JA3 Fingerprints
You can find further information about the JA3 fingerprint 0cc1e84568e471aa1d62ad4158ade6b5, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 0cc1e84568e471aa1d62ad4158ade6b5 |
|---|---|
| First seen: | 2018-06-24 10:50:47 UTC |
| Last seen: | 2021-06-21 02:35:57 UTC |
| Status: | Blacklisted |
| Malware samples: | 253 |
| Destination IPs: | 168 |
| Malware: | Tofsee  |
| Listing date: | 2018-11-14 12:52:01 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2023-12-06 00:00:07 | 11b1ba039039eac7710dc96b06c01e89 |  14 / 70 (20.00%)
| 104.99.233.107:443 |
| 2023-12-06 00:00:06 | 11b1ba039039eac7710dc96b06c01e89 | 14 / 70 (20.00%)
| 15.197.228.107:443 |
| 2023-12-05 09:11:30 | a1f70d300d2b55c87eb9e810e5e586d9 | n/a | 3.33.231.75:443 |
| 2023-12-05 09:11:30 | a1f70d300d2b55c87eb9e810e5e586d9 | n/a | 23.214.205.201:443 |
| 2023-11-30 08:51:45 | a840aaf44ce6a385ba3a0f9b23ba657d | n/a | 3.33.231.75:443 |
| 2023-11-30 08:51:45 | a840aaf44ce6a385ba3a0f9b23ba657d | n/a | 23.36.225.100:443 |
| 2023-11-29 16:25:01 | af99e2dbbbc7585907f9a280e9639ed9 | n/a | 95.100.49.56:443 |
| 2023-11-29 16:25:01 | af99e2dbbbc7585907f9a280e9639ed9 | n/a | 15.197.228.107:443 |
| 2023-11-29 14:59:17 | a5beb1751cfa03f572bf2b5522b56070 | n/a | 20.190.151.134:443 |
| 2023-11-29 14:59:17 | a5beb1751cfa03f572bf2b5522b56070 | n/a | 52.96.165.98:443 |
| 2023-11-29 14:59:16 | a5beb1751cfa03f572bf2b5522b56070 | n/a | 13.107.246.71:443 |
| 2023-11-29 14:59:15 | a5beb1751cfa03f572bf2b5522b56070 | n/a | 52.96.190.194:443 |
| 2023-11-29 14:59:14 | a5beb1751cfa03f572bf2b5522b56070 | n/a | 52.96.44.162:443 |
| 2023-11-29 14:59:13 | a5beb1751cfa03f572bf2b5522b56070 | n/a | 13.107.42.22:443 |
| 2023-11-29 04:56:01 | 20205265b84efb39bfbd5d616ac20180 | 54 / 68 (79.41%)
| 52.96.36.82:443 |
| 2023-11-28 17:05:40 | d8bb7b0c8fef217cb7331fef598af2f0 | n/a | 52.96.226.130:443 |
| 2023-11-28 17:05:40 | d8bb7b0c8fef217cb7331fef598af2f0 | n/a | 13.107.42.22:443 |
| 2023-11-28 17:05:40 | d8bb7b0c8fef217cb7331fef598af2f0 | n/a | 52.96.109.178:443 |
| 2023-11-28 17:05:39 | d8bb7b0c8fef217cb7331fef598af2f0 | n/a | 20.190.190.131:443 |
| 2023-11-28 17:05:39 | d8bb7b0c8fef217cb7331fef598af2f0 | n/a | 13.107.246.71:443 |
| 2023-11-28 07:17:27 | 0d4f6d35fa82f7d29105672c7d80f41b | 59 / 72 (81.94%)
| 40.97.222.194:443 |
| 2023-11-28 07:17:27 | 0d4f6d35fa82f7d29105672c7d80f41b | 59 / 72 (81.94%)
| 20.190.151.8:443 |
| 2023-11-28 07:17:26 | 0d4f6d35fa82f7d29105672c7d80f41b | 59 / 72 (81.94%)
| 52.96.64.226:443 |
| 2023-11-28 07:17:25 | 0d4f6d35fa82f7d29105672c7d80f41b | 59 / 72 (81.94%)
| 52.96.166.162:443 |
| 2023-11-28 07:17:24 | 0d4f6d35fa82f7d29105672c7d80f41b | 59 / 72 (81.94%)
| 13.107.246.71:443 |
| 2023-11-28 07:17:24 | 0d4f6d35fa82f7d29105672c7d80f41b | 59 / 72 (81.94%)
| 13.107.42.22:443 |
| 2023-11-28 07:17:24 | 0d4f6d35fa82f7d29105672c7d80f41b | 59 / 72 (81.94%)
| 20.190.155.1:443 |
| 2023-11-27 21:24:16 | 7b28688ac56b2ff49df79f92867f68c7 | n/a | 15.197.228.107:443 |
| 2023-11-27 21:24:16 | 7b28688ac56b2ff49df79f92867f68c7 | n/a | 104.99.233.107:443 |
