JA3 Fingerprints
You can find further information about the JA3 fingerprint 35c0a31c481927f022a3b530255ac080, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 35c0a31c481927f022a3b530255ac080 |
|---|---|
| First seen: | 2017-07-15 19:43:19 UTC |
| Last seen: | 2020-03-28 06:32:34 UTC |
| Status: | Blacklisted |
| Malware samples: | 130 |
| Destination IPs: | 127 |
| Malware: | Tofsee  |
| Listing date: | 2018-11-14 12:41:34 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2020-03-28 06:32:34 | 2fa08b5df03fa494f7ae182ca4019115 | n/a | 104.16.218.98:443 |
| 2020-03-28 00:44:34 | 060d3c57ad3a89c6e600bb586cc814d0 |  19 / 65 (29.23%)
| 104.16.215.98:443 |
| 2020-03-27 19:28:28 | 08808e888c5bc8e69eb42b81b567caf5 | n/a | 104.16.217.98:443 |
| 2020-03-27 15:13:41 | 926941535345db23a2f45b3995939b80 | 22 / 72 (30.56%)
| 151.101.1.200:443 |
| 2020-03-27 15:13:39 | 926941535345db23a2f45b3995939b80 | 22 / 72 (30.56%)
| 104.16.218.98:443 |
| 2020-03-27 15:13:38 | 926941535345db23a2f45b3995939b80 | 22 / 72 (30.56%)
| 151.101.1.160:443 |
| 2020-03-27 03:24:27 | 947b2614ccb0cc2ce4439d8cdfa6cfd4 | 22 / 71 (30.99%)
| 104.16.218.98:443 |
| 2020-03-26 21:13:39 | 803c7e7340e9f2e3c492662eadc5afa6 | 22 / 73 (30.14%)
| 99.86.235.68:443 |
| 2020-03-26 19:49:29 | cdf6c5b37844378a0f1dfd0fcb89cda1 | 33 / 72 (45.83%)
| 104.16.218.98:443 |
| 2020-03-26 19:49:27 | cdf6c5b37844378a0f1dfd0fcb89cda1 | 33 / 72 (45.83%)
| 104.16.219.98:443 |
| 2020-03-26 19:49:26 | cdf6c5b37844378a0f1dfd0fcb89cda1 | 33 / 72 (45.83%)
| 151.101.1.200:443 |
| 2020-03-26 19:49:25 | cdf6c5b37844378a0f1dfd0fcb89cda1 | 33 / 72 (45.83%)
| 151.101.1.160:443 |
| 2020-03-26 19:16:04 | 0619175efa50887152aa01e9b06b96dc | 21 / 72 (29.17%)
| 104.16.215.98:443 |
| 2020-03-26 12:27:22 | 5a372fae95b828405954a558e723fd26 | n/a | 104.16.219.98:443 |
| 2020-03-26 12:27:19 | 5a372fae95b828405954a558e723fd26 | n/a | 104.16.216.98:443 |
| 2020-03-26 11:35:59 | 999dc6eef21218ed7c3fbb3bbb920052 | 35 / 73 (47.95%)
| 31.13.64.35:443 |
| 2020-03-26 11:35:56 | 999dc6eef21218ed7c3fbb3bbb920052 | 35 / 73 (47.95%)
| 185.60.216.35:443 |
| 2020-03-25 21:42:51 | a00af9729eff3c313db18914f9db4be4 | 23 / 73 (31.51%)
| 151.101.1.160:443 |
| 2020-03-25 21:42:49 | a00af9729eff3c313db18914f9db4be4 | 23 / 73 (31.51%)
| 99.181.79.2:443 |
| 2020-03-25 21:42:49 | a00af9729eff3c313db18914f9db4be4 | 23 / 73 (31.51%)
| 151.101.1.200:443 |
| 2020-03-25 16:19:47 | 39b961c13850e7910d07c9d1993b47a7 | 20 / 72 (27.78%)
| 151.101.1.200:443 |
| 2020-03-25 16:19:40 | 39b961c13850e7910d07c9d1993b47a7 | 20 / 72 (27.78%)
