JA3 Fingerprints

You can find further information about the JA3 fingerprint 4d7a28d6f2263ed61de88ca66eb011e3, including the corresponding malware samples as well as the associated botnet C&Cs.

Database Entry


JA3 Fingerprint:4d7a28d6f2263ed61de88ca66eb011e3
First seen:2017-07-16 21:20:29 UTC
Last seen:2020-02-02 04:18:46 UTC
Status:Blacklisted
Malware samples:298
Destination IPs:80
Malware:Tofsee -
Listing date:2018-11-14 12:07:05

Malware Samples


The table below documents all malware samples associated with this JA3 Fingerprint.

Timestamp (UTC)Malware Sample (MD5 hash)VTBotnet C&C (IP:port)
2020-02-02 04:18:46b93026fc047f76de9c6705d3ecf2024aVirustotal results 40 / 72 (55.56%) 54.230.97.67:443
2019-09-05 09:56:486d6a2ca428108a3075f16dd9855fc874n/a66.211.185.34:443
2019-09-05 09:56:476d6a2ca428108a3075f16dd9855fc874n/a23.211.5.229:443
2019-09-05 08:12:11ab9e8898d6e7693dea88def8dba55fe0n/a66.211.185.34:443
2019-09-05 08:12:11ab9e8898d6e7693dea88def8dba55fe0n/a23.211.5.229:443
2019-09-05 06:05:296c1bb3fce888dc0f22d5828ad76d59ccn/a23.60.165.189:443
2019-09-05 06:05:296c1bb3fce888dc0f22d5828ad76d59ccn/a66.135.204.237:443
2019-09-05 01:56:25d18853e65b59d3f5e967b4d905df2ffen/a66.135.204.237:443
2019-09-05 01:56:25d18853e65b59d3f5e967b4d905df2ffen/a92.122.255.229:443
2019-09-04 23:58:1991c2ce03b2acd12661b7f077818e26d2n/a66.211.177.111:443
2019-09-04 23:58:1991c2ce03b2acd12661b7f077818e26d2n/a2.18.234.107:443
2019-09-04 23:58:1891c2ce03b2acd12661b7f077818e26d2n/a66.211.185.47:443
2019-09-04 23:48:54b3fc25cfb8d243450fbd1deef8ff1a97n/a66.211.185.34:443
2019-09-04 23:48:53b3fc25cfb8d243450fbd1deef8ff1a97n/a23.60.165.189:443
2019-09-04 23:46:55667fc8f9a4083a1cc176b492f2529954n/a66.135.213.78:443
2019-09-04 23:46:55667fc8f9a4083a1cc176b492f2529954n/a92.122.255.229:443
2019-09-04 23:46:53667fc8f9a4083a1cc176b492f2529954n/a66.135.204.237:443
2019-09-04 23:40:2675600130239828b866028bc29b9b7dben/a23.60.165.189:443
2019-09-04 23:40:2475600130239828b866028bc29b9b7dben/a66.135.204.237:443
2019-09-04 20:59:5447e3eca19b5cc9fe42285f6ecfa446c0n/a2.18.234.107:443
2019-09-04 20:59:4947e3eca19b5cc9fe42285f6ecfa446c0n/a66.211.185.34:443
2019-09-04 19:52:574bedfaca00ed76c11c462bb1a387f440Virustotal results 49 / 70 (70.00%) 66.135.204.237:443
2019-09-04 19:52:554bedfaca00ed76c11c462bb1a387f440Virustotal results 49 / 70 (70.00%) 66.211.185.47:443
2019-09-04 19:52:544bedfaca00ed76c11c462bb1a387f440Virustotal results 49 / 70 (70.00%) 23.211.5.229:443
2019-09-04 19:01:378780d82c810e42dd917aca598eb20017Virustotal results 46 / 66 (69.70%) 23.60.165.189:443
2019-09-04 19:01:328780d82c810e42dd917aca598eb20017Virustotal results 46 / 66 (69.70%) 66.135.204.237:443
2019-09-04 18:19:082a474359ee67cec5cf87e64ca5a8fa7bn/a92.122.255.229:443
2019-09-04 18:19:082a474359ee67cec5cf87e64ca5a8fa7bn/a66.211.185.47:443
2019-08-26 13:58:5604e6ac031a293afc201df37929cc3584Virustotal results 26 / 68 (38.24%) 2.22.93.78:443