| 2023-11-27 12:24:17 | aeb1a624aebfa0e25989103fc938fd65 | n/a | 23.35.228.223:443 |
| 2023-11-27 12:24:17 | aeb1a624aebfa0e25989103fc938fd65 | n/a | 15.197.228.107:443 |
| 2023-11-26 05:53:29 | 150b60138bf11e0a1c2afb87bb47c692 | n/a | 184.86.80.163:443 |
| 2023-11-26 05:53:28 | 150b60138bf11e0a1c2afb87bb47c692 | n/a | 3.33.231.75:443 |
| 2023-11-26 03:17:11 | 00e42aa337c7d6b7ab3fb2fa6b6d5028 | n/a | 193.246.8.224:443 |
| 2023-11-26 03:17:10 | 00e42aa337c7d6b7ab3fb2fa6b6d5028 | n/a | 3.33.231.75:443 |
| 2023-11-24 12:00:47 | 53f8657d7bf1532f24e91b1edf788850 | n/a | 15.197.228.107:443 |
| 2023-11-24 12:00:46 | 53f8657d7bf1532f24e91b1edf788850 | n/a | 2.23.221.99:443 |
| 2023-11-22 04:08:33 | 1a3b446bbc635de45ea1e0af3448107a | n/a | 3.33.231.75:443 |
| 2023-11-22 04:08:32 | 1a3b446bbc635de45ea1e0af3448107a | n/a | 104.123.44.196:443 |
| 2023-11-21 21:55:22 | b7a05b11d524985088dfe533abaab960 | n/a | 3.33.231.75:443 |
| 2023-11-21 21:55:22 | b7a05b11d524985088dfe533abaab960 | n/a | 193.246.8.224:443 |
| 2023-11-21 20:38:48 | a72bed17ee0e06d6944bf405636b23b7 | n/a | 193.246.8.224:443 |
| 2023-11-21 20:38:47 | a72bed17ee0e06d6944bf405636b23b7 | n/a | 15.197.228.107:443 |
| 2023-11-21 03:13:35 | 4ae92c9bf6026ed44b0af84ad268626e | n/a | 2.16.13.139:443 |
| 2023-11-21 03:13:35 | 4ae92c9bf6026ed44b0af84ad268626e | n/a | 3.33.231.75:443 |
| 2023-11-20 21:32:53 | 0260e514332826d9816d0c89dc7b194b | n/a | 2.16.13.139:443 |
| 2023-11-20 21:32:53 | 0260e514332826d9816d0c89dc7b194b | n/a | 3.33.231.75:443 |
| 2023-11-17 06:50:59 | 240ba260847f22bfd00c7a3d2a9f6425 | n/a | 15.197.228.107:443 |
| 2023-11-17 06:50:58 | 240ba260847f22bfd00c7a3d2a9f6425 | n/a | 95.100.49.56:443 |
| 2023-11-13 01:06:30 | 68cf78167cbb91a20f8a72264278eb11 | 55 / 72 (76.39%)
| 20.190.155.2:443 |
| 2023-11-13 01:06:30 | 68cf78167cbb91a20f8a72264278eb11 | 55 / 72 (76.39%)
| 52.96.79.18:443 |
| 2023-11-11 13:28:25 | adbe169e20e0dbadd2bd03a3ac6e595b | n/a | 15.197.228.107:443 |
| 2023-11-11 13:28:25 | adbe169e20e0dbadd2bd03a3ac6e595b | n/a | 2.20.93.176:443 |
| 2023-11-10 20:36:10 | b6ecf81a16fe3360a74a9af0409f505d | n/a | 193.246.8.224:443 |
| 2023-11-10 20:36:10 | b6ecf81a16fe3360a74a9af0409f505d | n/a | 15.197.228.107:443 |
| 2023-11-10 20:36:10 | b6ecf81a16fe3360a74a9af0409f505d | n/a | 193.246.8.224:443 |
| 2023-11-10 20:36:10 | b6ecf81a16fe3360a74a9af0409f505d | n/a | 15.197.228.107:443 |
| 2023-11-09 09:20:51 | a248ebd8b8c2d0640a3b1539fa729809 | n/a | 13.248.190.80:443 |
| 2023-11-08 13:13:14 | a74b043f4880139d235e7fffeebed212 | n/a | 152.199.23.214:443 |
| 2023-11-08 10:30:31 | a07564e9e4ee87ed9572b4d10ac5b69f | n/a | 3.33.231.75:443 |
| 2023-11-08 10:30:31 | a07564e9e4ee87ed9572b4d10ac5b69f | n/a | 193.246.8.224:443 |
| 2023-10-31 14:33:34 | a9b000e72a0a40a7b082c6927663186b | n/a | 3.33.231.75:443 |
| 2023-10-29 05:32:17 | 2b04581398ea6ea86d234120dfd4657d | n/a | 104.123.44.196:443 |
| 2023-10-29 05:32:16 | 2b04581398ea6ea86d234120dfd4657d | n/a | 3.33.231.75:443 |
| 2023-10-24 15:03:14 | c99b0c227ed5d1e38d8d7a1ead87bb7d | n/a | 13.107.42.22:443 |
