JA3 Fingerprints
You can find further information about the JA3 fingerprint 1fe4c7a3544eb27afec2adfb3a3dbf60, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 1fe4c7a3544eb27afec2adfb3a3dbf60 |
|---|---|
| First seen: | 2018-03-11 19:23:08 UTC |
| Last seen: | 2020-06-06 08:20:40 UTC |
| Status: | Blacklisted |
| Malware samples: | 3'047 |
| Destination IPs: | 182 |
| Malware: | Tofsee  |
| Listing date: | 2020-01-09 14:18:54 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2020-06-06 08:20:40 | 291500fd2bd96429e39d3aaee59f7a3f |  37 / 72 (51.39%)
| 157.245.5.40:443 |
| 2020-06-06 08:20:40 | 291500fd2bd96429e39d3aaee59f7a3f | 37 / 72 (51.39%)
| 176.58.123.25:443 |
| 2020-06-06 08:20:40 | 291500fd2bd96429e39d3aaee59f7a3f | 37 / 72 (51.39%)
| 104.31.66.68:443 |
| 2020-06-06 08:20:40 | 291500fd2bd96429e39d3aaee59f7a3f | 37 / 72 (51.39%)
| 31.13.72.8:443 |
| 2020-06-06 08:20:40 | 291500fd2bd96429e39d3aaee59f7a3f | 37 / 72 (51.39%)
| 23.128.64.141:443 |
| 2020-06-06 08:20:40 | 291500fd2bd96429e39d3aaee59f7a3f | 37 / 72 (51.39%)
| 31.13.72.36:443 |
| 2020-06-06 08:20:40 | 291500fd2bd96429e39d3aaee59f7a3f | 37 / 72 (51.39%)
| 74.114.154.18:443 |
| 2020-06-06 07:00:30 | 11cf5b6aa18edb0740097e3eddd976fe | 54 / 71 (76.06%)
| 104.31.66.68:443 |
| 2020-06-06 07:00:30 | 11cf5b6aa18edb0740097e3eddd976fe | 54 / 71 (76.06%)
| 176.58.123.25:443 |
| 2020-06-06 07:00:30 | 11cf5b6aa18edb0740097e3eddd976fe | 54 / 71 (76.06%)
| 157.245.5.40:443 |
| 2020-06-06 07:00:30 | 11cf5b6aa18edb0740097e3eddd976fe | 54 / 71 (76.06%)
| 74.114.154.18:443 |
| 2020-06-06 07:00:29 | 11cf5b6aa18edb0740097e3eddd976fe | 54 / 71 (76.06%)
| 31.13.72.36:443 |
| 2020-06-06 07:00:29 | 11cf5b6aa18edb0740097e3eddd976fe | 54 / 71 (76.06%)
| 185.255.55.29:443 |
| 2020-06-06 07:00:29 | 11cf5b6aa18edb0740097e3eddd976fe | 54 / 71 (76.06%)
| 31.13.72.8:443 |
| 2020-06-06 07:00:28 | 11cf5b6aa18edb0740097e3eddd976fe | 54 / 71 (76.06%)
| 23.128.64.141:443 |
| 2020-06-04 17:23:00 | 89df7dc5ff08f84e98b89069f9983a38 | 53 / 72 (73.61%)
| 157.245.5.40:443 |
| 2020-06-04 17:23:00 | 89df7dc5ff08f84e98b89069f9983a38 | 53 / 72 (73.61%)
| 157.240.194.18:443 |
| 2020-06-04 17:23:00 | 89df7dc5ff08f84e98b89069f9983a38 | 53 / 72 (73.61%)
| 172.67.208.45:443 |
| 2020-06-04 17:23:00 | 89df7dc5ff08f84e98b89069f9983a38 | 53 / 72 (73.61%)
| 31.13.72.36:443 |
| 2020-06-04 17:22:59 | 89df7dc5ff08f84e98b89069f9983a38 | 53 / 72 (73.61%)
| 31.13.72.8:443 |
| 2020-06-04 17:22:59 | 89df7dc5ff08f84e98b89069f9983a38 | 53 / 72 (73.61%)
| 104.31.66.68:443 |
