JA3 Fingerprints
You can find further information about the JA3 fingerprint 35c0a31c481927f022a3b530255ac080, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 35c0a31c481927f022a3b530255ac080 |
|---|---|
| First seen: | 2017-07-15 19:43:19 UTC |
| Last seen: | 2020-05-30 05:21:34 UTC |
| Status: | Blacklisted |
| Malware samples: | 140 |
| Destination IPs: | 140 |
| Malware: | Tofsee  |
| Listing date: | 2018-11-14 12:41:34 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2020-05-30 05:21:34 | 7a3f4ff5f17743604dbcbf9b0fa69626 |  24 / 73 (32.88%)
| 67.21.5.228:443 |
| 2020-05-30 05:21:33 | 7a3f4ff5f17743604dbcbf9b0fa69626 | 24 / 73 (32.88%)
| 2.21.42.50:443 |
| 2020-05-30 05:21:33 | 7a3f4ff5f17743604dbcbf9b0fa69626 | 24 / 73 (32.88%)
| 104.16.215.98:443 |
| 2020-05-30 05:21:32 | 7a3f4ff5f17743604dbcbf9b0fa69626 | 24 / 73 (32.88%)
| 65.154.255.209:443 |
| 2020-05-30 05:21:32 | 7a3f4ff5f17743604dbcbf9b0fa69626 | 24 / 73 (32.88%)
| 96.114.156.145:443 |
| 2020-05-30 05:21:32 | 7a3f4ff5f17743604dbcbf9b0fa69626 | 24 / 73 (32.88%)
| 152.199.1.201:443 |
| 2020-05-30 05:21:32 | 7a3f4ff5f17743604dbcbf9b0fa69626 | 24 / 73 (32.88%)
| 68.87.29.197:443 |
| 2020-05-30 05:21:32 | 7a3f4ff5f17743604dbcbf9b0fa69626 | 24 / 73 (32.88%)
| 24.234.21.209:443 |
| 2020-05-30 05:21:32 | 7a3f4ff5f17743604dbcbf9b0fa69626 | 24 / 73 (32.88%)
| 89.108.73.200:443 |
| 2020-05-30 05:21:31 | 7a3f4ff5f17743604dbcbf9b0fa69626 | 24 / 73 (32.88%)
| 23.72.104.135:443 |
| 2020-05-30 05:21:31 | 7a3f4ff5f17743604dbcbf9b0fa69626 | 24 / 73 (32.88%)
| 35.201.81.34:443 |
| 2020-05-30 05:21:30 | 7a3f4ff5f17743604dbcbf9b0fa69626 | 24 / 73 (32.88%)
| 35.227.224.91:443 |
| 2020-05-30 05:21:30 | 7a3f4ff5f17743604dbcbf9b0fa69626 | 24 / 73 (32.88%)
| 23.75.190.195:443 |
| 2020-05-30 05:21:30 | 7a3f4ff5f17743604dbcbf9b0fa69626 | 24 / 73 (32.88%)
| 104.16.217.98:443 |
| 2020-05-30 05:21:29 | 7a3f4ff5f17743604dbcbf9b0fa69626 | 24 / 73 (32.88%)
| 23.75.194.228:443 |
| 2020-05-28 05:00:42 | 466ed58ba6a11b82128bfbf739374f90 | 41 / 72 (56.94%)
| 66.211.161.211:443 |
| 2020-05-27 21:20:22 | 43825ee614393a8a18d2af57e3b2761f | 45 / 73 (61.64%)
| 66.211.161.211:443 |
| 2020-05-20 23:52:06 | 174951be7d40fcbbb463e38f7459d024 | 47 / 72 (65.28%)
| 66.211.161.211:443 |
| 2020-05-03 17:12:55 | 80e500e14148c4ee4e23891b4a2d427e | 38 / 71 (53.52%)
| 45.57.40.1:443 |
| 2020-04-21 17:08:50 | 125c8c1bfe684223c36f5258b7aadbf4 | 41 / 72 (56.94%)
| 65.154.255.209:443 |
| 2020-04-21 17:08:42 | 125c8c1bfe684223c36f5258b7aadbf4 | 41 / 72 (56.94%)
| 144.160.225.143:443 |
