JA3 Fingerprints
You can find further information about the JA3 fingerprint 2d8794cb7b52b777bee2695e79c15760, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 2d8794cb7b52b777bee2695e79c15760 |
|---|---|
| First seen: | 2018-04-04 06:56:37 UTC |
| Last seen: | 2021-07-26 08:07:00 UTC |
| Status: | Blacklisted |
| Malware samples: | 200 |
| Destination IPs: | 3'140 |
| Malware: | Ransomware |
| Listing date: | 2018-11-14 00:00:00 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2024-03-25 15:04:18 | f1e53383e1bbb2e1be7d47188031c2af | n/a | 131.188.40.189:443 |
| 2023-12-12 18:01:37 | 09f73fb0e0a48f5db9729e69bc619270 |  37 / 71 (52.11%)
| 193.11.114.46:9003 |
| 2023-12-12 18:01:37 | 09f73fb0e0a48f5db9729e69bc619270 | 37 / 71 (52.11%)
| 212.83.154.33:8443 |
| 2023-12-12 18:01:37 | 09f73fb0e0a48f5db9729e69bc619270 | 37 / 71 (52.11%)
| 199.193.115.2:443 |
| 2023-12-12 18:01:37 | 09f73fb0e0a48f5db9729e69bc619270 | 37 / 71 (52.11%)
| 171.25.193.9:80 |
| 2023-12-12 18:01:37 | 09f73fb0e0a48f5db9729e69bc619270 | 37 / 71 (52.11%)
| 91.219.237.244:443 |
| 2023-12-12 18:01:37 | 09f73fb0e0a48f5db9729e69bc619270 | 37 / 71 (52.11%)
| 178.62.199.226:443 |
| 2023-12-12 18:01:36 | 09f73fb0e0a48f5db9729e69bc619270 | 37 / 71 (52.11%)
| 204.10.194.74:443 |
| 2023-09-17 15:31:46 | 0a6045027af2bbe018e3f16986d9f948 | 40 / 71 (56.34%)
| 193.23.244.244:443 |
| 2023-07-24 08:58:57 | 007da10df129194d753abe9fa9943ebf | 57 / 71 (80.28%)
| 86.59.21.38:443 |
| 2023-07-24 08:58:57 | 007da10df129194d753abe9fa9943ebf | 57 / 71 (80.28%)
| 171.25.193.9:80 |
| 2023-07-19 10:13:19 | cb9e504c1f8bc5df810d6da7c1ae3bfd | n/a | 131.188.40.189:443 |
| 2023-07-18 20:53:11 | 295ac79a8c368f1ac9d6dad78606f4a6 | 45 / 68 (66.18%)
| 185.241.208.172:443 |
| 2023-07-18 20:53:11 | 295ac79a8c368f1ac9d6dad78606f4a6 | 45 / 68 (66.18%)
| 131.188.40.189:443 |
| 2023-07-18 20:53:11 | 295ac79a8c368f1ac9d6dad78606f4a6 | 45 / 68 (66.18%)
| 212.227.149.79:443 |
| 2023-07-18 20:53:11 | 295ac79a8c368f1ac9d6dad78606f4a6 | 45 / 68 (66.18%)
| 193.23.244.244:443 |
| 2023-07-18 20:53:11 | 295ac79a8c368f1ac9d6dad78606f4a6 | 45 / 68 (66.18%)
| 86.59.21.38:443 |
| 2023-07-18 20:53:11 | 295ac79a8c368f1ac9d6dad78606f4a6 | 45 / 68 (66.18%)
| 38.154.240.58:443 |
| 2023-07-18 20:53:11 | 295ac79a8c368f1ac9d6dad78606f4a6 | 45 / 68 (66.18%)
| 171.25.193.9:80 |
| 2023-07-12 19:51:07 | 04b676d5b363c488fb1b453e81450d57 | 50 / 71 (70.42%)