| 104.16.216.98:443 |
| 2020-03-25 16:19:40 | 39b961c13850e7910d07c9d1993b47a7 | 20 / 72 (27.78%)
| 104.16.219.98:443 |
| 2020-03-25 16:19:37 | 39b961c13850e7910d07c9d1993b47a7 | 20 / 72 (27.78%)
| 151.101.1.160:443 |
| 2020-03-25 14:18:50 | c0d90be5de2fbba760a3ae94c4cdbf85 | 22 / 72 (30.56%)
| 99.181.79.2:443 |
| 2020-03-19 21:25:47 | a990bfa906c958fd3e735278ef046e41 | 54 / 73 (73.97%)
| 31.13.64.35:443 |
| 2020-03-19 21:25:47 | a990bfa906c958fd3e735278ef046e41 | 54 / 73 (73.97%)
| 185.60.216.35:443 |
| 2020-03-13 15:51:14 | 87ddb4a46f4099cf156c9107e4bd3fea | 19 / 72 (26.39%)
| 104.16.216.98:443 |
| 2020-03-13 13:34:37 | 93d5af558436f42316fcd85e7af35145 | n/a | 23.15.95.206:443 |
| 2020-03-13 11:25:55 | b0a6fe18ee4c25a671a7ee59506b108a | 18 / 72 (25.00%)
| 104.16.219.98:443 |
| 2020-03-13 09:49:41 | c868debc819139e60a7623828e393bcd | 19 / 73 (26.03%)
| 151.101.25.200:443 |
| 2020-03-13 04:42:06 | 2e3249d404e1785a1bfa1914a75effcf | 24 / 73 (32.88%)
| 23.45.106.75:443 |
| 2020-03-13 04:42:01 | 2e3249d404e1785a1bfa1914a75effcf | 24 / 73 (32.88%)
| 104.16.216.98:443 |
| 2020-03-13 04:41:53 | 2e3249d404e1785a1bfa1914a75effcf | 24 / 73 (32.88%)
| 52.222.165.139:443 |
| 2020-03-13 04:41:38 | 2e3249d404e1785a1bfa1914a75effcf | 24 / 73 (32.88%)
| 104.16.219.98:443 |
| 2020-03-12 17:39:40 | 976a090d05150678c5c42d68838d5b68 | 23 / 73 (31.51%)
| 23.45.106.75:443 |
| 2020-03-07 19:04:48 | 249e052b738ab40f0e9a1f9723da6761 | 54 / 72 (75.00%)
| 185.60.216.35:443 |
| 2020-03-07 19:04:47 | 249e052b738ab40f0e9a1f9723da6761 | 54 / 72 (75.00%)
| 31.13.92.36:443 |
| 2020-03-07 19:04:47 | 249e052b738ab40f0e9a1f9723da6761 | 54 / 72 (75.00%)
| 69.31.136.5:443 |
| 2020-03-06 19:46:07 | 46c564d7bf821027725ac57fe9038526 | 34 / 72 (47.22%)
| 31.13.92.36:443 |
| 2020-03-06 19:46:06 | 46c564d7bf821027725ac57fe9038526 | 34 / 72 (47.22%)
| 69.31.136.5:443 |
| 2020-03-06 19:46:04 | 46c564d7bf821027725ac57fe9038526 | 34 / 72 (47.22%)
| 157.240.27.35:443 |
| 2020-03-05 13:59:27 | d61df703814d13c53a0907b267b6d169 | 51 / 71 (71.83%)
| 23.15.95.206:443 |
| 2020-03-05 13:59:27 | d61df703814d13c53a0907b267b6d169 | 51 / 71 (71.83%)
| 104.16.215.98:443 |
| 2020-03-05 13:59:27 | d61df703814d13c53a0907b267b6d169 | 51 / 71 (71.83%)
| 104.16.216.98:443 |
| 2020-03-05 13:59:27 | d61df703814d13c53a0907b267b6d169 | 51 / 71 (71.83%)
| 151.101.197.200:443 |
| 2020-03-05 13:59:25 | d61df703814d13c53a0907b267b6d169 | 51 / 71 (71.83%)
| 104.16.217.98:443 |
| 2020-03-05 13:59:25 | d61df703814d13c53a0907b267b6d169 | 51 / 71 (71.83%)
