d1a49abac271def	23/67 (34.33%)	Gozi	95.181.198.72:443
2018-11-08 18:17:56	c089b0d9b815dc284d1a49abac271def	23/67 (34.33%)	Gozi	95.181.198.72:443
2018-11-08 17:45:07	3e4c63195b45accc441faa50dedf37e9	26/67 (38.81%)	Gozi	95.181.198.72:443
2018-11-08 17:45:07	3e4c63195b45accc441faa50dedf37e9	26/67 (38.81%)	Gozi	95.181.198.72:443
2018-11-08 17:29:46	d0ebc96191819beb48908b0629788114	24/67 (35.82%)	Gozi	95.181.198.72:443
2018-11-08 17:29:46	d0ebc96191819beb48908b0629788114	24/67 (35.82%)	Gozi	95.181.198.72:443
2018-11-08 17:04:03	df5ae99afdbad85bc4e3b0f40275736a	24/67 (35.82%)	Gozi	95.181.198.72:443
2018-11-08 17:04:03	df5ae99afdbad85bc4e3b0f40275736a	24/67 (35.82%)	Gozi	95.181.198.72:443
2018-11-08 16:17:07	97e237b4d7e509a3ac9912078fd320f6	23/67 (34.33%)	Gozi	95.181.198.72:443
2018-11-08 16:17:07	97e237b4d7e509a3ac9912078fd320f6	23/67 (34.33%)	Gozi	95.181.198.72:443
2018-11-08 16:10:13	39ba9547ca604d8a7d67db648548ed40	22/66 (33.33%)	Gozi	95.181.198.72:443
2018-11-08 16:10:13	39ba9547ca604d8a7d67db648548ed40	22/66 (33.33%)	Gozi	95.181.198.72:443
2018-11-08 15:15:04	af0bd039d242f5ab59f214a51e6e1eba	24/67 (35.82%)	Gozi	95.181.198.72:443
2018-11-08 15:15:04	af0bd039d242f5ab59f214a51e6e1eba	24/67 (35.82%)	Gozi	95.181.198.72:443
2018-11-08 14:53:01	322bd76166ab64d2e426b8acd6a9afce	24/68 (35.29%)	Gozi	95.181.198.72:443
2018-11-08 14:53:01	322bd76166ab64d2e426b8acd6a9afce	24/68 (35.29%)	Gozi	95.181.198.72:443
2018-11-08 13:14:51	b67a8043fdcedddc83e5162c04939542	22/66 (33.33%)	Gozi	95.181.198.72:443
2018-11-08 13:14:51	b67a8043fdcedddc83e5162c04939542	22/66 (33.33%)	Gozi	95.181.198.72:443
2018-11-08 12:12:05	9831eaf2bc295a121cd36e500cd4f751	23/67 (34.33%)	Gozi	95.181.198.72:443
2018-11-08 12:12:05	9831eaf2bc295a121cd36e500cd4f751	23/67 (34.33%)	Gozi	95.181.198.72:443
2018-11-08 12:05:40	a3b77b793763bec510654c7d6c56c5f5	21/66 (31.82%)	Gozi	95.181.198.72:443
2018-11-08 12:05:40	a3b77b793763bec510654c7d6c56c5f5	21/66 (31.82%)	Gozi	95.181.198.72:443
2018-11-08 12:05:33	8155b7e4d1681751b4574a8ed402549c	24/66 (36.36%)	Gozi	95.181.198.72:443
2018-11-08 12:05:33	8155b7e4d1681751b4574a8ed402549c	24/66 (36.36%)	Gozi	95.181.198.72:443
2018-11-08 11:55:37	af8b080ad1c2013a8d2a589ba08a0693	22/65 (33.85%)	Gozi	95.181.198.72:443
2018-11-08 11:55:37	af8b080ad1c2013a8d2a589ba08a0693	22/65 (33.85%)	Gozi	95.181.198.72:443
2018-11-08 11:48:51	9d27c718abc2dca763a7eae6e2d6ddcb	22/67 (32.84%)	Gozi	95.181.198.72:443
2018-11-08 11:48:51	9d27c718abc2dca763a7eae6e2d6ddcb	22/67 (32.84%)	Gozi	95.181.198.72:443
2018-11-08 11:43:00	f98b173e9e1d576a2ea989b95d0b30a8	24/67 (35.82%)	Gozi	95.181.198.72:443
2018-11-08 11:43:00	f98b173e9e1d576a2ea989b95d0b30a8	24/67 (35.82%)	Gozi	95.181.198.72:443
2018-11-08 11:28:30	bfce4acd0dc247eae2707e38f1736f1a	24/68 (35.29%)	Gozi	95.181.198.72:443
2018-11-08 11:28:30	bfce4acd0dc247eae2707e38f1736f1a	24/68 (35.29%)	Gozi	95.181.198.72:443