| 86.59.21.38:443 |
| 2023-06-03 20:43:56 | 56a47df7e7b7ede4fb20901c8153f199 | 50 / 69 (72.46%)
| 193.23.244.244:443 |
| 2023-06-03 20:43:56 | 56a47df7e7b7ede4fb20901c8153f199 | 50 / 69 (72.46%)
| 171.25.193.9:80 |
| 2023-03-25 23:24:52 | 2517f44cd5ef441e9bf29c0611e9890c | 44 / 69 (63.77%)
| 193.23.244.244:443 |
| 2023-03-21 04:01:30 | 99a4abf8b050413461fc340985b3e025 | n/a | 78.46.141.156:9001 |
| 2023-03-21 04:01:30 | 99a4abf8b050413461fc340985b3e025 | n/a | 195.15.242.29:9001 |
| 2023-03-21 04:01:30 | 99a4abf8b050413461fc340985b3e025 | n/a | 108.53.208.157:443 |
| 2023-03-21 04:01:30 | 99a4abf8b050413461fc340985b3e025 | n/a | 109.202.206.69:9001 |
| 2023-03-21 04:01:30 | 99a4abf8b050413461fc340985b3e025 | n/a | 198.50.191.95:443 |
| 2023-03-20 22:27:12 | 3d6471f99ba2f6a49e8781547fd0db5c | n/a | 86.59.21.38:443 |
| 2023-03-07 22:36:49 | 16c6aeede6e9a3555414e2dc0967ea04 | n/a | 79.172.193.65:443 |
| 2023-03-07 22:36:49 | 16c6aeede6e9a3555414e2dc0967ea04 | n/a | 95.128.43.164:443 |
| 2023-03-07 22:36:48 | 16c6aeede6e9a3555414e2dc0967ea04 | n/a | 151.115.42.146:443 |
| 2023-03-07 22:36:48 | 16c6aeede6e9a3555414e2dc0967ea04 | n/a | 66.206.0.138:443 |
| 2023-03-07 22:36:48 | 16c6aeede6e9a3555414e2dc0967ea04 | n/a | 171.25.193.9:80 |
| 2023-03-02 07:13:45 | 145b16162cace618592efa1bacdc68fb | n/a | 131.188.40.189:443 |
| 2023-03-02 07:13:45 | 145b16162cace618592efa1bacdc68fb | n/a | 148.251.85.195:9030 |
| 2023-03-02 07:13:44 | 145b16162cace618592efa1bacdc68fb | n/a | 212.129.62.232:443 |
| 2023-03-02 07:13:44 | 145b16162cace618592efa1bacdc68fb | n/a | 185.21.216.197:9001 |
| 2023-03-02 07:13:44 | 145b16162cace618592efa1bacdc68fb | n/a | 71.135.200.38:9001 |
| 2023-03-01 17:53:35 | 1bf337b1a2c68523787235770bf1efe0 | 17 / 69 (24.64%)
| 212.83.154.33:8443 |
| 2023-03-01 17:53:35 | 1bf337b1a2c68523787235770bf1efe0 | 17 / 69 (24.64%)
| 142.132.204.112:4443 |
| 2023-03-01 17:53:34 | 1bf337b1a2c68523787235770bf1efe0 | 17 / 69 (24.64%)
| 85.214.174.59:443 |
| 2023-03-01 17:53:34 | 1bf337b1a2c68523787235770bf1efe0 | 17 / 69 (24.64%)
| 193.23.244.244:443 |
| 2023-03-01 17:53:34 | 1bf337b1a2c68523787235770bf1efe0 | 17 / 69 (24.64%)
| 23.88.75.121:19001 |
| 2023-03-01 17:53:34 | 1bf337b1a2c68523787235770bf1efe0 | 17 / 69 (24.64%)
| 46.165.230.5:443 |
| 2023-02-24 08:46:30 | af97bd3c914f31598b9611fe5e5098d9 | n/a | 91.219.236.222:443 |
