JA3 Fingerprints
You can find further information about the JA3 fingerprint 35c0a31c481927f022a3b530255ac080, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 35c0a31c481927f022a3b530255ac080 |
|---|---|
| First seen: | 2017-07-15 19:43:19 UTC |
| Last seen: | 2021-04-10 12:54:04 UTC |
| Status: | Blacklisted |
| Malware samples: | 1'267 |
| Destination IPs: | 189 |
| Malware: | Tofsee  |
| Listing date: | 2018-11-14 12:41:34 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2023-04-13 03:42:08 | ab16ed8bf0e2b918f944bed8805bf35a | n/a | 13.107.42.14:443 |
| 2023-02-21 10:41:13 | 39ee2114d05e7771740bada0b8871493 | n/a | 157.240.17.35:443 |
| 2022-11-09 04:23:18 | c364c9854d3262b7975e991bc066849c | n/a | 157.240.17.63:443 |
| 2022-11-05 00:59:43 | 869450e88727effc1038eaa80ee77fc0 | n/a | 157.240.201.63:443 |
| 2022-11-04 16:18:02 | 7091783e21821683751fdb2e06be76b1 | n/a | 157.240.17.63:443 |
| 2022-11-04 15:09:15 | 6dbe0a3bd17a1f983218dbcab8c26ab0 | n/a | 157.240.17.63:443 |
| 2022-11-04 14:11:18 | 6b7131cf14ebce7c6c0a9820d3584b6e | n/a | 157.240.17.63:443 |
| 2022-11-02 19:51:44 | 3950d84bcd3c4ed6b96a41d46737fd4e | n/a | 157.240.17.63:443 |
| 2022-11-02 16:52:59 | 258b842ea2ebb01ee51444c2a14e8fcb | n/a | 157.240.17.63:443 |
| 2022-11-02 16:41:03 | 22f5aa618a7107e2d7d6741c821171ed | n/a | 185.60.216.52:443 |
| 2022-11-02 16:41:03 | 22f5aa618a7107e2d7d6741c821171ed | n/a | 157.240.20.63:443 |
| 2022-11-02 07:38:22 | 1278fd376102db3e9f44c39c05299ac6 | n/a | 157.240.17.63:443 |
| 2022-11-02 01:18:31 | e63f4fe868021a05e5e4ded410b26718 | n/a | 157.240.20.63:443 |
| 2022-11-01 23:40:42 | 6c11d2a5b2ffb8ce57374526d3d5877a | n/a | 157.240.201.63:443 |
| 2022-11-01 23:32:16 | 6ae221dfbbddf38c7f0f50ce41f0bdc8 | n/a | 157.240.247.63:443 |
| 2022-11-01 02:28:02 | 65d06cdf91153777d2c88fad225270d6 | n/a | 157.240.22.63:443 |
| 2022-10-31 20:12:10 | 472d9ee61e16176bf8bae4126a44133e | n/a | 157.240.17.63:443 |
| 2022-10-31 18:41:11 | 47ed0cda600d713807c0637eb6baf987 | n/a | 157.240.17.63:443 |
| 2022-10-31 18:30:43 | 412f38d3059de15a10d9d2aa18758b22 | n/a | 157.240.17.63:443 |
| 2022-10-31 18:03:17 | 42e18db52becf8a5b31e0c67efb46135 | n/a | 185.60.216.52:443 |
| 2022-10-31 16:08:34 | 341ec7e0f99bb1541016b8f4fa5c0e3f | n/a | 157.240.11.52:443 |
| 2022-10-31 13:31:04 | 3057477419aa647f98876ed7d625483d | n/a | 157.240.22.63:443 |
| 2022-10-31 13:31:03 | 3057477419aa647f98876ed7d625483d | n/a | 157.240.11.52:443 |
| 2022-10-30 13:49:16 | 55006170e8a35db5fcab546144942aa1 | n/a | 157.240.11.52:443 |
| 2022-10-29 15:33:58 | e8638ad88395db2c211ce98599056e5d |  28 / 72 (38.89%)
| 157.240.247.63:443 |
| 2022-10-29 15:32:50 | d258643332bccc2a1b0a85bb7b92adef | n/a | 157.240.20.63:443 |
| 2022-10-28 05:52:49 | b893dcf14e9e9ac6c5cfefb50c388840 | n/a | 157.240.17.63:443 |
| 2022-10-28 05:48:41 | a8c53473c3ff974d9470dbb0dc38fcbb | n/a | 157.240.17.63:443 |
| 2022-10-28 05:39:06 | 621b519c3d70b7e14fa6723d72c544fe | n/a | 31.13.70.52:443 |
| 2022-10-28 05:32:32 | 643dffd2cf34e325c81bd77922064247 | 35 / 71 (49.30%)
| 157.240.22.63:443 |