| 2020-06-04 17:22:59 | 89df7dc5ff08f84e98b89069f9983a38 | 53 / 72 (73.61%)
| 157.240.194.35:443 |
| 2020-06-04 17:22:59 | 89df7dc5ff08f84e98b89069f9983a38 | 53 / 72 (73.61%)
| 176.58.123.25:443 |
| 2020-06-04 17:22:58 | 89df7dc5ff08f84e98b89069f9983a38 | 53 / 72 (73.61%)
| 185.255.55.29:443 |
| 2020-06-04 17:22:58 | 89df7dc5ff08f84e98b89069f9983a38 | 53 / 72 (73.61%)
| 74.114.154.22:443 |
| 2020-06-04 11:56:55 | 79e53783103373055ab968bfbb56b91f | 35 / 73 (47.95%)
| 176.58.123.25:443 |
| 2020-06-04 10:44:38 | 72dbe5bc1cc3d9bb9b4518d9e7af9c78 | 22 / 73 (30.14%)
| 176.58.123.25:443 |
| 2020-06-04 10:44:38 | 72dbe5bc1cc3d9bb9b4518d9e7af9c78 | 22 / 73 (30.14%)
| 104.31.66.68:443 |
| 2020-06-04 10:44:37 | 72dbe5bc1cc3d9bb9b4518d9e7af9c78 | 22 / 73 (30.14%)
| 23.128.64.141:443 |
| 2020-06-04 10:44:37 | 72dbe5bc1cc3d9bb9b4518d9e7af9c78 | 22 / 73 (30.14%)
| 185.255.55.29:443 |
| 2020-06-04 10:44:37 | 72dbe5bc1cc3d9bb9b4518d9e7af9c78 | 22 / 73 (30.14%)
| 157.240.194.18:443 |
| 2020-06-04 10:44:37 | 72dbe5bc1cc3d9bb9b4518d9e7af9c78 | 22 / 73 (30.14%)
| 172.67.208.45:443 |
| 2020-06-04 10:44:37 | 72dbe5bc1cc3d9bb9b4518d9e7af9c78 | 22 / 73 (30.14%)
| 31.13.72.8:443 |
| 2020-06-04 10:44:37 | 72dbe5bc1cc3d9bb9b4518d9e7af9c78 | 22 / 73 (30.14%)
| 157.245.5.40:443 |
| 2020-06-04 10:44:37 | 72dbe5bc1cc3d9bb9b4518d9e7af9c78 | 22 / 73 (30.14%)
| 31.13.72.36:443 |
| 2020-06-04 10:44:37 | 72dbe5bc1cc3d9bb9b4518d9e7af9c78 | 22 / 73 (30.14%)
| 74.114.154.18:443 |
| 2020-06-04 06:43:09 | 628683b1d08b2b39029af7cb07af609c | 30 / 73 (41.10%)
| 104.31.67.68:443 |
| 2020-06-04 06:43:09 | 628683b1d08b2b39029af7cb07af609c | 30 / 73 (41.10%)
| 157.240.194.18:443 |
| 2020-06-04 06:43:09 | 628683b1d08b2b39029af7cb07af609c | 30 / 73 (41.10%)
| 104.31.66.68:443 |
| 2020-06-04 06:43:09 | 628683b1d08b2b39029af7cb07af609c | 30 / 73 (41.10%)
| 176.58.123.25:443 |
| 2020-06-04 06:43:09 | 628683b1d08b2b39029af7cb07af609c | 30 / 73 (41.10%)
| 74.114.154.22:443 |
| 2020-06-04 06:43:09 | 628683b1d08b2b39029af7cb07af609c | 30 / 73 (41.10%)
| 31.13.72.36:443 |
| 2020-06-04 06:43:09 | 628683b1d08b2b39029af7cb07af609c | 30 / 73 (41.10%)
| 31.13.72.8:443 |
| 2020-06-04 06:43:09 | 628683b1d08b2b39029af7cb07af609c | 30 / 73 (41.10%)
| 23.128.64.141:443 |
| 2020-06-04 06:43:08 | 628683b1d08b2b39029af7cb07af609c | 30 / 73 (41.10%)
| 185.255.55.29:443 |
| 2020-06-04 06:43:08 | 628683b1d08b2b39029af7cb07af609c | 30 / 73 (41.10%)
| 74.114.154.18:443 |
| 2020-06-04 06:43:07 | 628683b1d08b2b39029af7cb07af609c | 30 / 73 (41.10%)
| 77.88.55.77:443 |