| 2023-02-24 08:46:30 | af97bd3c914f31598b9611fe5e5098d9 | n/a | 212.47.229.2:9001 |
| 2023-02-24 08:46:30 | af97bd3c914f31598b9611fe5e5098d9 | n/a | 192.34.63.137:443 |
| 2023-02-12 03:09:57 | bff436b5e83373a00faa82c12888e46b | n/a | 192.34.63.137:443 |
| 2023-02-12 03:09:57 | bff436b5e83373a00faa82c12888e46b | n/a | 46.165.230.5:443 |
| 2023-02-12 03:09:56 | bff436b5e83373a00faa82c12888e46b | n/a | 173.232.194.18:443 |
| 2023-02-12 03:09:56 | bff436b5e83373a00faa82c12888e46b | n/a | 212.227.149.79:443 |
| 2023-02-12 03:09:56 | bff436b5e83373a00faa82c12888e46b | n/a | 178.254.44.135:443 |
| 2023-02-12 03:09:56 | bff436b5e83373a00faa82c12888e46b | n/a | 108.53.208.157:443 |
| 2023-02-12 03:09:56 | bff436b5e83373a00faa82c12888e46b | n/a | 91.231.182.49:443 |
| 2023-01-15 17:55:28 | b038f87df9666822c2c4a429d535a42f | n/a | 91.219.236.222:443 |
| 2023-01-15 17:55:28 | b038f87df9666822c2c4a429d535a42f | n/a | 212.83.154.33:8443 |
| 2023-01-15 17:55:27 | b038f87df9666822c2c4a429d535a42f | n/a | 86.59.21.38:443 |
| 2023-01-04 20:53:26 | 4d52dd9acef3a75598dd143517bd1f6a | n/a | 144.76.3.174:9030 |
| 2023-01-04 20:53:26 | 4d52dd9acef3a75598dd143517bd1f6a | n/a | 91.219.236.222:443 |
| 2023-01-04 20:53:26 | 4d52dd9acef3a75598dd143517bd1f6a | n/a | 188.138.112.60:1521 |
| 2023-01-04 20:53:26 | 4d52dd9acef3a75598dd143517bd1f6a | n/a | 109.105.109.162:60784 |
| 2023-01-04 20:53:26 | 4d52dd9acef3a75598dd143517bd1f6a | n/a | 149.202.84.199:9001 |
| 2023-01-04 20:53:26 | 4d52dd9acef3a75598dd143517bd1f6a | n/a | 93.99.255.254:8443 |
| 2022-12-30 10:13:18 | 0d1141219a660fee1a8cc9cc1c7722d0 | 14 / 71 (19.72%)
| 171.25.193.9:80 |
| 2022-12-29 14:52:28 | 7a954684f97fd869d536ddd5e2148de9 | n/a | 86.59.21.38:443 |
| 2022-12-23 04:14:09 | ac263079ea7b759149be8f7114ee5afe | n/a | 193.23.244.244:443 |
| 2022-10-30 02:14:34 | 76e1077aafc894a303a450ab1de0b3a2 | n/a | 198.96.155.3:5001 |
| 2022-10-16 12:38:32 | 4d16474658986a319c0cd96bdcef6388 | n/a | 92.60.37.105:9001 |
| 2022-10-16 12:38:32 | 4d16474658986a319c0cd96bdcef6388 | n/a | 86.59.119.88:443 |
| 2022-10-16 12:38:32 | 4d16474658986a319c0cd96bdcef6388 | n/a | 193.23.244.244:443 |
| 2022-10-16 12:38:31 | 4d16474658986a319c0cd96bdcef6388 | n/a | 74.208.212.42:1214 |
| 2022-10-16 12:38:31 | 4d16474658986a319c0cd96bdcef6388 | n/a | 144.76.3.182:9090 |
| 2022-10-16 12:38:31 | 4d16474658986a319c0cd96bdcef6388 | n/a | 131.188.40.188:80 |