| 104.16.219.98:443 |
| 2020-03-05 13:59:25 | d61df703814d13c53a0907b267b6d169 | 51 / 71 (71.83%)
| 151.101.25.200:443 |
| 2020-02-26 12:20:01 | 3cd87060a68caab2b05793aab21d1885 | 41 / 72 (56.94%)
| 157.240.27.35:443 |
| 2020-02-26 12:20:00 | 3cd87060a68caab2b05793aab21d1885 | 41 / 72 (56.94%)
| 13.227.156.29:443 |
| 2020-02-26 12:20:00 | 3cd87060a68caab2b05793aab21d1885 | 41 / 72 (56.94%)
| 144.160.127.15:443 |
| 2020-02-26 12:20:00 | 3cd87060a68caab2b05793aab21d1885 | 41 / 72 (56.94%)
| 69.31.136.5:443 |
| 2020-02-26 12:19:59 | 3cd87060a68caab2b05793aab21d1885 | 41 / 72 (56.94%)
| 98.158.62.103:443 |
| 2020-02-26 12:19:59 | 3cd87060a68caab2b05793aab21d1885 | 41 / 72 (56.94%)
| 31.13.92.36:443 |
| 2020-02-26 12:19:58 | 3cd87060a68caab2b05793aab21d1885 | 41 / 72 (56.94%)
| 24.234.21.209:443 |
| 2020-02-18 08:51:52 | c8f36338fb50952e2387cc30f75abda3 | 53 / 71 (74.65%)
| 31.13.64.35:443 |
| 2020-02-17 14:54:39 | 130c8bd24889b7cd12b0394b52e30a81 | 31 / 72 (43.06%)
| 31.13.64.16:443 |
| 2020-02-17 14:54:38 | 130c8bd24889b7cd12b0394b52e30a81 | 31 / 72 (43.06%)
| 24.234.21.209:443 |
| 2020-02-17 14:54:38 | 130c8bd24889b7cd12b0394b52e30a81 | 31 / 72 (43.06%)
| 35.201.81.34:443 |
| 2020-02-17 14:54:38 | 130c8bd24889b7cd12b0394b52e30a81 | 31 / 72 (43.06%)
| 31.13.64.35:443 |
| 2020-02-17 14:54:38 | 130c8bd24889b7cd12b0394b52e30a81 | 31 / 72 (43.06%)
| 13.224.102.43:443 |
| 2020-02-17 14:54:36 | 130c8bd24889b7cd12b0394b52e30a81 | 31 / 72 (43.06%)
| 185.60.216.35:443 |
| 2020-02-17 14:54:36 | 130c8bd24889b7cd12b0394b52e30a81 | 31 / 72 (43.06%)
| 152.199.17.199:443 |
| 2020-02-17 14:54:35 | 130c8bd24889b7cd12b0394b52e30a81 | 31 / 72 (43.06%)
| 144.160.147.43:443 |
| 2020-02-17 14:54:35 | 130c8bd24889b7cd12b0394b52e30a81 | 31 / 72 (43.06%)
| 98.158.62.104:443 |
| 2020-02-16 18:34:16 | 688a060a06cee8d55c1c2809c307955b | 36 / 70 (51.43%)
| 144.160.225.143:443 |
| 2020-02-16 18:34:16 | 688a060a06cee8d55c1c2809c307955b | 36 / 70 (51.43%)
| 65.154.255.209:443 |
| 2020-02-16 18:34:16 | 688a060a06cee8d55c1c2809c307955b | 36 / 70 (51.43%)
| 13.224.102.15:443 |
| 2020-02-16 18:34:16 | 688a060a06cee8d55c1c2809c307955b | 36 / 70 (51.43%)
| 98.158.54.118:443 |
| 2020-02-16 18:34:16 | 688a060a06cee8d55c1c2809c307955b | 36 / 70 (51.43%)
| 31.13.64.35:443 |
| 2020-02-04 01:18:20 | b8bb1680dc7e5ed10cafb6303c11bf79 | 38 / 73 (52.05%)
| 172.217.18.206:443 |
| 2020-02-03 02:39:40 | c19e7c8861ca3614e1d5c4718730ddeb | 34 / 72 (47.22%)
| 216.58.215.238:443 |
