JA3 Fingerprints
You can find further information about the JA3 fingerprint 3cda52da4ade09f1f781ad2e82dcfa20, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 3cda52da4ade09f1f781ad2e82dcfa20 |
|---|---|
| First seen: | 2017-07-30 18:41:36 UTC |
| Last seen: | 2019-05-21 17:34:18 UTC |
| Status: | Blacklisted |
| Malware samples: | 272 |
| Destination IPs: | 179 |
| Malware: | Quakbot |
| Listing date: | 2019-05-20 05:19:27 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2019-05-21 17:34:18 | 02b6ee7164eff6c2b7909c56f5089d64 |  47/72 (65.28%)
| 104.255.82.205:443 |
| 2019-05-21 17:34:18 | 02b6ee7164eff6c2b7909c56f5089d64 | 47/72 (65.28%)
| 104.255.82.205:443 |
| 2019-05-19 22:12:09 | 94c78a96c91d72955211e1553e0bc7a7 | 38/70 (54.29%)
| 96.22.239.27:2222 |
| 2019-05-19 22:12:09 | 94c78a96c91d72955211e1553e0bc7a7 | 38/70 (54.29%)
| 96.22.239.27:2222 |
| 2019-05-18 19:36:29 | c565f3af38cca262d89187161f84cc3c | 38/68 (55.88%)
| 2.50.156.213:443 |
| 2019-05-18 19:36:29 | c565f3af38cca262d89187161f84cc3c | 38/68 (55.88%)
| 2.50.156.213:443 |
| 2019-05-18 17:48:58 | 9baee4fb015a8ec893b5625833f0a52c | 36/66 (54.55%)
| 96.241.121.101:443 |
| 2019-05-18 17:48:58 | 9baee4fb015a8ec893b5625833f0a52c | 36/66 (54.55%)
| 96.241.121.101:443 |
| 2019-05-10 23:23:27 | 45c58ce40dd73d742a81b4726b943faf | 43/70 (61.43%)
| 76.106.120.58:995 |
| 2019-05-10 23:23:27 | 45c58ce40dd73d742a81b4726b943faf | 43/70 (61.43%)
| 166.62.180.194:2222 |
| 2019-05-10 23:23:27 | 45c58ce40dd73d742a81b4726b943faf | 43/70 (61.43%)
| 96.22.239.27:2222 |
| 2019-05-10 23:23:27 | 45c58ce40dd73d742a81b4726b943faf | 43/70 (61.43%)
| 73.55.10.195:443 |
| 2019-05-10 23:23:27 | 45c58ce40dd73d742a81b4726b943faf | 43/70 (61.43%)
| 166.62.180.194:2222 |
| 2019-05-10 23:23:27 | 45c58ce40dd73d742a81b4726b943faf | 43/70 (61.43%)
| 76.106.120.58:995 |
| 2019-05-10 23:23:27 | 45c58ce40dd73d742a81b4726b943faf | 43/70 (61.43%)
| 96.22.239.27:2222 |
| 2019-05-10 23:23:27 | 45c58ce40dd73d742a81b4726b943faf | 43/70 (61.43%)
| 73.55.10.195:443 |
| 2019-05-03 15:04:22 | 8919586f74f52703ebb8b3eb3489c386 | 33/71 (46.48%)
| 50.246.229.50:32103 |
| 2019-05-03 15:04:22 | 8919586f74f52703ebb8b3eb3489c386 | 33/71 (46.48%)
| 50.246.229.50:32103 |
| 2019-04-22 16:25:32 | 797215ce236d9dbd73e7d3c85f03ee8c | 46/70 (65.71%)
| 37.59.46.50:443 |
| 2019-04-22 16:25:32 | 797215ce236d9dbd73e7d3c85f03ee8c | 46/70 (65.71%)
| 37.59.46.50:443 |
| 2019-04-14 10:17:41 | 3e1edaf0d7073cef8667aa5e5f44cfa1 | 43/69 (62.32%)
| 181.119.30.39:443 |