| 2022-10-16 12:38:31 | 4d16474658986a319c0cd96bdcef6388 | n/a | 109.105.109.162:60784 |
| 2022-09-30 04:42:52 | 04560b388940e6c5a7e7d6cb977cf2ca | n/a | 46.165.230.5:443 |
| 2022-09-23 14:32:33 | 0944e62ae373b68e980771bd26a117a8 | 17 / 71 (23.94%)
| 51.15.78.0:9001 |
| 2022-09-23 14:32:33 | 0944e62ae373b68e980771bd26a117a8 | 17 / 71 (23.94%)
| 128.31.0.39:9101 |
| 2022-09-23 14:32:32 | 0944e62ae373b68e980771bd26a117a8 | 17 / 71 (23.94%)
| 128.31.0.61:443 |
| 2022-09-23 14:32:32 | 0944e62ae373b68e980771bd26a117a8 | 17 / 71 (23.94%)
| 195.201.9.37:143 |
| 2022-09-23 14:32:32 | 0944e62ae373b68e980771bd26a117a8 | 17 / 71 (23.94%)
| 192.160.102.164:9001 |
| 2022-09-23 14:32:31 | 0944e62ae373b68e980771bd26a117a8 | 17 / 71 (23.94%)
| 45.142.176.96:9000 |
| 2022-09-23 14:32:31 | 0944e62ae373b68e980771bd26a117a8 | 17 / 71 (23.94%)
| 178.62.199.226:443 |
| 2022-09-02 14:49:02 | 44b0db15121ffd925c7c373c978513e4 | n/a | 86.59.21.38:443 |
| 2022-09-02 14:49:02 | 44b0db15121ffd925c7c373c978513e4 | n/a | 171.25.193.77:443 |
| 2022-09-02 14:49:02 | 44b0db15121ffd925c7c373c978513e4 | n/a | 178.254.44.135:443 |
| 2022-07-29 21:08:36 | 2201ace19c48cea5afd953542696db6f | 14 / 67 (20.90%)
| 198.50.191.95:443 |
| 2022-07-29 21:08:36 | 2201ace19c48cea5afd953542696db6f | 14 / 67 (20.90%)
| 163.172.52.188:9001 |
| 2022-07-29 21:08:36 | 2201ace19c48cea5afd953542696db6f | 14 / 67 (20.90%)
| 130.193.15.49:443 |
| 2022-07-29 21:08:35 | 2201ace19c48cea5afd953542696db6f | 14 / 67 (20.90%)
| 128.31.0.39:9101 |
| 2022-07-29 21:08:35 | 2201ace19c48cea5afd953542696db6f | 14 / 67 (20.90%)
| 46.4.66.178:9001 |
| 2022-06-05 12:37:20 | 1373b1a743dac2c7ff41bd39446b8557 | n/a | 193.23.244.244:443 |
| 2022-05-11 17:51:31 | 3a9257f3c98ac132216b4b1d04f337d4 | 10 / 68 (14.71%)
| 212.83.154.33:8443 |
| 2022-05-11 17:51:31 | 3a9257f3c98ac132216b4b1d04f337d4 | 10 / 68 (14.71%)
| 163.172.131.88:443 |
| 2022-05-11 17:51:31 | 3a9257f3c98ac132216b4b1d04f337d4 | 10 / 68 (14.71%)
| 131.188.40.189:443 |
| 2022-05-07 01:44:14 | 1dc80bc67de78d04e3dda8d4a9ca9ce0 | n/a | 128.31.0.39:9101 |
| 2022-05-07 01:44:14 | 1dc80bc67de78d04e3dda8d4a9ca9ce0 | n/a | 217.182.196.67:443 |
| 2022-05-07 01:44:14 | 1dc80bc67de78d04e3dda8d4a9ca9ce0 | n/a | 212.47.229.2:9001 |
| 2022-05-07 01:44:14 | 1dc80bc67de78d04e3dda8d4a9ca9ce0 | n/a | 185.220.101.234:8443 |
| 2022-05-07 01:44:13 | 1dc80bc67de78d04e3dda8d4a9ca9ce0 | n/a | 91.250.81.52:9001 |
# of entries: 100 (max: 100)