| 2020-04-21 17:08:36 | 125c8c1bfe684223c36f5258b7aadbf4 | 41 / 72 (56.94%)
| 144.160.147.43:443 |
| 2020-04-21 17:08:31 | 125c8c1bfe684223c36f5258b7aadbf4 | 41 / 72 (56.94%)
| 152.199.1.201:443 |
| 2020-04-10 18:39:45 | c7777b9401bde070e12a26b763096273 | 42 / 72 (58.33%)
| 98.158.62.102:443 |
| 2020-04-10 18:39:44 | c7777b9401bde070e12a26b763096273 | 42 / 72 (58.33%)
| 65.154.255.209:443 |
| 2020-04-10 18:39:43 | c7777b9401bde070e12a26b763096273 | 42 / 72 (58.33%)
| 144.160.127.15:443 |
| 2020-04-10 18:39:43 | c7777b9401bde070e12a26b763096273 | 42 / 72 (58.33%)
| 35.227.224.91:443 |
| 2020-04-10 18:39:42 | c7777b9401bde070e12a26b763096273 | 42 / 72 (58.33%)
| 24.234.21.209:443 |
| 2020-04-10 18:39:42 | c7777b9401bde070e12a26b763096273 | 42 / 72 (58.33%)
| 208.91.233.174:443 |
| 2020-04-10 18:39:42 | c7777b9401bde070e12a26b763096273 | 42 / 72 (58.33%)
| 152.199.17.199:443 |
| 2020-04-08 19:07:43 | 64973f901d651b517042992215d0f9ef | 42 / 73 (57.53%)
| 208.91.233.174:443 |
| 2020-04-08 19:07:42 | 64973f901d651b517042992215d0f9ef | 42 / 73 (57.53%)
| 144.160.225.143:443 |
| 2020-04-08 19:07:42 | 64973f901d651b517042992215d0f9ef | 42 / 73 (57.53%)
| 65.154.255.209:443 |
| 2020-04-08 19:07:41 | 64973f901d651b517042992215d0f9ef | 42 / 73 (57.53%)
| 144.160.127.15:443 |
| 2020-04-08 19:07:41 | 64973f901d651b517042992215d0f9ef | 42 / 73 (57.53%)
| 208.91.232.174:443 |
| 2020-04-08 19:07:41 | 64973f901d651b517042992215d0f9ef | 42 / 73 (57.53%)
| 152.199.17.199:443 |
| 2020-03-31 23:32:15 | 2e5b0291de8e221bc26a2444d30fcd36 | 18 / 73 (24.66%)
| 104.16.217.98:443 |
| 2020-03-31 23:32:14 | 2e5b0291de8e221bc26a2444d30fcd36 | 18 / 73 (24.66%)
| 104.16.218.98:443 |
| 2020-03-31 20:44:33 | 08b63686a1d689d6de2c1308c3a90020 | 20 / 73 (27.40%)
| 104.16.218.98:443 |
| 2020-03-31 20:44:33 | 08b63686a1d689d6de2c1308c3a90020 | 20 / 73 (27.40%)
| 104.16.216.98:443 |
| 2020-03-28 06:32:34 | 2fa08b5df03fa494f7ae182ca4019115 | n/a | 104.16.218.98:443 |
| 2020-03-28 00:44:34 | 060d3c57ad3a89c6e600bb586cc814d0 | 19 / 65 (29.23%)
| 104.16.215.98:443 |
| 2020-03-27 19:28:28 | 08808e888c5bc8e69eb42b81b567caf5 | n/a | 104.16.217.98:443 |
| 2020-03-27 15:13:41 | 926941535345db23a2f45b3995939b80 | 22 / 72 (30.56%)
| 151.101.1.200:443 |
| 2020-03-27 15:13:39 | 926941535345db23a2f45b3995939b80 | 22 / 72 (30.56%)
| 104.16.218.98:443 |
| 2020-03-27 15:13:38 | 926941535345db23a2f45b3995939b80 | 22 / 72 (30.56%)
| 151.101.1.160:443 |
| 2020-03-27 03:24:27 | 947b2614ccb0cc2ce4439d8cdfa6cfd4 | 22 / 71 (30.99%)
| 104.16.218.98:443 |
| 2020-03-26 21:13:39 | 803c7e7340e9f2e3c492662eadc5afa6 | 22 / 73 (30.14%)
