JA3 Fingerprints
You can find further information about the JA3 fingerprint 0cc1e84568e471aa1d62ad4158ade6b5, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 0cc1e84568e471aa1d62ad4158ade6b5 |
|---|---|
| First seen: | 2018-06-24 10:50:47 UTC |
| Last seen: | 2021-06-21 02:35:57 UTC |
| Status: | Blacklisted |
| Malware samples: | 323 |
| Destination IPs: | 220 |
| Malware: | Tofsee  |
| Listing date: | 2018-11-14 12:52:01 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2025-03-23 02:16:38 | 4bfd5c65e01f71f644d140afeef24855 | n/a | 193.246.105.91:443 |
| 2025-03-23 02:16:38 | 4bfd5c65e01f71f644d140afeef24855 | n/a | 3.210.24.210:443 |
| 2025-03-12 02:26:21 | 3a6b7247458d4c876299049369595433 | n/a | 163.181.131.244:443 |
| 2025-03-12 02:26:21 | 3a6b7247458d4c876299049369595433 | n/a | 47.246.50.176:443 |
| 2025-03-09 18:42:57 | b2e65fee0b881e9f26e7a2e7c24f3802 | n/a | 193.246.105.58:443 |
| 2025-03-09 18:37:49 | bcfb64c1f601358c9a2079cc62130e88 | n/a | 193.246.105.58:443 |
| 2025-03-09 18:37:49 | bcfb64c1f601358c9a2079cc62130e88 | n/a | 193.246.105.97:443 |
| 2025-03-09 00:32:45 | 1b85004b58f121dd7aace9315794cae5 | n/a | 172.217.168.14:443 |
| 2025-03-09 00:32:45 | 1b85004b58f121dd7aace9315794cae5 | n/a | 172.67.73.191:443 |
| 2025-03-09 00:32:44 | 1b85004b58f121dd7aace9315794cae5 | n/a | 104.26.7.120:443 |
| 2025-03-07 21:47:56 | 5242c4d88264791195bb700c08a2a3c1 | n/a | 52.202.180.121:443 |
| 2025-03-07 21:47:56 | 5242c4d88264791195bb700c08a2a3c1 | n/a | 193.247.41.9:443 |
| 2025-03-07 00:18:22 | 1431d73394044be65b0ed88de7554386 | n/a | 193.247.41.9:443 |
| 2025-03-04 09:07:39 | f0ece516a2308c9d4830c20d6bd82ce1 | n/a | 193.246.105.91:443 |
| 2025-02-20 18:29:22 | 31d75b99e3564667b1773902b5b66368 | n/a | 193.246.105.91:443 |
| 2025-02-20 18:29:21 | 31d75b99e3564667b1773902b5b66368 | n/a | 44.216.89.176:443 |
| 2025-02-17 08:39:53 | ef4f7ee1ace8b37791f24fe4c4e12f3b | n/a | 193.247.41.9:443 |
| 2025-02-13 01:51:46 | bca7e49ad1032e26d338b70a9cc911e8 | n/a | 193.247.41.48:443 |
| 2025-02-10 20:00:10 | 39b76c2c3642869902179c027d9350a8 | n/a | 173.223.162.43:443 |
| 2025-02-10 20:00:10 | 39b76c2c3642869902179c027d9350a8 | n/a | 52.44.230.176:443 |
| 2025-02-10 12:08:35 | 68dfd7e3a40d9f0c0fd679b76557d1ca | n/a | 193.247.41.48:443 |
| 2025-01-22 01:11:33 | 351d31ef2005743f7b00a386eb353866 | n/a | 3.232.135.78:443 |
| 2025-01-12 21:59:46 | 6912b3a2cd4c941a293c20d730b5fc79 | n/a | 35.174.38.64:443 |
| 2025-01-12 21:59:46 | 6912b3a2cd4c941a293c20d730b5fc79 | n/a | 193.246.105.58:443 |
| 2025-01-12 05:54:37 | 6bdb3bc97f08b5f62956922327fea070 | n/a | 15.197.228.107:443 |
| 2025-01-12 05:54:37 | 6bdb3bc97f08b5f62956922327fea070 | n/a | 199.232.210.172:443 |
| 2024-09-29 08:07:19 | f8f85b5eb2dcdb16626a7dd8a7e23d81 | n/a | 104.26.7.120:443 |
| 2024-09-29 08:07:19 | f8f85b5eb2dcdb16626a7dd8a7e23d81 | n/a | 216.239.32.178:443 |
| 2024-09-29 08:07:19 | f8f85b5eb2dcdb16626a7dd8a7e23d81 | n/a | 104.26.6.120:443 |
| 2024-09-28 13:41:48 | 6938b98af3483f80c5e20e879139bec8 | n/a | 152.199.20.140:443 |
| 2024-09-13 16:21:31 | 24f305407bf45db365a4fd495cfa6c4b | n/a | 68.232.34.200:443 |
