JA3 Fingerprints
You can find further information about the JA3 fingerprint 57f3642b4e37e28f5cbe3020c9331b4c, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 57f3642b4e37e28f5cbe3020c9331b4c |
|---|---|
| First seen: | 2018-08-28 15:54:53 UTC |
| Last seen: | 2019-01-21 16:21:02 UTC |
| Status: | Blacklisted |
| Malware samples: | 2'167 |
| Destination IPs: | 65 |
| Malware: | Gozi  |
| Listing date: | 2018-11-14 00:00:00 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2019-01-21 16:21:02 | 133e3b758b8cfbf6cfabcbe542b17c81 |  8/56 (14.29%)
| 185.127.27.238:443 |
| 2019-01-21 14:31:09 | 66226898a64ac8157180452479dd366f | 9/71 (12.68%)
| 185.127.27.238:443 |
| 2019-01-21 14:24:09 | 787b3d6ea5d9429c0d5a81f6030a083c | n/a | 185.127.27.238:443 |
| 2019-01-21 12:04:05 | 18c931ee3392682a59fed765fcefce8c | n/a | 185.127.27.238:443 |
| 2019-01-14 10:16:34 | a7d292275cc4b1be0a7408fcc4641a54 | 25/58 (43.10%)
| 52.85.245.221:443 |
| 2019-01-14 10:16:34 | a7d292275cc4b1be0a7408fcc4641a54 | 25/58 (43.10%)
| 52.85.245.159:443 |
| 2019-01-14 10:16:33 | a7d292275cc4b1be0a7408fcc4641a54 | 25/58 (43.10%)
| 52.85.245.149:443 |
| 2019-01-09 21:33:08 | c6650432440610d26a8e181c1ab1609e | 50/68 (73.53%)
| 208.100.26.251:443 |
| 2019-01-08 20:26:44 | c2f99d144bf9631a62a58355b950cdeb | 42/66 (63.64%)
| 87.106.18.141:443 |
| 2019-01-08 17:49:58 | 7d406732358dc584be428bec88d0b2ce | n/a | 150.109.75.174:443 |
| 2019-01-08 12:36:36 | f9e3f15a41b6dd4ab25d95a957abee6a | 52/69 (75.36%)
| 208.100.26.251:443 |
| 2019-01-08 07:54:44 | 42d87be786dd12006fff4b744cff3831 | 50/66 (75.76%)
| 91.134.203.113:443 |
| 2019-01-03 21:07:08 | 724de8c4f06390862fa57e56116c714d | 21/69 (30.43%)
| 52.216.21.227:443 |
| 2019-01-03 21:07:08 | 724de8c4f06390862fa57e56116c714d | 21/69 (30.43%)
| 18.205.93.0:443 |
| 2019-01-02 17:35:13 | ed3a23efc6b747d7b63bcb18d152a9da | n/a | 185.158.251.13:443 |
| 2019-01-02 14:11:30 | a820381c8acf07cfcb4d9b13498db71d | n/a | 185.158.251.13:443 |
| 2018-12-31 13:29:31 | 1b95d56adeae3ef9ed099f8c3ddd0eb4 | n/a | 185.189.149.252:443 |
| 2018-12-31 12:18:07 | 7aebd77676af0ff08d51cdb2ce0e58b2 | n/a | 185.189.149.252:443 |
| 2018-12-31 11:46:48 | f5beb98beada57e6e48acf8f493804c3 | n/a | 185.189.149.252:443 |
| 2018-12-31 11:01:37 | 4dff0b111cdc1224751c8422718672ae | n/a | 185.189.149.252:443 |
| 2018-12-31 10:33:59 | 1087d0587940bbb42b3946cbd31aa49c | n/a | 185.189.149.252:443 |
| 2018-12-31 09:26:09 | e834d4de441057c430a43076aa1c9a8b | n/a | 185.189.149.252:443 |