| 99.86.235.68:443 |
| 2020-03-26 19:49:29 | cdf6c5b37844378a0f1dfd0fcb89cda1 | 33 / 72 (45.83%)
| 104.16.218.98:443 |
| 2020-03-26 19:49:27 | cdf6c5b37844378a0f1dfd0fcb89cda1 | 33 / 72 (45.83%)
| 104.16.219.98:443 |
| 2020-03-26 19:49:26 | cdf6c5b37844378a0f1dfd0fcb89cda1 | 33 / 72 (45.83%)
| 151.101.1.200:443 |
| 2020-03-26 19:49:25 | cdf6c5b37844378a0f1dfd0fcb89cda1 | 33 / 72 (45.83%)
| 151.101.1.160:443 |
| 2020-03-26 19:16:04 | 0619175efa50887152aa01e9b06b96dc | 21 / 72 (29.17%)
| 104.16.215.98:443 |
| 2020-03-26 12:27:22 | 5a372fae95b828405954a558e723fd26 | n/a | 104.16.219.98:443 |
| 2020-03-26 12:27:19 | 5a372fae95b828405954a558e723fd26 | n/a | 104.16.216.98:443 |
| 2020-03-26 11:35:59 | 999dc6eef21218ed7c3fbb3bbb920052 | 35 / 73 (47.95%)
| 31.13.64.35:443 |
| 2020-03-26 11:35:56 | 999dc6eef21218ed7c3fbb3bbb920052 | 35 / 73 (47.95%)
| 185.60.216.35:443 |
| 2020-03-25 21:42:51 | a00af9729eff3c313db18914f9db4be4 | 23 / 73 (31.51%)
| 151.101.1.160:443 |
| 2020-03-25 21:42:49 | a00af9729eff3c313db18914f9db4be4 | 23 / 73 (31.51%)
| 99.181.79.2:443 |
| 2020-03-25 21:42:49 | a00af9729eff3c313db18914f9db4be4 | 23 / 73 (31.51%)
| 151.101.1.200:443 |
| 2020-03-25 16:19:47 | 39b961c13850e7910d07c9d1993b47a7 | 20 / 72 (27.78%)
| 151.101.1.200:443 |
| 2020-03-25 16:19:40 | 39b961c13850e7910d07c9d1993b47a7 | 20 / 72 (27.78%)
| 104.16.216.98:443 |
| 2020-03-25 16:19:40 | 39b961c13850e7910d07c9d1993b47a7 | 20 / 72 (27.78%)
| 104.16.219.98:443 |
| 2020-03-25 16:19:37 | 39b961c13850e7910d07c9d1993b47a7 | 20 / 72 (27.78%)
| 151.101.1.160:443 |
| 2020-03-25 14:18:50 | c0d90be5de2fbba760a3ae94c4cdbf85 | 22 / 72 (30.56%)
| 99.181.79.2:443 |
| 2020-03-19 21:25:47 | a990bfa906c958fd3e735278ef046e41 | 54 / 73 (73.97%)
| 31.13.64.35:443 |
| 2020-03-19 21:25:47 | a990bfa906c958fd3e735278ef046e41 | 54 / 73 (73.97%)
| 185.60.216.35:443 |
| 2020-03-13 15:51:14 | 87ddb4a46f4099cf156c9107e4bd3fea | 19 / 72 (26.39%)
| 104.16.216.98:443 |
| 2020-03-13 13:34:37 | 93d5af558436f42316fcd85e7af35145 | n/a | 23.15.95.206:443 |
| 2020-03-13 11:25:55 | b0a6fe18ee4c25a671a7ee59506b108a | 18 / 72 (25.00%)
| 104.16.219.98:443 |
| 2020-03-13 09:49:41 | c868debc819139e60a7623828e393bcd | 19 / 73 (26.03%)
| 151.101.25.200:443 |
| 2020-03-13 04:42:06 | 2e3249d404e1785a1bfa1914a75effcf | 24 / 73 (32.88%)
| 23.45.106.75:443 |
| 2020-03-13 04:42:01 | 2e3249d404e1785a1bfa1914a75effcf | 24 / 73 (32.88%)
| 104.16.216.98:443 |
| 2020-03-13 04:41:53 | 2e3249d404e1785a1bfa1914a75effcf | 24 / 73 (32.88%)
| 52.222.165.139:443 |