2019-08-26 13:58:5504e6ac031a293afc201df37929cc3584Virustotal results 26 / 68 (38.24%) 66.135.213.78:443
2019-08-26 13:35:37cc2233d8c0928049b9499f8675480259n/a66.135.204.237:443
2019-08-26 13:35:37cc2233d8c0928049b9499f8675480259n/a2.22.93.78:443
2019-08-25 02:28:470e5dbb9393c024187bca5160feac388dn/a66.211.177.111:443
2019-08-25 02:28:470e5dbb9393c024187bca5160feac388dn/a2.22.93.78:443
2019-08-24 19:15:00a47eb4d809198d055788c027b075c38bn/a66.135.204.237:443
2019-08-24 15:10:0342e14c9e5da78db16ca87284c010513an/a66.211.185.47:443
2019-08-24 15:10:0242e14c9e5da78db16ca87284c010513an/a2.21.40.64:443
2019-08-24 13:38:173ad84a5da0da91c2123858ad1db7b998Virustotal results 33 / 69 (47.83%) 2.21.40.64:443
2019-08-24 13:38:103ad84a5da0da91c2123858ad1db7b998Virustotal results 33 / 69 (47.83%) 66.211.177.111:443
2019-08-24 02:51:33b5e4a6453166f0809c11fc16f0899bedn/a66.211.177.111:443
2019-08-24 02:51:31b5e4a6453166f0809c11fc16f0899bedn/a2.21.40.64:443
2019-08-24 01:12:01ffe1974347d843cada626030ffb1a1faVirustotal results 49 / 69 (71.01%) 66.135.204.237:443
2019-08-24 01:12:00ffe1974347d843cada626030ffb1a1faVirustotal results 49 / 69 (71.01%) 104.66.164.249:443
2019-08-23 17:26:467b7db1487d0fcc575452db7397e8a557n/a104.80.20.236:443
2019-08-23 17:26:457b7db1487d0fcc575452db7397e8a557n/a66.135.204.237:443
2019-08-23 07:57:27d28d097583cf396588d68cde3e2e45f4n/a66.211.185.47:443
2019-08-23 07:57:27d28d097583cf396588d68cde3e2e45f4n/a2.18.234.107:443
2019-08-22 21:57:23cb0c6ed809e889735c06929d6a531a70n/a23.211.5.229:443
2019-08-22 21:57:22cb0c6ed809e889735c06929d6a531a70n/a66.211.185.34:443
2019-08-22 21:33:41177542c1c2719e154ba04acc5afaf14en/a23.60.165.189:443
2019-08-22 21:33:41177542c1c2719e154ba04acc5afaf14en/a66.135.204.237:443
2019-08-22 19:22:2861d8adb61ef374e6299b303e1c16e319n/a66.135.204.237:443
2019-08-22 19:22:2761d8adb61ef374e6299b303e1c16e319n/a23.60.165.189:443
2019-08-22 18:28:450dd264835fd4eb02c26e3fc2848e62ben/a66.211.185.34:443
2019-08-22 18:28:450dd264835fd4eb02c26e3fc2848e62ben/a2.18.234.107:443
2019-08-22 18:28:440dd264835fd4eb02c26e3fc2848e62ben/a66.135.204.237:443
2019-08-21 12:23:40dc402f3ce3138e05639efe096ae1988fVirustotal results 27 / 69 (39.13%) 2.21.40.64:443
2019-08-21 12:23:40dc402f3ce3138e05639efe096ae1988fVirustotal results 27 / 69 (39.13%) 66.135.204.237:443
2019-08-21 10:16:58e9035d91e642f15291011176d2c18a93n/a2.22.93.78:443
2019-08-21 10:16:57e9035d91e642f15291011176d2c18a93n/a66.211.185.34:443
2019-08-20 15:03:396ff6a5712f93330e1cb5fbf60b959f13Virustotal results 22 / 71 (30.99%) 2.22.93.78:443
2019-08-20 15:03:396ff6a5712f93330e1cb5fbf60b959f13Virustotal results 22 / 71 (30.99%) 66.211.177.111:443
2019-08-20 14:38:3482244b315a229888b83ac404a1099bc9Virustotal results 57 / 70 (81.43%) 66.135.204.237:443
2019-08-20 14:38:3482244b315a229888b83ac404a1099bc9Virustotal results 57 / 70 (81.43%) 104.80.20.236:443