| 2019-04-14 10:17:41 | 3e1edaf0d7073cef8667aa5e5f44cfa1 | 43/69 (62.32%)
| 181.119.30.39:443 |
| 2019-04-13 09:03:02 | de15d44c87433d191ca2f1e635cc1131 | 42/68 (61.76%)
| 162.237.221.101:443 |
| 2019-04-13 09:03:02 | de15d44c87433d191ca2f1e635cc1131 | 42/68 (61.76%)
| 162.237.221.101:443 |
| 2019-04-12 04:17:17 | 5e1525be60c1fdbb1176851122ebfb07 | 48/71 (67.61%)
| 94.23.35.188:443 |
| 2019-04-12 04:17:17 | 5e1525be60c1fdbb1176851122ebfb07 | 48/71 (67.61%)
| 188.165.222.11:443 |
| 2019-04-12 04:17:17 | 5e1525be60c1fdbb1176851122ebfb07 | 48/71 (67.61%)
| 94.23.35.188:443 |
| 2019-04-12 04:17:17 | 5e1525be60c1fdbb1176851122ebfb07 | 48/71 (67.61%)
| 188.165.222.11:443 |
| 2019-04-10 11:53:23 | a23fdafe1a4f0af4082ee74d3695ed87 | 35/71 (49.30%)
| 173.79.220.2:443 |
| 2019-04-10 11:53:23 | a23fdafe1a4f0af4082ee74d3695ed87 | 35/71 (49.30%)
| 173.79.220.2:443 |
| 2019-04-06 12:27:07 | 0ec2131cb55ce20349d33cc08be4cd4e | 22/70 (31.43%)
| 216.221.73.45:2222 |
| 2019-04-06 12:27:07 | 0ec2131cb55ce20349d33cc08be4cd4e | 22/70 (31.43%)
| 216.221.73.45:2222 |
| 2019-04-02 13:38:11 | 02d97b52b679d16f3e63f8f4a3ceba36 | 45/66 (68.18%)
| 94.23.35.188:443 |
| 2019-04-02 13:38:11 | 02d97b52b679d16f3e63f8f4a3ceba36 | 45/66 (68.18%)
| 94.23.35.188:443 |
| 2019-03-23 03:42:52 | 2d888acf4748e0d2e3e054e5f23dbce6 | 43/66 (65.15%)
| 188.165.206.208:443 |
| 2019-03-23 03:42:52 | 2d888acf4748e0d2e3e054e5f23dbce6 | 43/66 (65.15%)
| 94.23.35.188:443 |
| 2019-03-23 03:42:52 | 2d888acf4748e0d2e3e054e5f23dbce6 | 43/66 (65.15%)
| 188.165.222.11:443 |
| 2019-03-23 03:42:52 | 2d888acf4748e0d2e3e054e5f23dbce6 | 43/66 (65.15%)
| 188.165.206.208:443 |
| 2019-03-23 03:42:52 | 2d888acf4748e0d2e3e054e5f23dbce6 | 43/66 (65.15%)
| 94.23.35.188:443 |
| 2019-03-23 03:42:52 | 2d888acf4748e0d2e3e054e5f23dbce6 | 43/66 (65.15%)
| 188.165.222.11:443 |
| 2019-03-20 17:55:54 | 9dfa9e4da513496d3bdf114d48caa44c | 5/71 (7.04%)
| 185.158.251.52:443 |
| 2019-03-20 17:55:54 | 9dfa9e4da513496d3bdf114d48caa44c | 5/71 (7.04%)
| 185.158.251.52:443 |
| 2019-03-20 12:58:23 | 15659b5e1ac8cc5d4fe87e5098102514 | 46/69 (66.67%)
| 94.23.35.188:443 |
| 2019-03-20 12:58:23 | 15659b5e1ac8cc5d4fe87e5098102514 | 46/69 (66.67%)
| 94.23.35.188:443 |
| 2019-03-10 18:46:38 | 7a016358db69fad33351f9216a65d0ab | 41/68 (60.29%)
| 37.59.46.50:443 |
| 2019-03-10 18:46:38 | 7a016358db69fad33351f9216a65d0ab | 41/68 (60.29%)
| 188.165.222.11:443 |
| 2019-03-10 18:46:38 | 7a016358db69fad33351f9216a65d0ab | 41/68 (60.29%)
| 188.165.222.11:443 |
| 2019-03-10 18:46:38 | 7a016358db69fad33351f9216a65d0ab | 41/68 (60.29%)
