JA3 Fingerprints

You can find further information about the JA3 fingerprint 1aa7bf8b97e540ca5edd75f7b8384bfa, including the corresponding malware samples as well as the associated botnet C&Cs.

Database Entry


JA3 Fingerprint:1aa7bf8b97e540ca5edd75f7b8384bfa
First seen:2017-07-14 20:23:38 UTC
Last seen:2019-07-20 13:48:06 UTC
Status:Blacklisted
Malware samples:1'565
Destination IPs:1'114
Malware:TrickBot -
Listing date:2019-06-20 14:09:25

Malware Samples


The table below documents all malware samples associated with this JA3 Fingerprint.

Timestamp (UTC)Malware Sample (MD5 hash)VTBotnet C&C (IP:port)
2019-07-20 13:48:060546fd89f3c500985b7e6ee2e72ca511Virustotal results 18/70 (25.71%) 212.80.216.202:447
2019-07-20 13:48:060546fd89f3c500985b7e6ee2e72ca511Virustotal results 18/70 (25.71%) 125.99.253.34:449
2019-07-20 13:48:060546fd89f3c500985b7e6ee2e72ca511Virustotal results 18/70 (25.71%) 103.117.232.198:449
2019-07-20 13:48:060546fd89f3c500985b7e6ee2e72ca511Virustotal results 18/70 (25.71%) 198.8.91.37:447
2019-07-20 12:00:21b4072a8211f1f73e25d29cce063c6669Virustotal results 7/70 (10.00%) 107.191.109.143:443
2019-07-20 11:34:170ac034e6575aafbe5c85ed9235af4562Virustotal results 8/69 (11.59%) 107.191.109.143:443
2019-07-20 10:56:47d1a0a3f15016a58c79ef9a92a47409c2Virustotal results 35/71 (49.30%) 198.8.91.37:447
2019-07-20 10:56:47d1a0a3f15016a58c79ef9a92a47409c2Virustotal results 35/71 (49.30%) 212.80.216.202:447
2019-07-20 10:56:47d1a0a3f15016a58c79ef9a92a47409c2Virustotal results 35/71 (49.30%) 125.99.253.34:449
2019-07-20 10:56:46d1a0a3f15016a58c79ef9a92a47409c2Virustotal results 35/71 (49.30%) 23.94.93.106:443
2019-07-20 10:40:399078f96a30b6a05ff34bca95ffdbfa06Virustotal results 34/70 (48.57%) 66.70.218.60:447
2019-07-20 10:40:399078f96a30b6a05ff34bca95ffdbfa06Virustotal results 34/70 (48.57%) 23.94.93.106:443
2019-07-20 10:40:399078f96a30b6a05ff34bca95ffdbfa06Virustotal results 34/70 (48.57%) 103.117.232.198:449
2019-07-20 10:31:27a101dd7e9db6c34fed8bbee1cfa86392Virustotal results 33/70 (47.14%) 103.117.232.198:449
2019-07-20 10:31:27a101dd7e9db6c34fed8bbee1cfa86392Virustotal results 33/70 (47.14%) 5.253.63.119:447
2019-07-20 10:31:26a101dd7e9db6c34fed8bbee1cfa86392Virustotal results 33/70 (47.14%) 198.8.91.37:447
2019-07-20 10:18:28e8abb8794f9f32e7bdb4a52c5dd03e73Virustotal results 34/73 (46.58%) 198.8.91.37:447
2019-07-20 10:18:27e8abb8794f9f32e7bdb4a52c5dd03e73Virustotal results 34/73 (46.58%) 103.117.232.198:449
2019-07-20 10:18:27e8abb8794f9f32e7bdb4a52c5dd03e73Virustotal results 34/73 (46.58%) 66.70.218.60:447
2019-07-20 10:18:27e8abb8794f9f32e7bdb4a52c5dd03e73Virustotal results 34/73 (46.58%) 168.235.102.16:443
2019-07-20 08:02:15835d77b803e80ac4d61a4ef491050558n/a23.94.93.106:443
2019-07-20 08:02:15835d77b803e80ac4d61a4ef491050558n/a66.70.218.60:447
2019-07-20 08:02:15835d77b803e80ac4d61a4ef491050558n/a103.117.232.198:449
2019-07-20 08:02:15835d77b803e80ac4d61a4ef491050558n/a198.8.91.37:447
2019-07-20 06:33:3893688bc6b031e4b67639295f863c2df7n/a125.99.253.34:449
2019-07-20 06:33:3893688bc6b031e4b67639295f863c2df7n/a66.70.218.60:447
2019-07-20 06:33:3893688bc6b031e4b67639295f863c2df7n/a198.8.91.37:447
2019-07-20 06:33:3893688bc6b031e4b67639295f863c2df7n/a23.94.93.106:443
2019-07-20 06:30:436749d2de10e518da035d8bae67bf4405Virustotal results 38/69 (55.07%) 185.224.132.65:443