| 2024-09-13 16:21:31 | 24f305407bf45db365a4fd495cfa6c4b | n/a | 159.203.69.7:443 |
| 2024-09-13 16:21:31 | 24f305407bf45db365a4fd495cfa6c4b | n/a | 15.197.228.107:443 |
| 2024-08-10 09:10:24 | 32f0313a61252f92fb14b5daa02bdabe | n/a | 68.232.34.200:443 |
| 2024-08-10 09:10:24 | 32f0313a61252f92fb14b5daa02bdabe | n/a | 15.197.228.107:443 |
| 2024-08-07 16:50:18 | 2dab911a73074da684aa5bdc13d4631e | n/a | 15.197.228.107:443 |
| 2024-08-07 16:50:18 | 2dab911a73074da684aa5bdc13d4631e | n/a | 68.232.34.200:443 |
| 2024-05-22 09:11:29 | a34cd9ba457beb5aeb485ee161d28797 | n/a | 152.199.23.214:443 |
| 2024-05-19 05:21:21 | 4ff84a6c04d0f29b232df6f85d513b07 | n/a | 116.203.13.71:443 |
| 2024-05-16 20:59:49 | 069cf9acaca6e64f32ecce2485ded153 | n/a | 3.33.231.75:443 |
| 2024-05-12 19:29:29 | a23f9cff0847967b2fd09df5973fc6e5 | n/a | 152.199.23.214:443 |
| 2024-04-14 10:30:37 | fee22d83afd92b6fff8544cc976c347a | n/a | 193.246.8.224:443 |
| 2024-04-14 10:30:37 | fee22d83afd92b6fff8544cc976c347a | n/a | 15.197.228.107:443 |
| 2024-04-14 10:30:37 | fee22d83afd92b6fff8544cc976c347a | n/a | 68.232.34.200:443 |
| 2024-04-14 00:32:57 | e6534cfaa4d4b0bd34398060855c0ac7 | n/a | 104.166.182.99:443 |
| 2024-04-14 00:32:57 | e6534cfaa4d4b0bd34398060855c0ac7 | n/a | 163.181.49.250:443 |
| 2024-04-13 16:28:38 | d1f8c0c7eaf024f84b11d7f19c9920c9 | n/a | 13.107.42.22:443 |
| 2024-04-03 12:17:32 | 055ec270285537f6f89d9b5c94333404 |  2 / 70 (2.86%)
| 152.199.23.214:443 |
| 2024-04-01 16:21:54 | 07d0100bdf118829e41188a22ebded65 | 14 / 70 (20.00%)
| 3.33.231.75:443 |
| 2024-04-01 16:21:54 | 07d0100bdf118829e41188a22ebded65 | 14 / 70 (20.00%)
| 184.30.158.37:443 |
| 2024-04-01 16:21:54 | 07d0100bdf118829e41188a22ebded65 | 14 / 70 (20.00%)
| 68.232.34.200:443 |
| 2024-04-01 12:15:11 | 1f5a70ee02b8187e1778b75eb5065ff2 | 15 / 70 (21.43%)
| 68.232.34.200:443 |
| 2024-04-01 12:15:11 | 1f5a70ee02b8187e1778b75eb5065ff2 | 15 / 70 (21.43%)
| 15.197.228.107:443 |
| 2024-04-01 12:15:11 | 1f5a70ee02b8187e1778b75eb5065ff2 | 15 / 70 (21.43%)
| 193.246.8.224:443 |
| 2024-03-21 12:51:16 | 21193bb6223e3f0b4159d075435f8364 | n/a | 15.197.228.107:443 |
| 2024-03-21 12:51:16 | 21193bb6223e3f0b4159d075435f8364 | n/a | 104.99.233.107:443 |
| 2024-03-21 12:51:15 | 21193bb6223e3f0b4159d075435f8364 | n/a | 68.232.34.200:443 |
| 2024-03-10 07:46:58 | 0e330056919e29e52db1725df201144e | 14 / 69 (20.29%)
| 104.99.233.107:443 |
| 2024-03-10 07:46:57 | 0e330056919e29e52db1725df201144e | 14 / 69 (20.29%)
| 3.33.231.75:443 |
| 2024-03-10 07:46:57 | 0e330056919e29e52db1725df201144e | 14 / 69 (20.29%)
| 68.232.34.200:443 |
| 2024-02-29 04:54:18 | 32d50550012464e12e6dd28b5c8fe81e | 1 / 70 (1.43%)
| 152.199.23.214:443 |
| 2024-02-25 20:22:38 | 083fb90ab388b557702eca8b9e023241 | 12 / 66 (18.18%)
| 104.99.233.107:443 |
| 2024-02-25 20:22:37 | 083fb90ab388b557702eca8b9e023241 | 12 / 66 (18.18%)
| 15.197.228.107:443 |
| 2024-02-24 08:31:21 | 21ce67a1b9496664a685c1915c9dcc45 | n/a | 104.99.233.107:443 |
| 2024-02-24 08:31:21 | 21ce67a1b9496664a685c1915c9dcc45 | n/a | 15.197.228.107:443 |