| 37.59.46.50:443 |
| 2019-03-09 20:41:21 | 754571db59acd7ea85cdf8aaadd44f26 | 39/64 (60.94%)
| 37.59.46.50:443 |
| 2019-03-09 20:41:21 | 754571db59acd7ea85cdf8aaadd44f26 | 39/64 (60.94%)
| 37.59.46.50:443 |
| 2019-03-08 00:17:37 | c6b02da8a86d9186ad9811ac11e1c4b5 | 33/63 (52.38%)
| 188.165.206.208:443 |
| 2019-03-08 00:17:37 | c6b02da8a86d9186ad9811ac11e1c4b5 | 33/63 (52.38%)
| 188.165.206.208:443 |
| 2019-03-06 10:11:20 | 1c83d1f0bcfc7959e21864ae946ebb78 | 43/67 (64.18%)
| 192.198.85.26:443 |
| 2019-03-06 10:11:20 | 1c83d1f0bcfc7959e21864ae946ebb78 | 43/67 (64.18%)
| 192.198.85.26:443 |
| 2019-03-03 23:01:15 | d9536de3884eca4a795cc41a441170ff | 20/62 (32.26%)
| 98.183.37.64:995 |
| 2019-03-03 23:01:15 | d9536de3884eca4a795cc41a441170ff | 20/62 (32.26%)
| 98.183.37.64:995 |
| 2019-03-01 11:28:08 | c1e12e27fd30be665a7e087eef72ce86 | 37/70 (52.86%)
| 94.23.35.188:443 |
| 2019-03-01 11:28:08 | c1e12e27fd30be665a7e087eef72ce86 | 37/70 (52.86%)
| 94.23.35.188:443 |
| 2019-02-11 01:16:23 | cba8ae81c0f4ea25f39484f2d98a13c9 | 35/70 (50.00%)
| 70.183.154.153:995 |
| 2019-02-11 01:16:23 | cba8ae81c0f4ea25f39484f2d98a13c9 | 35/70 (50.00%)
| 70.183.154.153:995 |
| 2019-02-06 12:11:21 | 44cdb7a0624bbde607eb2ae1356c2bc3 | 45/70 (64.29%)
| 173.12.74.190:80 |
| 2019-02-06 12:11:21 | 44cdb7a0624bbde607eb2ae1356c2bc3 | 45/70 (64.29%)
| 173.12.74.190:80 |
| 2019-02-06 09:27:48 | 5c6446b05ad56f6ae0be17410272cd34 | 47/70 (67.14%)
| 209.152.153.64:443 |
| 2019-02-06 09:27:48 | 5c6446b05ad56f6ae0be17410272cd34 | 47/70 (67.14%)
| 209.152.153.64:443 |
| 2019-02-06 06:47:27 | 2ca8548e743ee039e2b8894c535f5c5f | 37/71 (52.11%)
| 192.198.85.26:443 |
| 2019-02-06 06:47:27 | 2ca8548e743ee039e2b8894c535f5c5f | 37/71 (52.11%)
| 192.198.85.26:443 |
| 2019-02-06 01:55:40 | f458e860d637364abf8a8c027a8259b2 | 39/71 (54.93%)
| 65.116.179.83:443 |
| 2019-02-06 01:55:40 | f458e860d637364abf8a8c027a8259b2 | 39/71 (54.93%)
| 208.74.246.153:443 |
| 2019-02-06 01:55:40 | f458e860d637364abf8a8c027a8259b2 | 39/71 (54.93%)
| 24.173.61.30:443 |
| 2019-02-06 01:55:40 | f458e860d637364abf8a8c027a8259b2 | 39/71 (54.93%)
| 24.173.61.30:443 |
| 2019-02-06 01:55:40 | f458e860d637364abf8a8c027a8259b2 | 39/71 (54.93%)
| 65.116.179.83:443 |
| 2019-02-06 01:55:40 | f458e860d637364abf8a8c027a8259b2 | 39/71 (54.93%)
| 208.74.246.153:443 |
| 2019-01-19 22:51:12 | 8cdaf4ed0f12b1030dd1515e07d5daa7 | 9/68 (13.24%)
| 71.244.151.51:995 |
| 2019-01-19 22:51:12 | 8cdaf4ed0f12b1030dd1515e07d5daa7 | 9/68 (13.24%)
| 71.244.151.51:995 |