| 2020-06-04 06:43:07 | 628683b1d08b2b39029af7cb07af609c | 30 / 73 (41.10%)
| 157.245.5.40:443 |
| 2020-06-04 06:13:32 | 60a26ebacf62b2d45150059dc7fe3f3a | 33 / 72 (45.83%)
| 31.13.72.8:443 |
| 2020-06-04 06:13:32 | 60a26ebacf62b2d45150059dc7fe3f3a | 33 / 72 (45.83%)
| 23.128.64.141:443 |
| 2020-06-04 06:13:32 | 60a26ebacf62b2d45150059dc7fe3f3a | 33 / 72 (45.83%)
| 74.114.154.22:443 |
| 2020-06-04 06:13:32 | 60a26ebacf62b2d45150059dc7fe3f3a | 33 / 72 (45.83%)
| 157.245.5.40:443 |
| 2020-06-04 06:13:32 | 60a26ebacf62b2d45150059dc7fe3f3a | 33 / 72 (45.83%)
| 185.255.55.29:443 |
| 2020-06-04 06:13:31 | 60a26ebacf62b2d45150059dc7fe3f3a | 33 / 72 (45.83%)
| 176.58.123.25:443 |
| 2020-06-04 06:13:31 | 60a26ebacf62b2d45150059dc7fe3f3a | 33 / 72 (45.83%)
| 104.31.67.68:443 |
| 2020-06-04 06:13:31 | 60a26ebacf62b2d45150059dc7fe3f3a | 33 / 72 (45.83%)
| 31.13.72.36:443 |
| 2020-06-03 20:29:08 | 45407bb7a06915caf631ef33c93ee1f6 | 29 / 73 (39.73%)
| 157.240.194.18:443 |
| 2020-06-03 20:29:07 | 45407bb7a06915caf631ef33c93ee1f6 | 29 / 73 (39.73%)
| 185.255.55.29:443 |
| 2020-06-03 20:29:07 | 45407bb7a06915caf631ef33c93ee1f6 | 29 / 73 (39.73%)
| 74.114.154.22:443 |
| 2020-06-03 20:29:07 | 45407bb7a06915caf631ef33c93ee1f6 | 29 / 73 (39.73%)
| 104.31.66.68:443 |
| 2020-06-03 20:29:07 | 45407bb7a06915caf631ef33c93ee1f6 | 29 / 73 (39.73%)
| 157.245.5.40:443 |
| 2020-06-03 20:29:06 | 45407bb7a06915caf631ef33c93ee1f6 | 29 / 73 (39.73%)
| 31.13.72.36:443 |
| 2020-06-03 20:29:06 | 45407bb7a06915caf631ef33c93ee1f6 | 29 / 73 (39.73%)
| 31.13.72.8:443 |
| 2020-06-03 20:29:06 | 45407bb7a06915caf631ef33c93ee1f6 | 29 / 73 (39.73%)
| 23.128.64.141:443 |
| 2020-06-03 20:29:06 | 45407bb7a06915caf631ef33c93ee1f6 | 29 / 73 (39.73%)
| 176.58.123.25:443 |
| 2020-06-03 20:11:23 | 444189ff62dbf1b86beed92fdfdb5d90 | 41 / 73 (56.16%)
| 176.58.123.25:443 |
| 2020-06-03 19:42:06 | 429b55158aaa37c28245682bc41b56f0 | 36 / 73 (49.32%)
| 74.114.154.22:443 |
| 2020-06-03 19:42:06 | 429b55158aaa37c28245682bc41b56f0 | 36 / 73 (49.32%)
| 31.13.72.8:443 |
| 2020-06-03 19:42:06 | 429b55158aaa37c28245682bc41b56f0 | 36 / 73 (49.32%)
| 104.31.67.68:443 |
| 2020-06-03 19:42:06 | 429b55158aaa37c28245682bc41b56f0 | 36 / 73 (49.32%)
| 157.245.5.40:443 |
| 2020-06-03 19:42:06 | 429b55158aaa37c28245682bc41b56f0 | 36 / 73 (49.32%)
| 185.255.55.29:443 |
| 2020-06-03 19:42:06 | 429b55158aaa37c28245682bc41b56f0 | 36 / 73 (49.32%)
| 23.128.64.141:443 |
| 2020-06-03 19:42:05 | 429b55158aaa37c28245682bc41b56f0 | 36 / 73 (49.32%)
| 176.58.123.25:443 |
