JA3 Fingerprints
You can find further information about the JA3 fingerprint 1fe4c7a3544eb27afec2adfb3a3dbf60, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 1fe4c7a3544eb27afec2adfb3a3dbf60 |
|---|---|
| First seen: | 2018-03-11 19:23:08 UTC |
| Last seen: | 2020-08-04 09:52:18 UTC |
| Status: | Blacklisted |
| Malware samples: | 3'719 |
| Destination IPs: | 482 |
| Malware: | Tofsee  |
| Listing date: | 2020-01-09 14:18:54 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2020-08-04 09:52:18 | b093ee39c276f080ebf295497369296a |  23 / 70 (32.86%)
| 185.255.55.29:443 |
| 2020-08-04 09:52:18 | b093ee39c276f080ebf295497369296a | 23 / 70 (32.86%)
| 31.13.72.8:443 |
| 2020-08-04 09:52:18 | b093ee39c276f080ebf295497369296a | 23 / 70 (32.86%)
| 104.31.66.68:443 |
| 2020-08-04 09:52:18 | b093ee39c276f080ebf295497369296a | 23 / 70 (32.86%)
| 74.114.154.18:443 |
| 2020-08-04 09:52:18 | b093ee39c276f080ebf295497369296a | 23 / 70 (32.86%)
| 31.13.72.36:443 |
| 2020-08-04 09:52:18 | b093ee39c276f080ebf295497369296a | 23 / 70 (32.86%)
| 104.31.67.68:443 |
| 2020-08-04 09:52:18 | b093ee39c276f080ebf295497369296a | 23 / 70 (32.86%)
| 23.128.64.141:443 |
| 2020-08-04 09:52:18 | b093ee39c276f080ebf295497369296a | 23 / 70 (32.86%)
| 74.114.154.22:443 |
| 2020-08-04 09:52:18 | b093ee39c276f080ebf295497369296a | 23 / 70 (32.86%)
| 176.58.123.25:443 |
| 2020-08-04 09:52:18 | b093ee39c276f080ebf295497369296a | 23 / 70 (32.86%)
| 157.245.5.40:443 |
| 2020-08-03 14:37:11 | c4a5eb649861af6280d101cb0439686a | 40 / 69 (57.97%)
| 176.58.123.25:443 |
| 2020-08-03 14:37:11 | c4a5eb649861af6280d101cb0439686a | 40 / 69 (57.97%)
| 157.245.5.40:443 |
| 2020-08-03 14:37:11 | c4a5eb649861af6280d101cb0439686a | 40 / 69 (57.97%)
| 104.31.67.68:443 |
| 2020-08-03 07:24:10 | bb8b808f237435464187e8f353b87292 | 40 / 70 (57.14%)
| 31.13.72.36:443 |
| 2020-08-03 07:24:10 | bb8b808f237435464187e8f353b87292 | 40 / 70 (57.14%)
| 104.31.67.68:443 |
| 2020-08-03 07:24:10 | bb8b808f237435464187e8f353b87292 | 40 / 70 (57.14%)
| 157.240.194.18:443 |
| 2020-08-03 07:24:10 | bb8b808f237435464187e8f353b87292 | 40 / 70 (57.14%)
| 74.114.154.18:443 |
| 2020-08-03 07:24:09 | bb8b808f237435464187e8f353b87292 | 40 / 70 (57.14%)
| 176.58.123.25:443 |
| 2020-08-03 07:24:09 | bb8b808f237435464187e8f353b87292 | 40 / 70 (57.14%)
| 31.13.72.8:443 |
| 2020-08-03 07:24:09 | bb8b808f237435464187e8f353b87292 | 40 / 70 (57.14%)
| 157.245.5.40:443 |
| 2020-08-03 07:24:09 | bb8b808f237435464187e8f353b87292 | 40 / 70 (57.14%)
| 185.255.55.29:443 |