| 2020-03-13 04:41:38 | 2e3249d404e1785a1bfa1914a75effcf | 24 / 73 (32.88%)
| 104.16.219.98:443 |
| 2020-03-12 17:39:40 | 976a090d05150678c5c42d68838d5b68 | 23 / 73 (31.51%)
| 23.45.106.75:443 |
| 2020-03-07 19:04:48 | 249e052b738ab40f0e9a1f9723da6761 | 54 / 72 (75.00%)
| 185.60.216.35:443 |
| 2020-03-07 19:04:47 | 249e052b738ab40f0e9a1f9723da6761 | 54 / 72 (75.00%)
| 31.13.92.36:443 |
| 2020-03-07 19:04:47 | 249e052b738ab40f0e9a1f9723da6761 | 54 / 72 (75.00%)
| 69.31.136.5:443 |
| 2020-03-06 19:46:07 | 46c564d7bf821027725ac57fe9038526 | 34 / 72 (47.22%)
| 31.13.92.36:443 |
| 2020-03-06 19:46:06 | 46c564d7bf821027725ac57fe9038526 | 34 / 72 (47.22%)
| 69.31.136.5:443 |
| 2020-03-06 19:46:04 | 46c564d7bf821027725ac57fe9038526 | 34 / 72 (47.22%)
| 157.240.27.35:443 |
| 2020-03-05 13:59:27 | d61df703814d13c53a0907b267b6d169 | 51 / 71 (71.83%)
| 23.15.95.206:443 |
| 2020-03-05 13:59:27 | d61df703814d13c53a0907b267b6d169 | 51 / 71 (71.83%)
| 104.16.215.98:443 |
| 2020-03-05 13:59:27 | d61df703814d13c53a0907b267b6d169 | 51 / 71 (71.83%)
| 104.16.216.98:443 |
| 2020-03-05 13:59:27 | d61df703814d13c53a0907b267b6d169 | 51 / 71 (71.83%)
| 151.101.197.200:443 |
| 2020-03-05 13:59:25 | d61df703814d13c53a0907b267b6d169 | 51 / 71 (71.83%)
| 104.16.217.98:443 |
| 2020-03-05 13:59:25 | d61df703814d13c53a0907b267b6d169 | 51 / 71 (71.83%)
| 104.16.219.98:443 |
| 2020-03-05 13:59:25 | d61df703814d13c53a0907b267b6d169 | 51 / 71 (71.83%)
| 151.101.25.200:443 |
| 2020-02-26 12:20:01 | 3cd87060a68caab2b05793aab21d1885 | 41 / 72 (56.94%)
| 157.240.27.35:443 |
| 2020-02-26 12:20:00 | 3cd87060a68caab2b05793aab21d1885 | 41 / 72 (56.94%)
| 13.227.156.29:443 |
| 2020-02-26 12:20:00 | 3cd87060a68caab2b05793aab21d1885 | 41 / 72 (56.94%)
| 144.160.127.15:443 |
| 2020-02-26 12:20:00 | 3cd87060a68caab2b05793aab21d1885 | 41 / 72 (56.94%)
| 69.31.136.5:443 |
| 2020-02-26 12:19:59 | 3cd87060a68caab2b05793aab21d1885 | 41 / 72 (56.94%)
| 98.158.62.103:443 |
| 2020-02-26 12:19:59 | 3cd87060a68caab2b05793aab21d1885 | 41 / 72 (56.94%)
| 31.13.92.36:443 |
| 2020-02-26 12:19:58 | 3cd87060a68caab2b05793aab21d1885 | 41 / 72 (56.94%)
| 24.234.21.209:443 |
| 2020-02-18 08:51:52 | c8f36338fb50952e2387cc30f75abda3 | 53 / 71 (74.65%)
| 31.13.64.35:443 |
| 2020-02-17 14:54:39 | 130c8bd24889b7cd12b0394b52e30a81 | 31 / 72 (43.06%)
| 31.13.64.16:443 |
| 2020-02-17 14:54:38 | 130c8bd24889b7cd12b0394b52e30a81 | 31 / 72 (43.06%)
| 24.234.21.209:443 |
| 2020-02-17 14:54:38 | 130c8bd24889b7cd12b0394b52e30a81 | 31 / 72 (43.06%)
| 35.201.81.34:443 |
# of entries: 100 (max: 100)