2018-11-08 11:19:11	694c0df7b889767f6fb3bdc8a6451715	24/66 (36.36%)	Gozi	95.181.198.72:443
2018-11-08 11:19:11	694c0df7b889767f6fb3bdc8a6451715	24/66 (36.36%)	Gozi	95.181.198.72:443
2018-11-08 11:01:22	8416459cc90f56db4d8b074f30a5e5f5	24/66 (36.36%)	Gozi	95.181.198.72:443
2018-11-08 11:01:22	8416459cc90f56db4d8b074f30a5e5f5	24/66 (36.36%)	Gozi	95.181.198.72:443
2018-11-08 10:13:52	3b8055fd25bd2fa8f5fb4e298b417b55	24/67 (35.82%)	Gozi	95.181.198.72:443
2018-11-08 10:13:52	3b8055fd25bd2fa8f5fb4e298b417b55	24/67 (35.82%)	Gozi	95.181.198.72:443
2018-11-08 09:09:58	f4551c0b6aac7a2993c1eb5fcd1d713c	24/67 (35.82%)	Gozi	95.181.198.72:443
2018-11-08 09:09:58	f4551c0b6aac7a2993c1eb5fcd1d713c	24/67 (35.82%)	Gozi	95.181.198.72:443
2018-11-08 09:03:54	b7520054275a8bd58b4aeeaeb7a73111	24/68 (35.29%)	Gozi	95.181.198.72:443
2018-11-08 09:03:54	b7520054275a8bd58b4aeeaeb7a73111	24/68 (35.29%)	Gozi	95.181.198.72:443
2018-11-08 08:53:28	c602db3a8bf851eb76fe3368eccaabad	23/67 (34.33%)	Gozi	95.181.198.72:443
2018-11-08 08:53:28	c602db3a8bf851eb76fe3368eccaabad	23/67 (34.33%)	Gozi	95.181.198.72:443
2018-11-08 08:03:53	355591240096b6e24ec1a2777a264ca3	22/65 (33.85%)	Gozi	95.181.198.72:443
2018-11-08 08:03:53	355591240096b6e24ec1a2777a264ca3	22/65 (33.85%)	Gozi	95.181.198.72:443
2018-11-08 07:46:23	e64370de4b1b4a70ee66f4cb3ddb49b2	23/67 (34.33%)	Gozi	95.181.198.72:443
2018-11-08 07:46:23	e64370de4b1b4a70ee66f4cb3ddb49b2	23/67 (34.33%)	Gozi	95.181.198.72:443
2018-11-08 07:45:34	318e4376f916f5950fa2098350ca5834	24/67 (35.82%)	Gozi	95.181.198.72:443
2018-11-08 07:45:34	318e4376f916f5950fa2098350ca5834	24/67 (35.82%)	Gozi	95.181.198.72:443
2018-11-08 07:38:10	2dc404aa37281c767111acd878091642	25/67 (37.31%)	Gozi	95.181.198.72:443
2018-11-08 07:38:10	2dc404aa37281c767111acd878091642	25/67 (37.31%)	Gozi	95.181.198.72:443
2018-11-08 07:36:22	034a12e02d7810f4a712e842e2a0fd9c	21/67 (31.34%)	Gozi	95.181.198.72:443
2018-11-08 07:36:22	034a12e02d7810f4a712e842e2a0fd9c	21/67 (31.34%)	Gozi	95.181.198.72:443
2018-11-08 07:23:37	d9ddf4966b3fcb3d2552b2dd38c3f3c5	23/68 (33.82%)	Gozi	95.181.198.72:443
2018-11-08 07:23:37	d9ddf4966b3fcb3d2552b2dd38c3f3c5	23/68 (33.82%)	Gozi	95.181.198.72:443
2018-11-08 07:14:39	f8f870fbe97d0938380727a82f2ac8ff	23/68 (33.82%)	Gozi	95.181.198.72:443
2018-11-08 07:14:39	f8f870fbe97d0938380727a82f2ac8ff	23/68 (33.82%)	Gozi	95.181.198.72:443
2018-11-08 07:14:17	5c06c942afff67510a557dd7f1298201	23/66 (34.85%)	Gozi	95.181.198.72:443
2018-11-08 07:14:17	5c06c942afff67510a557dd7f1298201	23/66 (34.85%)	Gozi	95.181.198.72:443
2018-11-08 07:10:28	1320f864f0d379edabd1e25856e55e4b	23/66 (34.85%)	Gozi	95.181.198.72:443
2018-11-08 07:10:28	1320f864f0d379edabd1e25856e55e4b	23/66 (34.85%)	Gozi	95.181.198.72:443
2018-11-08 07:08:41	605050e5b6b65c0063b9d2d294c59019	23/67 (34.33%)	Gozi	95.181.198.72:443