| 2020-06-03 19:42:05 | 429b55158aaa37c28245682bc41b56f0 | 36 / 73 (49.32%)
| 31.13.72.36:443 |
| 2020-06-03 19:39:05 | 41a44556b28fd811d2794df787ea3168 | n/a | 74.114.154.22:443 |
| 2020-06-03 19:39:04 | 41a44556b28fd811d2794df787ea3168 | n/a | 172.67.208.45:443 |
| 2020-06-03 19:39:04 | 41a44556b28fd811d2794df787ea3168 | n/a | 176.58.123.25:443 |
| 2020-06-03 19:39:04 | 41a44556b28fd811d2794df787ea3168 | n/a | 185.255.55.29:443 |
| 2020-06-03 19:39:04 | 41a44556b28fd811d2794df787ea3168 | n/a | 23.128.64.141:443 |
| 2020-06-03 19:39:04 | 41a44556b28fd811d2794df787ea3168 | n/a | 31.13.72.36:443 |
| 2020-06-03 19:39:03 | 41a44556b28fd811d2794df787ea3168 | n/a | 157.245.5.40:443 |
| 2020-06-03 19:39:03 | 41a44556b28fd811d2794df787ea3168 | n/a | 104.31.67.68:443 |
| 2020-06-03 19:39:03 | 41a44556b28fd811d2794df787ea3168 | n/a | 31.13.72.8:443 |
| 2020-06-03 18:59:34 | 4076dfd3e8f7ce86e7c846928aa3661a | 21 / 73 (28.77%)
| 172.217.168.35:443 |
| 2020-06-03 18:59:34 | 4076dfd3e8f7ce86e7c846928aa3661a | 21 / 73 (28.77%)
| 172.217.168.4:443 |
| 2020-06-03 18:59:33 | 4076dfd3e8f7ce86e7c846928aa3661a | 21 / 73 (28.77%)
| 157.245.5.40:443 |
| 2020-06-03 08:55:12 | 2f733ac9d21d89d2750bba5b9560292c | 21 / 53 (39.62%)
| 106.38.219.49:443 |
| 2020-06-03 06:52:34 | 26f76004616d976e62343a5d95a0763e | 41 / 73 (56.16%)
| 157.245.5.40:443 |
| 2020-06-03 06:41:38 | 260b8cb8f0cbf915c6c0e57f0bc20fff | 29 / 73 (39.73%)
| 157.245.5.40:443 |
| 2020-06-03 06:41:37 | 260b8cb8f0cbf915c6c0e57f0bc20fff | 29 / 73 (39.73%)
| 31.13.72.36:443 |
| 2020-06-03 06:41:37 | 260b8cb8f0cbf915c6c0e57f0bc20fff | 29 / 73 (39.73%)
| 172.217.168.68:443 |
| 2020-06-03 06:41:36 | 260b8cb8f0cbf915c6c0e57f0bc20fff | 29 / 73 (39.73%)
| 172.217.168.67:443 |
| 2020-06-03 06:41:35 | 260b8cb8f0cbf915c6c0e57f0bc20fff | 29 / 73 (39.73%)
| 23.128.64.141:443 |
| 2020-06-03 06:41:35 | 260b8cb8f0cbf915c6c0e57f0bc20fff | 29 / 73 (39.73%)
| 31.13.72.8:443 |
| 2020-06-03 06:41:34 | 260b8cb8f0cbf915c6c0e57f0bc20fff | 29 / 73 (39.73%)
| 104.31.66.68:443 |
| 2020-06-03 06:41:34 | 260b8cb8f0cbf915c6c0e57f0bc20fff | 29 / 73 (39.73%)
| 74.114.154.22:443 |
| 2020-06-03 06:41:33 | 260b8cb8f0cbf915c6c0e57f0bc20fff | 29 / 73 (39.73%)
| 157.240.194.18:443 |
| 2020-06-03 06:41:33 | 260b8cb8f0cbf915c6c0e57f0bc20fff | 29 / 73 (39.73%)
| 185.255.55.29:443 |
| 2020-06-03 05:42:41 | 22ac68d2f2cc863bf981f7bb68d24c5a | 44 / 73 (60.27%)
| 185.255.55.29:443 |
| 2020-06-03 05:42:40 | 22ac68d2f2cc863bf981f7bb68d24c5a | 44 / 73 (60.27%)
| 31.13.72.36:443 |
# of entries: 100 (max: 100)