| 2022-10-28 05:20:27 | 27ed630e4fb8fce3eb26855519071800 | 36 / 72 (50.00%)
| 157.240.17.63:443 |
| 2022-10-27 21:43:56 | 194e8ec3676467ca82cf937fc662d628 | n/a | 157.240.247.63:443 |
| 2022-10-27 21:43:56 | 194e8ec3676467ca82cf937fc662d628 | n/a | 157.240.20.63:443 |
| 2022-10-27 21:06:22 | 22884dd9551ece8bef4f716f5774ea61 | 26 / 72 (36.11%)
| 157.240.247.63:443 |
| 2022-10-27 21:06:22 | 22884dd9551ece8bef4f716f5774ea61 | 26 / 72 (36.11%)
| 157.240.201.63:443 |
| 2022-10-27 19:18:57 | 01132f4c8f991180a5b9c523853fe9f8 | 36 / 72 (50.00%)
| 157.240.247.63:443 |
| 2022-10-27 18:39:11 | 68c81ae0153755e92d610c253327af01 | n/a | 157.240.17.63:443 |
| 2022-10-27 18:06:56 | 00d24c82e0e2da5b9f857869a5d4af26 | 47 / 71 (66.20%)
| 157.240.17.63:443 |
| 2022-10-27 17:33:48 | 29564fd91385206bba22cf14d015ad89 | 50 / 70 (71.43%)
| 157.240.17.63:443 |
| 2022-10-27 16:35:10 | 8a645352953ba700247b33de96f421a0 | n/a | 157.240.17.63:443 |
| 2022-10-27 16:05:33 | 78b0abb8368cf555a457bd552bdfc0d7 | 60 / 71 (84.51%)
| 157.240.11.52:443 |
| 2022-10-27 15:32:22 | b4f58d868e1774e2095da43a9f651171 | n/a | 157.240.201.63:443 |
| 2022-10-27 13:06:31 | 82f7cfd7af1db6b322b770767ecf0443 | n/a | 157.240.22.63:443 |
| 2022-09-10 15:02:13 | fed63e04cc8427f85ab5e0344ab7f244 | n/a | 157.240.17.63:443 |
| 2022-09-10 10:38:05 | 990a8809a246831c3f23f303cefb0e2c | n/a | 157.240.247.63:443 |
| 2022-09-10 06:07:42 | 4e246ba3f6867950513382219e4aa921 | n/a | 157.240.17.63:443 |
| 2022-08-28 13:04:33 | fef3db4ad1181c8971b746647fc3c8ba | n/a | 157.240.17.63:443 |
| 2022-08-26 23:25:55 | 98f756dc776d1aaaa5cff490376f17c4 | 27 / 69 (39.13%)
| 185.60.216.52:443 |
| 2022-08-26 23:01:10 | 8defc530caecfd189931580dd2ae1998 | n/a | 157.240.196.63:443 |
| 2022-08-26 23:01:10 | 8defc530caecfd189931580dd2ae1998 | n/a | 157.240.201.63:443 |
| 2022-08-26 22:59:53 | 880c519fdce0f2a1aa97dbf554a27580 | n/a | 157.240.17.63:443 |
| 2022-08-26 22:27:47 | 5b49d4a2b69c4282b042f5f866a84a33 | 54 / 71 (76.06%)
| 157.240.17.63:443 |
| 2022-08-26 22:17:46 | 5340f59ba8da484f2381aebf593c5833 | 52 / 71 (73.24%)
| 157.240.247.63:443 |
| 2022-08-26 22:16:40 | 31a6199d5d2e2b82a77e08ec26313f1b | 48 / 71 (67.61%)
| 157.240.247.63:443 |
| 2022-08-26 13:08:50 | d5d27ac5c65e3b9990e38558ea75fec6 | n/a | 157.240.17.63:443 |
| 2022-08-26 10:14:13 | bb066cddd5b62002ddb105d88d6945c4 | n/a | 157.240.247.63:443 |
| 2022-08-26 09:07:31 | b636b2afabdeabda0713c31b582ff0bb | n/a | 157.240.20.63:443 |
| 2022-08-26 09:07:30 | b636b2afabdeabda0713c31b582ff0bb | n/a | 185.60.216.52:443 |
| 2022-08-26 01:15:02 | 3632417b24325ebe511cf0abdaa0c3cf | n/a | 157.240.17.63:443 |
| 2022-08-26 01:09:57 | 30d3dca470c12b0856834d1800ba89c9 | n/a | 157.240.247.63:443 |
| 2022-08-26 01:01:48 | 26b24e238c8f9eaf528100101a5119f0 | n/a | 157.240.247.63:443 |
| 2022-08-26 01:01:47 | 26b24e238c8f9eaf528100101a5119f0 | n/a | 157.240.201.63:443 |
| 2022-08-13 15:10:58 | a1dd595c9b0ecc88a80051fec0439814 | n/a | 157.240.17.63:443 |
| 2022-07-25 21:28:59 | 51f81d8a1db9f8a9c51daaec3a4bf4ed | n/a | 157.240.17.63:443 |
| 2022-06-06 19:58:48 | ba4e843255dd4005041543477dd85ed3 | n/a | 157.240.201.63:443 |