2019-07-20 06:30:436749d2de10e518da035d8bae67bf4405Virustotal results 38/69 (55.07%) 198.8.91.37:447
2019-07-20 06:30:436749d2de10e518da035d8bae67bf4405Virustotal results 38/69 (55.07%) 103.117.232.198:449
2019-07-19 21:16:381833dcd594fe42ce1462f27c062cc2e3Virustotal results 51/71 (71.83%) 5.253.63.119:447
2019-07-19 21:16:381833dcd594fe42ce1462f27c062cc2e3Virustotal results 51/71 (71.83%) 198.8.91.37:447
2019-07-19 21:16:381833dcd594fe42ce1462f27c062cc2e3Virustotal results 51/71 (71.83%) 125.99.253.34:449
2019-07-19 18:12:5700af7ad4d104e705d34e0f03f8f5463cn/a194.1.237.132:443
2019-07-19 14:46:2019cffd8ddd16a10e8d7e3d6f8dccd8fdVirustotal results 43/71 (60.56%) 194.1.237.132:443
2019-07-19 13:40:38bb683552369e76ee56346b3e602b3804Virustotal results 8/70 (11.43%) 85.204.116.138:443
2019-07-19 13:40:38bb683552369e76ee56346b3e602b3804Virustotal results 8/70 (11.43%) 45.67.228.231:447
2019-07-19 13:40:37bb683552369e76ee56346b3e602b3804Virustotal results 8/70 (11.43%) 198.8.91.37:447
2019-07-19 13:40:37bb683552369e76ee56346b3e602b3804Virustotal results 8/70 (11.43%) 192.243.101.211:443
2019-07-19 13:40:36bb683552369e76ee56346b3e602b3804Virustotal results 8/70 (11.43%) 103.117.232.198:449
2019-07-19 13:40:36bb683552369e76ee56346b3e602b3804Virustotal results 8/70 (11.43%) 23.94.93.106:443
2019-07-19 12:25:13083e611ceccb8f9e072f91b177840c18Virustotal results 47/70 (67.14%) 198.8.91.37:447
2019-07-19 12:25:12083e611ceccb8f9e072f91b177840c18Virustotal results 47/70 (67.14%) 146.196.122.167:449
2019-07-19 12:25:11083e611ceccb8f9e072f91b177840c18Virustotal results 47/70 (67.14%) 94.156.189.197:443
2019-07-19 12:25:11083e611ceccb8f9e072f91b177840c18Virustotal results 47/70 (67.14%) 125.99.253.34:449
2019-07-19 12:25:11083e611ceccb8f9e072f91b177840c18Virustotal results 47/70 (67.14%) 189.80.134.122:449
2019-07-19 09:28:328b49ef04b72f43b3de9727bee5a812b4Virustotal results 35/71 (49.30%) 131.196.184.141:449
2019-07-19 09:28:318b49ef04b72f43b3de9727bee5a812b4Virustotal results 35/71 (49.30%) 198.8.91.37:447
2019-07-19 09:28:318b49ef04b72f43b3de9727bee5a812b4Virustotal results 35/71 (49.30%) 190.154.203.218:449
2019-07-19 09:28:318b49ef04b72f43b3de9727bee5a812b4Virustotal results 35/71 (49.30%) 212.80.216.202:447
2019-07-19 09:05:348bda2241b2a8806e7256e6621759b0e6Virustotal results 34/68 (50.00%) 185.43.6.250:447
2019-07-19 09:05:348bda2241b2a8806e7256e6621759b0e6Virustotal results 34/68 (50.00%) 189.80.134.122:449
2019-07-19 08:53:19727f2d2ec78191c2e625567cb220fb96Virustotal results 34/70 (48.57%) 189.80.134.122:449
2019-07-19 08:53:18727f2d2ec78191c2e625567cb220fb96Virustotal results 34/70 (48.57%) 107.191.109.143:443
2019-07-19 08:53:18727f2d2ec78191c2e625567cb220fb96Virustotal results 34/70 (48.57%) 66.70.218.60:447
2019-07-19 08:47:4597008325aa9e1ad0e2bbe1022cac3c2bVirustotal results 34/70 (48.57%) 198.8.91.37:447
2019-07-19 08:47:4597008325aa9e1ad0e2bbe1022cac3c2bVirustotal results 34/70 (48.57%) 189.80.134.122:449
2019-07-19 08:47:4497008325aa9e1ad0e2bbe1022cac3c2bVirustotal results 34/70 (48.57%) 190.152.4.210:449
2019-07-19 08:47:4497008325aa9e1ad0e2bbe1022cac3c2bVirustotal results 34/70 (48.57%) 23.94.184.45:447
2019-07-19 08:47:4497008325aa9e1ad0e2bbe1022cac3c2bVirustotal results 34/70 (48.57%) 190.154.203.218:449
2019-07-19 08:33:023ec36b459d940b851b26cba7f011699dn/a187.58.56.26:449
2019-07-19 08:31:32842cc50c77e5f10ef49b773784f9d4b9Virustotal results 8/70 (11.43%) 189.80.134.122:449