| 2023-10-24 15:03:14 | c99b0c227ed5d1e38d8d7a1ead87bb7d | n/a | 52.96.79.66:443 |
| 2023-10-24 15:03:13 | c99b0c227ed5d1e38d8d7a1ead87bb7d | n/a | 20.190.155.65:443 |
| 2023-10-23 03:13:14 | 150ba3e844404574de185c1631e9908f | 14 / 71 (19.72%)
| 23.35.228.223:443 |
| 2023-10-23 03:13:14 | 150ba3e844404574de185c1631e9908f | 14 / 71 (19.72%)
| 3.33.231.75:443 |
| 2023-10-19 18:09:33 | b8cd801b020af9b681c2bb7b21d7fcb3 | n/a | 20.190.151.68:443 |
| 2023-10-19 18:09:32 | b8cd801b020af9b681c2bb7b21d7fcb3 | n/a | 13.107.42.22:443 |
| 2023-10-19 18:09:32 | b8cd801b020af9b681c2bb7b21d7fcb3 | n/a | 13.107.253.71:443 |
| 2023-10-19 18:09:31 | b8cd801b020af9b681c2bb7b21d7fcb3 | n/a | 52.96.201.114:443 |
| 2023-10-19 15:08:48 | a92295d0720c381c3aaf3b2eb258e4b4 | n/a | 193.246.8.224:443 |
| 2023-10-19 15:08:48 | a92295d0720c381c3aaf3b2eb258e4b4 | n/a | 15.197.228.107:443 |
| 2023-10-19 13:41:37 | abaf4845c5e339c4d3e8580b5746465b | n/a | 23.54.112.231:443 |
| 2023-10-19 13:41:36 | abaf4845c5e339c4d3e8580b5746465b | n/a | 15.197.228.107:443 |
| 2023-10-18 14:49:42 | ab9a4a71a62b0ec0eab1a4b3d95692e9 | n/a | 3.33.231.75:443 |
| 2023-10-18 14:49:42 | ab9a4a71a62b0ec0eab1a4b3d95692e9 | n/a | 193.246.8.224:443 |
| 2023-10-14 10:39:29 | 0945ee1783068290b06c483868964c49 | n/a | 15.197.228.107:443 |
| 2023-10-14 10:39:29 | 0945ee1783068290b06c483868964c49 | n/a | 23.54.112.231:443 |
| 2023-10-14 06:47:37 | 14ac0df2c1d3823f331e3979d1fc8c9b | 12 / 70 (17.14%)
| 3.33.231.75:443 |
| 2023-10-14 06:47:37 | 14ac0df2c1d3823f331e3979d1fc8c9b | 12 / 70 (17.14%)
| 23.54.112.231:443 |
| 2023-10-07 13:22:37 | b0f4b26dd16d398b506b72cef270abfa | n/a | 15.197.228.107:443 |
| 2023-10-07 13:22:36 | b0f4b26dd16d398b506b72cef270abfa | n/a | 193.246.8.224:443 |
| 2023-10-07 03:11:06 | 1c50d3d2e177c9a36629d375f360050d | n/a | 3.33.231.75:443 |
| 2023-10-07 03:11:06 | 1c50d3d2e177c9a36629d375f360050d | n/a | 193.246.8.224:443 |
| 2023-10-03 03:00:06 | 1a589d173940a53cf562ea7693fa55c3 | n/a | 15.197.228.107:443 |
| 2023-10-03 03:00:05 | 1a589d173940a53cf562ea7693fa55c3 | n/a | 23.35.228.223:443 |
| 2023-10-01 05:28:48 | 272b09730e5e07d65ce2bc734efe35da | n/a | 104.123.44.196:443 |
| 2023-10-01 05:28:48 | 272b09730e5e07d65ce2bc734efe35da | n/a | 15.197.228.107:443 |
| 2023-09-30 22:53:45 | 04ead5197615885c60249f607c5956db | 14 / 70 (20.00%)
| 15.197.228.107:443 |
| 2023-09-30 22:53:45 | 04ead5197615885c60249f607c5956db | 14 / 70 (20.00%)
| 104.123.44.196:443 |
| 2023-09-30 20:46:45 | 018c033e120dbff74a5396afa653e5c9 | 16 / 71 (22.54%)
| 3.33.231.75:443 |
| 2023-09-30 20:46:45 | 018c033e120dbff74a5396afa653e5c9 | 16 / 71 (22.54%)
| 193.246.8.224:443 |
| 2023-09-30 13:30:38 | c6ba16b411dbc6cd79ffd603d73f9aff | n/a | 15.197.228.107:443 |
| 2023-09-29 01:23:36 | 0e36edcf7cec798c7f1f9a49ee0de5e6 | 15 / 71 (21.13%)
| 3.33.231.75:443 |
| 2023-09-29 01:23:35 | 0e36edcf7cec798c7f1f9a49ee0de5e6 | 15 / 71 (21.13%)
| 104.123.44.196:443 |
| 2023-09-26 16:26:03 | a7044e73ba7916dd1ada629115938153 | n/a | 193.246.8.224:443 |
| 2023-09-26 16:26:03 | a7044e73ba7916dd1ada629115938153 | n/a | 15.197.228.107:443 |
# of entries: 100 (max: 100)