| 2020-08-03 07:24:09 | bb8b808f237435464187e8f353b87292 | 40 / 70 (57.14%)
| 23.128.64.141:443 |
| 2020-08-02 20:42:15 | b57f1b66b47fa8ed61120db2a0b6a4b4 | 48 / 73 (65.75%)
| 157.245.5.40:443 |
| 2020-08-02 09:10:38 | a9b797b7d1e7d8ab201dfc97d1c9b291 | 39 / 71 (54.93%)
| 172.67.208.45:443 |
| 2020-08-02 08:22:21 | a6fa975b4d244b47874d586f048d594d | 42 / 72 (58.33%)
| 157.245.5.40:443 |
| 2020-08-02 08:22:21 | a6fa975b4d244b47874d586f048d594d | 42 / 72 (58.33%)
| 157.240.194.18:443 |
| 2020-08-02 08:22:21 | a6fa975b4d244b47874d586f048d594d | 42 / 72 (58.33%)
| 31.13.72.8:443 |
| 2020-08-02 08:22:20 | a6fa975b4d244b47874d586f048d594d | 42 / 72 (58.33%)
| 176.58.123.25:443 |
| 2020-08-02 08:22:20 | a6fa975b4d244b47874d586f048d594d | 42 / 72 (58.33%)
| 157.240.194.35:443 |
| 2020-08-02 08:22:20 | a6fa975b4d244b47874d586f048d594d | 42 / 72 (58.33%)
| 23.128.64.141:443 |
| 2020-08-02 08:22:20 | a6fa975b4d244b47874d586f048d594d | 42 / 72 (58.33%)
| 104.31.66.68:443 |
| 2020-08-02 08:22:20 | a6fa975b4d244b47874d586f048d594d | 42 / 72 (58.33%)
| 185.255.55.29:443 |
| 2020-08-02 08:22:20 | a6fa975b4d244b47874d586f048d594d | 42 / 72 (58.33%)
| 74.114.154.18:443 |
| 2020-08-02 08:22:19 | a6fa975b4d244b47874d586f048d594d | 42 / 72 (58.33%)
| 31.13.72.36:443 |
| 2020-08-02 03:35:21 | a43b6c73b8a0f264516ef0dc29c8bdcc | 41 / 72 (56.94%)
| 104.31.67.68:443 |
| 2020-08-02 03:35:21 | a43b6c73b8a0f264516ef0dc29c8bdcc | 41 / 72 (56.94%)
| 185.255.55.29:443 |
| 2020-08-02 01:19:39 | a0cccd2bc1aa5faf546dddf7a261284e | 50 / 72 (69.44%)
| 31.13.72.8:443 |
| 2020-08-02 01:19:39 | a0cccd2bc1aa5faf546dddf7a261284e | 50 / 72 (69.44%)
| 31.13.72.36:443 |
| 2020-08-02 01:19:39 | a0cccd2bc1aa5faf546dddf7a261284e | 50 / 72 (69.44%)
| 176.58.123.25:443 |
| 2020-08-02 01:19:39 | a0cccd2bc1aa5faf546dddf7a261284e | 50 / 72 (69.44%)
| 74.114.154.18:443 |
| 2020-08-02 01:19:38 | a0cccd2bc1aa5faf546dddf7a261284e | 50 / 72 (69.44%)
| 185.255.55.29:443 |
| 2020-08-02 01:19:38 | a0cccd2bc1aa5faf546dddf7a261284e | 50 / 72 (69.44%)
| 157.240.194.18:443 |
| 2020-08-02 01:19:38 | a0cccd2bc1aa5faf546dddf7a261284e | 50 / 72 (69.44%)
| 157.245.5.40:443 |
| 2020-08-02 01:19:38 | a0cccd2bc1aa5faf546dddf7a261284e | 50 / 72 (69.44%)
| 23.128.64.141:443 |
| 2020-08-02 01:19:38 | a0cccd2bc1aa5faf546dddf7a261284e | 50 / 72 (69.44%)
| 172.67.208.45:443 |
| 2020-08-02 01:19:37 | a0cccd2bc1aa5faf546dddf7a261284e | 50 / 72 (69.44%)
| 104.31.66.68:443 |
| 2020-08-01 17:24:13 | ab1e8a77f2e542d1a0b4fb8f921d38ed | 47 / 70 (67.14%)
| 185.255.55.29:443 |
| 2020-08-01 17:24:13 | ab1e8a77f2e542d1a0b4fb8f921d38ed | 47 / 70 (67.14%)