| 2020-02-03 02:39:39 | c19e7c8861ca3614e1d5c4718730ddeb | 34 / 72 (47.22%)
| 172.217.168.46:443 |
| 2020-02-02 22:19:55 | b92ad9f94a92fd50ca2c4a7edc538eb6 | 46 / 73 (63.01%)
| 216.58.215.238:443 |
| 2020-02-01 06:07:12 | 3982b6f9c4d77712bd991ce8fefa3075 | 39 / 72 (54.17%)
| 13.224.96.87:443 |
| 2020-02-01 06:07:12 | 3982b6f9c4d77712bd991ce8fefa3075 | 39 / 72 (54.17%)
| 35.227.224.91:443 |
| 2020-02-01 06:07:11 | 3982b6f9c4d77712bd991ce8fefa3075 | 39 / 72 (54.17%)
| 31.13.92.36:443 |
| 2020-02-01 06:07:11 | 3982b6f9c4d77712bd991ce8fefa3075 | 39 / 72 (54.17%)
| 69.31.136.5:443 |
| 2020-01-30 11:07:22 | ae3158f1242a91049332358fb32274e0 | 37 / 71 (52.11%)
| 69.31.136.5:443 |
| 2020-01-30 11:07:21 | ae3158f1242a91049332358fb32274e0 | 37 / 71 (52.11%)
| 65.154.255.209:443 |
| 2020-01-30 11:07:21 | ae3158f1242a91049332358fb32274e0 | 37 / 71 (52.11%)
| 24.234.21.209:443 |
| 2020-01-30 11:07:21 | ae3158f1242a91049332358fb32274e0 | 37 / 71 (52.11%)
| 185.60.216.35:443 |
| 2020-01-30 11:07:21 | ae3158f1242a91049332358fb32274e0 | 37 / 71 (52.11%)
| 13.224.196.106:443 |
| 2020-01-30 11:07:21 | ae3158f1242a91049332358fb32274e0 | 37 / 71 (52.11%)
| 2.20.23.179:443 |
| 2020-01-30 11:07:21 | ae3158f1242a91049332358fb32274e0 | 37 / 71 (52.11%)
| 31.13.90.36:443 |
| 2020-01-30 11:07:20 | ae3158f1242a91049332358fb32274e0 | 37 / 71 (52.11%)
| 98.158.54.119:443 |
| 2020-01-30 11:07:19 | ae3158f1242a91049332358fb32274e0 | 37 / 71 (52.11%)
| 144.160.127.15:443 |
| 2020-01-30 11:07:19 | ae3158f1242a91049332358fb32274e0 | 37 / 71 (52.11%)
| 144.160.225.143:443 |
| 2020-01-26 21:00:24 | 5ee83b7192db3bdbbcd99e10298b3417 | n/a | 192.108.239.107:443 |
| 2020-01-26 21:00:24 | 5ee83b7192db3bdbbcd99e10298b3417 | n/a | 151.101.38.214:443 |
| 2020-01-26 21:00:23 | 5ee83b7192db3bdbbcd99e10298b3417 | n/a | 172.217.168.238:443 |
| 2020-01-26 21:00:23 | 5ee83b7192db3bdbbcd99e10298b3417 | n/a | 192.108.239.254:443 |
| 2020-01-26 20:58:48 | 00c442eaf2255116167442ab67e59df6 | n/a | 99.181.79.3:443 |
| 2020-01-26 20:58:48 | 00c442eaf2255116167442ab67e59df6 | n/a | 192.108.239.254:443 |
| 2020-01-26 20:58:47 | 00c442eaf2255116167442ab67e59df6 | n/a | 151.101.38.214:443 |
| 2020-01-26 20:58:47 | 00c442eaf2255116167442ab67e59df6 | n/a | 216.58.215.238:443 |
| 2020-01-26 20:49:56 | f53c9ce711009763e5349dd7ccce67aa | n/a | 192.108.239.254:443 |
| 2020-01-26 20:49:55 | f53c9ce711009763e5349dd7ccce67aa | n/a | 151.101.38.214:443 |
| 2020-01-19 18:05:20 | b2a328e8578efde7d0ca5c84fa1ac4e0 | 43 / 72 (59.72%)
| 54.240.168.102:443 |
# of entries: 100 (max: 100)