2018-11-08 07:08:41	605050e5b6b65c0063b9d2d294c59019	23/67 (34.33%)	Gozi	95.181.198.72:443
2018-11-06 16:32:39	aec4380a6fd4c13817c90cae28ee8e7e	44/68 (64.71%)	Gozi	95.181.198.72:443
2018-11-06 16:32:39	aec4380a6fd4c13817c90cae28ee8e7e	44/68 (64.71%)	Gozi	95.181.198.72:443
2018-11-06 16:27:50	557550f52910c933a313ae726fe0b605	n/a	Gozi	95.181.198.72:443
2018-11-06 16:27:50	557550f52910c933a313ae726fe0b605	n/a	Gozi	95.181.198.72:443
2018-11-06 13:49:04	72cc4763e365cef8c3cb929310c9958a	n/a	Gozi	95.181.198.72:443
2018-11-06 13:49:04	72cc4763e365cef8c3cb929310c9958a	n/a	Gozi	95.181.198.72:443
2018-11-06 13:19:11	b60d4251ca7d26b72fa9260a0077f865	11/68 (16.18%)	Gozi	95.181.198.72:443
2018-11-06 13:19:11	b60d4251ca7d26b72fa9260a0077f865	11/68 (16.18%)	Gozi	95.181.198.72:443
2018-11-06 13:10:34	b0fd362d012522bc037e3ce6890cce57	45/68 (66.18%)	Gozi	95.181.198.72:443
2018-11-06 13:10:34	b0fd362d012522bc037e3ce6890cce57	45/68 (66.18%)	Gozi	95.181.198.72:443
2018-11-06 13:03:42	d0371888beeabd14dc8580b2da2140f2	45/67 (67.16%)	Gozi	95.181.198.72:443
2018-11-06 13:03:42	d0371888beeabd14dc8580b2da2140f2	45/67 (67.16%)	Gozi	95.181.198.72:443
2018-11-06 13:00:52	ccea900d1925250ea01ecb38cd8365bc	46/68 (67.65%)	Gozi	95.181.198.72:443
2018-11-06 13:00:52	ccea900d1925250ea01ecb38cd8365bc	46/68 (67.65%)	Gozi	95.181.198.72:443
2018-11-06 13:00:14	d060f21365d92a3e3c186179bf121006	34/68 (50.00%)	Gozi	95.181.198.72:443
2018-11-06 13:00:14	d060f21365d92a3e3c186179bf121006	34/68 (50.00%)	Gozi	95.181.198.72:443
2018-11-06 13:00:06	411b343f9a486d05687087fb0d7bebe3	10/67 (14.93%)	Gozi	95.181.198.72:443
2018-11-06 13:00:06	411b343f9a486d05687087fb0d7bebe3	10/67 (14.93%)	Gozi	95.181.198.72:443
2018-11-06 12:59:44	77bce5ca4e0a6edd73cc8549545017f7	39/66 (59.09%)	Gozi	95.181.198.72:443
2018-11-06 12:59:44	77bce5ca4e0a6edd73cc8549545017f7	39/66 (59.09%)	Gozi	95.181.198.72:443
2018-11-06 12:59:19	b16a1625e474c4fec2a8a441b62ce0d2	45/67 (67.16%)	Gozi	95.181.198.72:443
2018-11-06 12:59:19	b16a1625e474c4fec2a8a441b62ce0d2	45/67 (67.16%)	Gozi	95.181.198.72:443
2018-11-06 12:59:07	a1789da045549cc714e32b85b89911d0	44/65 (67.69%)	Gozi	95.181.198.72:443
2018-11-06 12:59:07	a1789da045549cc714e32b85b89911d0	44/65 (67.69%)	Gozi	95.181.198.72:443
2018-11-06 12:57:57	ab3d1413789b3b9af53f0f4464731090	46/67 (68.66%)	Gozi	95.181.198.72:443
2018-11-06 12:57:57	ab3d1413789b3b9af53f0f4464731090	46/67 (68.66%)	Gozi	95.181.198.72:443
2018-11-06 12:56:34	f9e5a604e4c3a1248adcd6eb6b84de27	49/71 (69.01%)	Gozi	95.181.198.72:443
2018-11-06 12:56:34	f9e5a604e4c3a1248adcd6eb6b84de27	49/71 (69.01%)	Gozi	95.181.198.72:443
2018-11-06 12:54:51	b982b09e7651610c78715150173d9ebb	43/67 (64.18%)	Gozi	95.181.198.72:443
2018-11-06 12:54:51	b982b09e7651610c78715150173d9ebb	43/67 (64.18%)	Gozi	95.181.198.72:443

# of entries: 100 (max: 100)