| 104.31.67.68:443 |
| 2020-08-01 13:27:19 | a3cd6acca1f615c35dfb46abff35e8d0 | 40 / 71 (56.34%)
| 176.58.123.25:443 |
| 2020-08-01 13:27:19 | a3cd6acca1f615c35dfb46abff35e8d0 | 40 / 71 (56.34%)
| 23.128.64.141:443 |
| 2020-08-01 13:27:19 | a3cd6acca1f615c35dfb46abff35e8d0 | 40 / 71 (56.34%)
| 157.245.5.40:443 |
| 2020-08-01 13:27:18 | a3cd6acca1f615c35dfb46abff35e8d0 | 40 / 71 (56.34%)
| 172.67.208.45:443 |
| 2020-08-01 13:27:18 | a3cd6acca1f615c35dfb46abff35e8d0 | 40 / 71 (56.34%)
| 185.255.55.29:443 |
| 2020-08-01 13:27:18 | a3cd6acca1f615c35dfb46abff35e8d0 | 40 / 71 (56.34%)
| 172.217.17.35:443 |
| 2020-08-01 13:27:18 | a3cd6acca1f615c35dfb46abff35e8d0 | 40 / 71 (56.34%)
| 157.240.194.18:443 |
| 2020-08-01 13:27:18 | a3cd6acca1f615c35dfb46abff35e8d0 | 40 / 71 (56.34%)
| 31.13.72.36:443 |
| 2020-08-01 13:27:18 | a3cd6acca1f615c35dfb46abff35e8d0 | 40 / 71 (56.34%)
| 74.114.154.18:443 |
| 2020-08-01 13:27:18 | a3cd6acca1f615c35dfb46abff35e8d0 | 40 / 71 (56.34%)
| 172.217.17.68:443 |
| 2020-08-01 13:18:13 | a3aa6991856f6c14fae6319c8ff4d4ad | 37 / 71 (52.11%)
| 185.255.55.29:443 |
| 2020-08-01 03:20:05 | 0b1ab48693041c590917f43f91a050af | 49 / 70 (70.00%)
| 157.245.5.40:443 |
| 2020-07-31 19:31:19 | 00059fe736889416c64c570b6bcd925f | 41 / 70 (58.57%)
| 185.255.55.29:443 |
| 2020-07-31 19:31:18 | 00059fe736889416c64c570b6bcd925f | 41 / 70 (58.57%)
| 31.13.72.8:443 |
| 2020-07-31 19:31:17 | 00059fe736889416c64c570b6bcd925f | 41 / 70 (58.57%)
| 31.13.72.36:443 |
| 2020-07-31 19:31:17 | 00059fe736889416c64c570b6bcd925f | 41 / 70 (58.57%)
| 74.114.154.22:443 |
| 2020-07-31 07:41:22 | d2094b15b8bee2bb9f893d21348791fd | 43 / 73 (58.90%)
| 172.67.208.45:443 |
| 2020-07-31 07:41:22 | d2094b15b8bee2bb9f893d21348791fd | 43 / 73 (58.90%)
| 31.13.72.36:443 |
| 2020-07-31 07:41:22 | d2094b15b8bee2bb9f893d21348791fd | 43 / 73 (58.90%)
| 172.217.168.4:443 |
| 2020-07-31 07:41:22 | d2094b15b8bee2bb9f893d21348791fd | 43 / 73 (58.90%)
| 23.128.64.141:443 |
| 2020-07-31 07:41:22 | d2094b15b8bee2bb9f893d21348791fd | 43 / 73 (58.90%)
| 31.13.72.8:443 |
| 2020-07-31 07:41:22 | d2094b15b8bee2bb9f893d21348791fd | 43 / 73 (58.90%)
| 185.255.55.29:443 |
| 2020-07-31 07:41:22 | d2094b15b8bee2bb9f893d21348791fd | 43 / 73 (58.90%)
| 104.31.67.68:443 |
| 2020-07-31 07:41:22 | d2094b15b8bee2bb9f893d21348791fd | 43 / 73 (58.90%)
| 157.245.5.40:443 |
| 2020-07-31 07:41:21 | d2094b15b8bee2bb9f893d21348791fd | 43 / 73 (58.90%)
| 216.58.215.227:443 |
| 2020-07-31 07:41:21 | d2094b15b8bee2bb9f893d21348791fd | 43 / 73 (58.90%)
| 74.114.154.22:443 |