| 2022-05-19 01:14:48 | 0085db88c7814373f9160d29423eb27e | n/a | 157.240.17.63:443 |
| 2022-04-30 13:29:19 | b600e2503a3e84a33fe82c05d2c4acf4 | n/a | 157.240.17.63:443 |
| 2022-04-28 14:24:08 | 0da4de1f7a12624e5d4b010ed72b2003 | 41 / 71 (57.75%)
| 157.240.17.63:443 |
| 2022-04-28 11:20:47 | f163008a2a146317dd57d5673712e3e3 | n/a | 157.240.9.52:443 |
| 2022-04-28 09:48:13 | 796333cee5e30770f35bd072ed6f6d3b | n/a | 157.240.17.63:443 |
| 2022-04-28 08:08:16 | aa8dddf165038b76396c6887861c7737 | n/a | 157.240.11.52:443 |
| 2022-04-28 07:42:39 | aa2a7873a2df6bbfd9f8f3dd21fb382c | n/a | 157.240.17.63:443 |
| 2022-04-28 05:39:03 | b019a9a5d4bc1d85462ea25e5227d20a | n/a | 157.240.22.63:443 |
| 2022-04-28 04:32:01 | 7c5fc370ff8ded0b7cb4e9acab7d0b16 | n/a | 157.240.17.63:443 |
| 2022-04-28 01:43:41 | 5286bd9b336025cb129d7b297109d70d | n/a | 157.240.17.63:443 |
| 2022-04-27 23:17:22 | 6d24c650f874c108549872fdb0dbfe7e | n/a | 157.240.17.63:443 |
| 2022-04-27 21:58:01 | b9752bbe1b09eeed11d7a298d3b0c664 | n/a | 157.240.17.63:443 |
| 2022-04-25 17:10:32 | 12d5ffd92740d47a5b90d7b8d2f4842c | 48 / 69 (69.57%)
| 31.13.64.52:443 |
| 2022-04-24 08:38:51 | aac70a1d03659db37f4e9a6ca4cda521 | n/a | 157.240.17.63:443 |
| 2022-04-21 07:23:39 | 2c6b8c118b30b6faf424f5246fb3e055 | n/a | 157.240.17.63:443 |
| 2022-04-21 06:49:01 | a0d009d84f8e2bfaf9446d475d576d25 | n/a | 185.60.216.52:443 |
| 2022-04-21 06:49:01 | a0d009d84f8e2bfaf9446d475d576d25 | n/a | 157.240.20.63:443 |
| 2022-04-20 22:23:36 | 564a832fbfbe0fb80dbd71c6fb01f55d | n/a | 157.240.17.63:443 |
| 2022-04-20 09:12:11 | 921aca9fb58246dcf100754d93390d67 | n/a | 157.240.20.63:443 |
| 2022-04-20 09:12:11 | 921aca9fb58246dcf100754d93390d67 | n/a | 185.60.216.52:443 |
| 2022-04-20 08:59:33 | 05212a09aed92a064e4465d15154247c | n/a | 31.13.64.52:443 |
| 2022-04-20 08:57:54 | 6deb3f971572b40c1d02ffa04d57b07e | n/a | 157.240.17.63:443 |
| 2022-04-20 07:30:19 | 904480bc8b6e1d49901212547251b09c | 27 / 69 (39.13%)
| 157.240.201.63:443 |
| 2022-04-20 07:02:43 | bcf9e60beb4373d738fa5308bd535e36 | n/a | 157.240.17.63:443 |
| 2022-04-20 07:02:43 | bcf9e60beb4373d738fa5308bd535e36 | n/a | 157.240.234.63:443 |
| 2022-04-20 06:56:59 | 7cdd21578129107b20f8d84200d9e98c | n/a | 157.240.17.63:443 |
| 2022-04-20 06:36:50 | 03e9139954522b2b3eeb10509cb77fe8 | n/a | 157.240.201.63:443 |
| 2022-04-19 20:05:19 | 0ed5acb3f1623337418c3c4d15deaf09 | 46 / 70 (65.71%)
| 157.240.17.63:443 |
| 2022-04-19 18:50:15 | 19c983e2c13c15251f703b7d028b0768 | n/a | 157.240.17.63:443 |
| 2022-04-15 12:20:42 | c33d68eb0f843daec4187b6e8bc747cf | n/a | 157.240.17.63:443 |
| 2022-04-15 11:49:07 | c257b0390e51f48ba03a1d66077df3ef | n/a | 157.240.17.63:443 |
| 2022-04-15 10:53:56 | c07e52b5f416b580bda7ce6331570b57 | n/a | 157.240.201.63:443 |
| 2022-04-15 01:12:02 | 75aee137602be8a2b9e6b036d1041e1b | n/a | 157.240.17.63:443 |
| 2022-04-15 00:21:04 | 58a1c9ac34222176db59bc1c010a2353 | n/a | 185.60.216.52:443 |
| 2022-04-14 21:22:06 | 118a6e610cbfc23db7aca156c1888d76 | 51 / 69 (73.91%)
| 157.240.17.63:443 |
# of entries: 100 (max: 100)