| 2018-12-31 09:05:45 | 3d9232b02e0d6be1f719d6746e493026 | n/a | 185.189.149.252:443 |
| 2018-12-31 08:49:05 | fc5849feb1c5ca18b30050ac762780fc | n/a | 185.189.149.252:443 |
| 2018-12-31 08:41:19 | 67386308ef8f0693cd62d3957a3e7e24 | n/a | 185.189.149.252:443 |
| 2018-12-31 08:30:55 | 0c9afb4ef7e30c7c148b9524aa5eca47 | n/a | 185.189.149.252:443 |
| 2018-12-31 07:33:55 | 22152304bbe41d63b0e5304185735c6f | n/a | 185.189.149.252:443 |
| 2018-12-31 07:20:01 | a6f09bfd00cf619f77a22050cacd493e | n/a | 185.189.149.252:443 |
| 2018-12-31 05:48:45 | 3e81c5c662bdf1a81c72ee3c5a470a12 | 28/72 (38.89%)
| 185.189.149.252:443 |
| 2018-12-31 00:55:20 | aecdb162f1e35d33af4fb8a02c94dbd4 | n/a | 185.189.149.252:443 |
| 2018-12-30 23:51:17 | ab0112cdbecd649ce1032559f6929f7d | n/a | 185.189.149.252:443 |
| 2018-12-30 23:01:33 | b214316422d48748c6a90b045ed9c314 | n/a | 185.189.149.252:443 |
| 2018-12-30 22:35:05 | d34b61a36ed53603f8cb5ae326d32885 | n/a | 185.189.149.252:443 |
| 2018-12-30 21:19:21 | e025040d5d4170e807c1378888bf0a5a | n/a | 185.189.149.252:443 |
| 2018-12-30 19:51:12 | fb71e6c457e2615114cb398395c6ff0e | n/a | 185.189.149.252:443 |
| 2018-12-30 19:26:06 | e96cf37956a3b3ba63ccb6442de1c534 | n/a | 185.189.149.252:443 |
| 2018-12-30 19:14:53 | 421cd561d29cbffd4b10ed84cc06d3fc | n/a | 185.189.149.252:443 |
| 2018-12-30 07:33:59 | a917d65e22335a215cab6fe76d1ad39c | n/a | 185.189.149.252:443 |
| 2018-12-29 04:51:41 | 2b5ba0f819512e7d45cccca70dedf451 | 12/70 (17.14%)
| 185.189.149.252:443 |
| 2018-12-28 19:21:08 | 0d0376c7915b13d3cc1d5c93a2d7946f | n/a | 185.189.149.252:443 |
| 2018-12-28 15:11:52 | e970bf4263beb95cc221d6abfc766758 | n/a | 185.189.149.252:443 |
| 2018-12-28 12:23:14 | 7fc3ec8f10078fa1c5b9f8d9cfc43c49 | n/a | 185.189.149.252:443 |
| 2018-12-24 13:15:39 | c91814ca2f1a0295cdf315a133167f3f | n/a | 185.189.149.252:443 |
| 2018-12-18 14:39:40 | 8554746f89a0952218d14a274d25503f | 4/69 (5.80%)
| 85.143.219.81:443 |
| 2018-12-14 11:47:21 | 2f9ba988aa5bf1e16b4c86b92e7f8000 | 23/69 (33.33%)
| 62.173.138.139:443 |
| 2018-12-14 09:11:13 | 9899612bec623d464cda6a6b8c9deb3f | 17/69 (24.64%)
| 51.38.146.101:443 |
| 2018-12-13 20:26:31 | 3905befc240bd61aab69416809d94dd9 | 36/69 (52.17%)
| 62.173.138.139:443 |
| 2018-12-13 18:31:12 | bea4aed9f19279026c66d618ba579a26 | 40/69 (57.97%)
| 172.217.168.238:443 |
| 2018-12-07 15:47:06 | c4bcb96edbb1ff96e10c920b11ee0d10 | 5/70 (7.14%)
| 192.162.244.23:443 |