| 2020-07-30 22:44:35 | b7b2656ca4e392ac5f28029e5fbedc15 | 40 / 70 (57.14%)
| 157.240.194.18:443 |
| 2020-07-30 22:44:34 | b7b2656ca4e392ac5f28029e5fbedc15 | 40 / 70 (57.14%)
| 176.58.123.25:443 |
| 2020-07-30 22:44:34 | b7b2656ca4e392ac5f28029e5fbedc15 | 40 / 70 (57.14%)
| 31.13.72.8:443 |
| 2020-07-30 22:44:34 | b7b2656ca4e392ac5f28029e5fbedc15 | 40 / 70 (57.14%)
| 157.245.5.40:443 |
| 2020-07-30 22:44:34 | b7b2656ca4e392ac5f28029e5fbedc15 | 40 / 70 (57.14%)
| 74.114.154.18:443 |
| 2020-07-30 22:44:34 | b7b2656ca4e392ac5f28029e5fbedc15 | 40 / 70 (57.14%)
| 185.255.55.29:443 |
| 2020-07-30 22:44:34 | b7b2656ca4e392ac5f28029e5fbedc15 | 40 / 70 (57.14%)
| 31.13.72.36:443 |
| 2020-07-30 20:26:27 | b2c34dc4e5882e877beebcf6b047cf1e | 40 / 72 (55.56%)
| 157.245.5.40:443 |
| 2020-07-30 20:26:27 | b2c34dc4e5882e877beebcf6b047cf1e | 40 / 72 (55.56%)
| 185.255.55.29:443 |
| 2020-07-30 20:26:27 | b2c34dc4e5882e877beebcf6b047cf1e | 40 / 72 (55.56%)
| 74.114.154.18:443 |
| 2020-07-30 20:26:27 | b2c34dc4e5882e877beebcf6b047cf1e | 40 / 72 (55.56%)
| 31.13.72.8:443 |
| 2020-07-30 20:26:27 | b2c34dc4e5882e877beebcf6b047cf1e | 40 / 72 (55.56%)
| 172.67.208.45:443 |
| 2020-07-30 20:26:27 | b2c34dc4e5882e877beebcf6b047cf1e | 40 / 72 (55.56%)
| 23.128.64.141:443 |
| 2020-07-30 20:26:27 | b2c34dc4e5882e877beebcf6b047cf1e | 40 / 72 (55.56%)
| 31.13.72.36:443 |
| 2020-07-30 20:26:27 | b2c34dc4e5882e877beebcf6b047cf1e | 40 / 72 (55.56%)
| 176.58.123.25:443 |
| 2020-07-30 20:26:26 | b2c34dc4e5882e877beebcf6b047cf1e | 40 / 72 (55.56%)
| 104.31.67.68:443 |
| 2020-07-30 16:55:32 | 4ef90fa9b65f042b1c86aa832f18a0e2 | 46 / 72 (63.89%)
| 157.245.5.40:443 |
| 2020-07-30 16:55:31 | 4ef90fa9b65f042b1c86aa832f18a0e2 | 46 / 72 (63.89%)
| 176.58.123.25:443 |
| 2020-07-29 04:24:10 | 0d2a9158e86f6c281ebb9ac3a328d36f | 48 / 72 (66.67%)
| 23.128.64.141:443 |
| 2020-07-29 04:24:09 | 0d2a9158e86f6c281ebb9ac3a328d36f | 48 / 72 (66.67%)
| 157.245.5.40:443 |
| 2020-07-29 04:24:09 | 0d2a9158e86f6c281ebb9ac3a328d36f | 48 / 72 (66.67%)
| 104.31.67.68:443 |
| 2020-07-29 04:24:09 | 0d2a9158e86f6c281ebb9ac3a328d36f | 48 / 72 (66.67%)
| 31.13.72.8:443 |
| 2020-07-29 02:32:51 | 09bfeea672c8c8351e100fb167065442 | 44 / 72 (61.11%)
| 31.13.72.8:443 |
| 2020-07-29 02:32:51 | 09bfeea672c8c8351e100fb167065442 | 44 / 72 (61.11%)
| 172.67.208.45:443 |
| 2020-07-29 02:32:51 | 09bfeea672c8c8351e100fb167065442 | 44 / 72 (61.11%)
| 176.58.123.25:443 |
| 2020-07-29 02:32:51 | 09bfeea672c8c8351e100fb167065442 | 44 / 72 (61.11%)
| 31.13.72.36:443 |
# of entries: 100 (max: 100)