| 2019-01-17 10:27:05 | 40bd588d8b0808ae1d62e56ae36075da | 24/70 (34.29%)
| 73.52.28.5:443 |
| 2019-01-17 10:27:05 | 40bd588d8b0808ae1d62e56ae36075da | 24/70 (34.29%)
| 69.243.133.209:443 |
| 2019-01-17 10:27:05 | 40bd588d8b0808ae1d62e56ae36075da | 24/70 (34.29%)
| 189.175.124.143:443 |
| 2019-01-17 10:27:05 | 40bd588d8b0808ae1d62e56ae36075da | 24/70 (34.29%)
| 69.243.133.209:443 |
| 2019-01-17 10:27:05 | 40bd588d8b0808ae1d62e56ae36075da | 24/70 (34.29%)
| 73.52.28.5:443 |
| 2019-01-17 10:27:05 | 40bd588d8b0808ae1d62e56ae36075da | 24/70 (34.29%)
| 189.175.124.143:443 |
| 2019-01-16 12:14:22 | d429170a3e2762bdd0869fb155bdad47 | 23/70 (32.86%)
| 37.10.71.110:443 |
| 2019-01-16 12:14:22 | d429170a3e2762bdd0869fb155bdad47 | 23/70 (32.86%)
| 37.10.71.110:443 |
| 2019-01-08 20:41:40 | 971d005c9802b239ef68a953b99e8052 | 44/68 (64.71%)
| 65.184.86.143:2222 |
| 2019-01-08 20:41:40 | 971d005c9802b239ef68a953b99e8052 | 44/68 (64.71%)
| 65.184.86.143:2222 |
| 2019-01-08 20:09:09 | 70f2613f7331b90b002cb7865c22a731 | 47/70 (67.14%)
| 65.184.86.143:2222 |
| 2019-01-08 20:09:09 | 70f2613f7331b90b002cb7865c22a731 | 47/70 (67.14%)
| 65.184.86.143:2222 |
| 2019-01-03 14:28:54 | 5e470e065810ee21dac5cac7d0b54e0f | 32/71 (45.07%)
| 185.158.249.138:443 |
| 2019-01-03 14:28:54 | 5e470e065810ee21dac5cac7d0b54e0f | 32/71 (45.07%)
| 185.158.249.138:443 |
| 2019-01-03 10:54:48 | 627ba09c59524c5e232d8632630f6758 | 24/71 (33.80%)
| 185.158.249.138:443 |
| 2019-01-03 10:54:48 | 627ba09c59524c5e232d8632630f6758 | 24/71 (33.80%)
| 185.158.249.138:443 |
| 2018-12-23 19:32:38 | 17873efe0d1a3de195e4d880ec85c16f | 33/71 (46.48%)
| 189.175.148.230:443 |
| 2018-12-23 19:32:38 | 17873efe0d1a3de195e4d880ec85c16f | 33/71 (46.48%)
| 189.175.148.230:443 |
| 2018-12-23 14:21:33 | 55435cf7360c7802e9cc8c07301a4337 | 44/70 (62.86%)
| 104.3.91.20:995 |
| 2018-12-23 14:21:33 | 55435cf7360c7802e9cc8c07301a4337 | 44/70 (62.86%)
| 104.3.91.20:995 |
| 2018-12-22 11:12:08 | 1dc06010af8da0c59ea89d39ebf1b5c5 | 36/71 (50.70%)
| 79.166.127.191:443 |
| 2018-12-22 11:12:08 | 1dc06010af8da0c59ea89d39ebf1b5c5 | 36/71 (50.70%)
| 97.76.139.138:80 |
| 2018-12-22 11:12:08 | 1dc06010af8da0c59ea89d39ebf1b5c5 | 36/71 (50.70%)
| 97.76.139.138:80 |
| 2018-12-22 11:12:08 | 1dc06010af8da0c59ea89d39ebf1b5c5 | 36/71 (50.70%)
| 79.166.127.191:443 |
| 2018-12-17 17:32:27 | d8f39686d2d3c48677332e1226126825 | 39/67 (58.21%)
| 68.59.209.183:995 |
| 2018-12-17 17:32:27 | d8f39686d2d3c48677332e1226126825 | 39/67 (58.21%)
| 68.59.209.183:995 |
# of entries: 100 (max: 100)