| 2024-02-23 21:32:46 | 135b56ce49be027a6ef7dfb242b69a91 | 14 / 69 (20.29%)
| 193.246.8.224:443 |
| 2024-02-23 21:32:46 | 135b56ce49be027a6ef7dfb242b69a91 | 14 / 69 (20.29%)
| 3.33.231.75:443 |
| 2024-02-22 05:48:18 | 047c2f1c3e1d407f75742055ac3e7574 | 17 / 71 (23.94%)
| 3.33.231.75:443 |
| 2024-02-22 05:48:18 | 047c2f1c3e1d407f75742055ac3e7574 | 17 / 71 (23.94%)
| 3.33.231.75:443 |
| 2024-02-22 05:48:18 | 047c2f1c3e1d407f75742055ac3e7574 | 17 / 71 (23.94%)
| 3.33.231.75:443 |
| 2024-02-22 05:48:17 | 047c2f1c3e1d407f75742055ac3e7574 | 17 / 71 (23.94%)
| 193.246.8.224:443 |
| 2024-02-22 05:48:17 | 047c2f1c3e1d407f75742055ac3e7574 | 17 / 71 (23.94%)
| 193.246.8.224:443 |
| 2024-02-22 05:48:17 | 047c2f1c3e1d407f75742055ac3e7574 | 17 / 71 (23.94%)
| 193.246.8.224:443 |
| 2024-02-21 10:53:29 | a9a10b607d56608f9ef7d1d17cafa955 | n/a | 104.99.233.107:443 |
| 2024-02-21 10:53:29 | a9a10b607d56608f9ef7d1d17cafa955 | n/a | 3.33.231.75:443 |
| 2024-02-19 06:11:56 | 16d8f5db29fa8ff6f8e8766aa4661879 | n/a | 15.197.228.107:443 |
| 2024-02-19 06:11:55 | 16d8f5db29fa8ff6f8e8766aa4661879 | n/a | 23.212.89.111:443 |
| 2024-02-19 03:56:29 | 04df9ddf56c84311948e2baea7177d70 | n/a | 184.86.80.163:443 |
| 2024-02-19 03:56:29 | 04df9ddf56c84311948e2baea7177d70 | n/a | 15.197.228.107:443 |
| 2024-02-19 03:56:29 | 04df9ddf56c84311948e2baea7177d70 | n/a | 15.197.228.107:443 |
| 2024-02-19 03:56:29 | 04df9ddf56c84311948e2baea7177d70 | n/a | 184.86.80.163:443 |
| 2024-02-18 22:22:57 | 31db2fdfee094d551ca8a6777df028db | n/a | 104.99.233.107:443 |
| 2024-02-18 22:22:56 | 31db2fdfee094d551ca8a6777df028db | n/a | 3.33.231.75:443 |
| 2024-02-09 00:10:51 | 016d6734db47f4de144cb565a9682576 | n/a | 15.197.228.107:443 |
| 2024-02-09 00:10:50 | 016d6734db47f4de144cb565a9682576 | n/a | 104.99.233.107:443 |
| 2024-02-08 21:54:18 | a7e39d219fa4abf0af5d83933ab5a42e | n/a | 193.246.8.224:443 |
| 2024-02-08 21:54:18 | a7e39d219fa4abf0af5d83933ab5a42e | n/a | 3.33.231.75:443 |
| 2024-01-31 04:32:15 | 096b9187dbff1be5dc8c018beea07f02 | 16 / 69 (23.19%)
| 23.35.228.223:443 |
| 2024-01-31 04:32:14 | 096b9187dbff1be5dc8c018beea07f02 | 16 / 69 (23.19%)
| 15.197.228.107:443 |
| 2024-01-31 02:41:54 | 044041b9b93370affca14c5f35ff3f67 | n/a | 15.197.228.107:443 |
| 2024-01-31 02:41:53 | 044041b9b93370affca14c5f35ff3f67 | n/a | 2.17.220.195:443 |
| 2024-01-23 11:08:14 | a15a6d945affb1cb4bcd1a031e592c36 | n/a | 76.223.44.67:443 |
| 2024-01-23 05:10:06 | 0ea57cf3d7a29a80fd42a8f557d91766 | 13 / 67 (19.40%)
| 15.197.228.107:443 |
| 2024-01-23 05:10:05 | 0ea57cf3d7a29a80fd42a8f557d91766 | 13 / 67 (19.40%)
| 193.246.8.224:443 |
| 2024-01-17 12:53:59 | 2bbd60274dca8509bbcaf724c585ab92 | n/a | 23.212.89.111:443 |
| 2024-01-17 12:53:59 | 2bbd60274dca8509bbcaf724c585ab92 | n/a | 15.197.228.107:443 |
| 2024-01-16 07:25:35 | 1c285addecadc2d602f23c7d07cfe40e | n/a | 193.246.8.224:443 |
| 2024-01-16 07:25:35 | 1c285addecadc2d602f23c7d07cfe40e | n/a | 3.33.231.75:443 |
| 2024-01-14 09:20:13 | d4bb820e83fdbf7e8a58147abd5953f2 | n/a | 3.33.231.75:443 |
| 2024-01-14 09:20:13 | d4bb820e83fdbf7e8a58147abd5953f2 | n/a | 193.246.8.224:443 |
# of entries: 100 (max: 100)