2019-07-19 08:31:32842cc50c77e5f10ef49b773784f9d4b9Virustotal results 8/70 (11.43%) 198.8.91.37:447
2019-07-19 08:31:32842cc50c77e5f10ef49b773784f9d4b9Virustotal results 8/70 (11.43%) 190.13.160.19:449
2019-07-19 03:31:108b3be031451a471d48c8f12042348eebVirustotal results 35/71 (49.30%) 191.37.181.152:449
2019-07-19 03:31:108b3be031451a471d48c8f12042348eebVirustotal results 35/71 (49.30%) 198.8.91.37:447
2019-07-19 03:31:108b3be031451a471d48c8f12042348eebVirustotal results 35/71 (49.30%) 66.70.218.60:447
2019-07-19 03:31:108b3be031451a471d48c8f12042348eebVirustotal results 35/71 (49.30%) 190.154.203.218:449
2019-07-19 02:35:3630e0e6f78480f9b03d2f7e99b1824211n/a187.58.56.26:449
2019-07-19 02:35:3630e0e6f78480f9b03d2f7e99b1824211n/a198.8.91.37:447
2019-07-19 02:35:3630e0e6f78480f9b03d2f7e99b1824211n/a190.154.203.218:449
2019-07-19 00:01:30d66f1ef283964d335b7754dc94df9d01Virustotal results 33/69 (47.83%) 146.196.122.167:449
2019-07-19 00:01:29d66f1ef283964d335b7754dc94df9d01Virustotal results 33/69 (47.83%) 212.80.216.202:447
2019-07-18 23:25:2834ca5d295a92e274b71abcf6b3c757aan/a198.8.91.37:447
2019-07-18 23:25:2834ca5d295a92e274b71abcf6b3c757aan/a186.183.199.114:449
2019-07-18 23:25:2834ca5d295a92e274b71abcf6b3c757aan/a189.80.134.122:449
2019-07-18 22:20:42daaae975afbedbc3c0da0f642f28644fVirustotal results 7/69 (10.14%) 198.8.91.37:447
2019-07-18 22:20:42daaae975afbedbc3c0da0f642f28644fVirustotal results 7/69 (10.14%) 177.8.172.86:449
2019-07-18 20:52:18d10fbd2de322520ab164311b3560577aVirustotal results 32/68 (47.06%) 190.154.203.218:449
2019-07-18 20:52:18d10fbd2de322520ab164311b3560577aVirustotal results 32/68 (47.06%) 198.8.91.37:447
2019-07-18 19:34:54dc0f09bfe9bd374add14770ba5e3312bVirustotal results 32/69 (46.38%) 66.70.218.60:447
2019-07-18 19:34:54dc0f09bfe9bd374add14770ba5e3312bVirustotal results 32/69 (46.38%) 187.58.56.26:449
2019-07-18 19:04:003ad70699796a10eedf3194fc56bdb7d1Virustotal results 34/69 (49.28%) 190.154.203.218:449
2019-07-18 19:04:003ad70699796a10eedf3194fc56bdb7d1Virustotal results 34/69 (49.28%) 198.8.91.37:447
2019-07-18 19:03:593ad70699796a10eedf3194fc56bdb7d1Virustotal results 34/69 (49.28%) 190.152.4.210:449
2019-07-18 18:58:07c496116da346bfe8f2252fef63551f9fn/a190.152.4.210:449
2019-07-18 18:58:07c496116da346bfe8f2252fef63551f9fn/a194.1.237.132:443
2019-07-18 18:58:07c496116da346bfe8f2252fef63551f9fn/a189.80.134.122:449
2019-07-18 18:58:07c496116da346bfe8f2252fef63551f9fn/a31.202.132.159:447
2019-07-18 18:46:09bceb2c1a1a55ca1e732eb5c7e5ff3257Virustotal results 33/69 (47.83%) 190.154.203.218:449
2019-07-18 18:46:09bceb2c1a1a55ca1e732eb5c7e5ff3257Virustotal results 33/69 (47.83%) 187.58.56.26:449
2019-07-18 18:46:09bceb2c1a1a55ca1e732eb5c7e5ff3257Virustotal results 33/69 (47.83%) 198.8.91.37:447
2019-07-18 17:16:194ab85a9e54c071e787ef1257ef2aaaffVirustotal results 35/71 (49.30%) 177.103.240.149:449
2019-07-18 17:16:184ab85a9e54c071e787ef1257ef2aaaffVirustotal results 35/71 (49.30%) 186.183.199.114:449
2019-07-18 17:16:174ab85a9e54c071e787ef1257ef2aaaffVirustotal results 35/71 (49.30%) 198.8.91.37:447
2019-07-18 16:31:2358b15712999b534b5fb4d79e35a325e0n/a190.154.203.218:449
2019-07-18 16:31:2358b15712999b534b5fb4d79e35a325e0n/a198.8.91.37:447
2019-07-18 16:20:38eb5c2800691de88772d94eaca6e384b1n/a190.154.203.218:449
2019-07-18 16:20:38eb5c2800691de88772d94eaca6e384b1n/a66.70.218.60:447

# of entries: 100 (max: 100)