2019-08-20 12:48:13ffd84a66b0bee92ad82da9584258285dn/a66.211.185.34:443
2019-08-20 12:48:12ffd84a66b0bee92ad82da9584258285dn/a2.21.40.64:443
2019-08-20 11:59:53551333c33219fcba61b21fc3a3121bb8n/a66.211.185.34:443
2019-08-20 11:59:53551333c33219fcba61b21fc3a3121bb8n/a2.22.93.78:443
2019-08-20 11:59:51551333c33219fcba61b21fc3a3121bb8n/a66.135.204.237:443
2019-08-20 10:47:42a6f6ed8ac93cefbdf99f70a11be38677n/a66.211.185.34:443
2019-08-20 10:47:42a6f6ed8ac93cefbdf99f70a11be38677n/a2.22.93.78:443
2019-08-20 07:59:40f96a0d04fe671ace2c5eab0461fffde0n/a66.211.185.47:443
2019-08-20 07:59:40f96a0d04fe671ace2c5eab0461fffde0n/a23.211.5.229:443
2019-08-20 07:08:319c95a9992ba83dbee81ba91d615804b1n/a66.135.204.237:443
2019-08-20 07:08:309c95a9992ba83dbee81ba91d615804b1n/a2.21.40.64:443
2019-08-20 06:36:2269fa5ee1140faf1e6b5afa7f0941b15eVirustotal results 24 / 62 (38.71%) 2.22.93.78:443
2019-08-20 06:36:1769fa5ee1140faf1e6b5afa7f0941b15eVirustotal results 24 / 62 (38.71%) 66.211.185.47:443
2019-08-20 03:46:22a2350fa012d87287af3b46682d5f122eVirustotal results 35 / 71 (49.30%) 66.211.185.47:443
2019-08-20 03:46:22a2350fa012d87287af3b46682d5f122eVirustotal results 35 / 71 (49.30%) 66.211.185.34:443
2019-08-20 03:46:21a2350fa012d87287af3b46682d5f122eVirustotal results 35 / 71 (49.30%) 2.18.234.107:443
2019-08-20 02:19:29c968e944b17d8b0ec1e6ed125dd4cf21n/a66.135.204.237:443
2019-08-20 02:19:29c968e944b17d8b0ec1e6ed125dd4cf21n/a23.60.165.189:443
2019-08-19 23:38:12a2297b4a9373ecf2383979deb5145f43n/a2.22.93.78:443
2019-08-19 23:38:11a2297b4a9373ecf2383979deb5145f43n/a66.135.204.237:443
2019-08-19 18:49:00ba5685276d05c09265a71cdd71dbb66en/a23.54.115.65:443
2019-08-19 18:48:59ba5685276d05c09265a71cdd71dbb66en/a66.211.185.47:443
2019-08-19 17:22:2844cc5529820da148a6ec707e3a7d93a2n/a66.135.204.237:443
2019-08-19 17:22:2844cc5529820da148a6ec707e3a7d93a2n/a104.80.20.236:443
2019-08-19 16:21:295de1d0a9b802c5e9663a28530d480707n/a2.22.93.78:443
2019-08-19 16:21:295de1d0a9b802c5e9663a28530d480707n/a66.211.177.111:443
2019-08-19 14:17:31d4000edf4eb4026693e824d02336049an/a104.80.20.236:443
2019-08-19 14:17:30d4000edf4eb4026693e824d02336049an/a66.135.204.237:443
2019-08-19 13:21:512e3a00d01d05d06f76e7ee9fc9cdff15Virustotal results 33 / 71 (46.48%) 66.135.204.237:443
2019-08-19 13:21:502e3a00d01d05d06f76e7ee9fc9cdff15Virustotal results 33 / 71 (46.48%) 2.21.40.64:443
2019-08-19 13:15:11327927393f0ac3380231fdf157eeec80n/a66.135.204.237:443
2019-08-19 13:15:11327927393f0ac3380231fdf157eeec80n/a23.60.165.189:443
2019-08-19 11:57:31d2547d43987aba17ff54d9c0abcdfeb5Virustotal results 35 / 69 (50.72%) 2.22.93.78:443
2019-08-19 11:57:31d2547d43987aba17ff54d9c0abcdfeb5Virustotal results 35 / 69 (50.72%) 66.135.213.78:443
2019-08-19 11:51:40554ae474863c2ec225f09781deb7aae1n/a66.135.204.237:443
2019-08-19 11:51:40554ae474863c2ec225f09781deb7aae1n/a23.59.85.93:443

# of entries: 100 (max: 100)