| 2018-12-07 15:40:23 | f51ab2262e79e46b28005d1db0307eb8 | 5/67 (7.46%)
| 192.162.244.23:443 |
| 2018-12-07 10:50:36 | 2604bf3acb0b6455626ede13426f3ba7 | 4/67 (5.97%)
| 192.162.244.23:443 |
| 2018-12-07 10:17:43 | db8f5e067d871f1f1b7eb3524dbb3343 | 46/70 (65.71%)
| 51.38.146.101:443 |
| 2018-12-04 18:45:22 | 7b9c141f8c62a2a8ff8af01b96631451 | 15/69 (21.74%)
| 51.38.146.101:443 |
| 2018-11-30 03:24:12 | b6af9027a6230a1bee76ab6b2d5e2ee6 | 22/70 (31.43%)
| 152.199.19.161:443 |
| 2018-11-28 14:19:54 | 656c64964c12e973d09d0d47765db238 | n/a | 83.166.247.211:443 |
| 2018-11-28 13:48:26 | 40a3dcfb31eec0ecd67de7a8d1ffa8e0 | n/a | 83.166.247.211:443 |
| 2018-11-27 16:12:18 | 1e4f0502e15f23deb677cd6de11d0ffa | n/a | 83.166.247.211:443 |
| 2018-11-27 16:10:37 | 19cb12ab7944e0e0be5f26f8d57bec96 | n/a | 83.166.247.211:443 |
| 2018-11-27 16:09:57 | 6fda62c46c49b83bd11aeabbd3a32904 | n/a | 83.166.247.211:443 |
| 2018-11-27 16:09:52 | 101734d340958f361f4d412db9a3fd92 | n/a | 83.166.247.211:443 |
| 2018-11-27 16:08:18 | 619dfab9a1acdc33ef0c2a2fcd1f3603 | n/a | 83.166.247.211:443 |
| 2018-11-27 16:08:07 | 0fa497c1a3603a4b629c26afb1e89869 | n/a | 83.166.247.211:443 |
| 2018-11-27 16:07:43 | 20fc2b55c855deaedd8308da65cc4f25 | n/a | 83.166.247.211:443 |
| 2018-11-27 16:07:05 | 703f20744b6db51ab6a7023bd636c2fc | n/a | 83.166.247.211:443 |
| 2018-11-27 16:06:22 | 835d2cca7737f4a44876b9d3f2eccfe6 | n/a | 83.166.247.211:443 |
| 2018-11-27 16:05:38 | 5c55e4f2ad96338563fff25e20812677 | n/a | 83.166.247.211:443 |
| 2018-11-27 16:04:13 | fc90b83e1fa10fa23d544478a2042ac2 | n/a | 83.166.247.211:443 |
| 2018-11-27 16:03:22 | e6948b959b931b1103f53f309ba20d2d | n/a | 83.166.247.211:443 |
| 2018-11-27 16:01:45 | cae2134fad4a82ad756c5cf720ec41f6 | n/a | 83.166.247.211:443 |
| 2018-11-23 16:29:56 | f8ef7af902e5b6142b7fd1cffe81082f | n/a | 95.181.198.233:443 |
| 2018-11-23 15:12:30 | bd6639acc3106a4d3a240f64987bd26e | n/a | 83.166.240.191:443 |
| 2018-11-23 12:17:29 | d86ba104f58376a24dc9d16b9dd3dbf3 | 24/69 (34.78%)
| 176.10.118.144:443 |
| 2018-11-23 11:34:35 | 7449c98798aa9c834b1d22a2ce17e261 | 37/71 (52.11%)
| 95.181.198.136:443 |
| 2018-11-23 11:22:59 | 777fc60a4730da5123cdd60aa05e9791 | 22/60 (36.67%)
| 95.181.198.136:443 |
| 2018-11-22 10:48:07 | ae7434c7270df7a37ba8715114f0be1f | 13/58 (22.41%)
| 95.181.198.233:443 |
| 2018-11-22 10:15:54 | 1b45212c9bda0af51b6d6a1464f985e5 | n/a | 95.181.198.233:443 |
| 2018-11-22 09:45:42 | 2baf9375f27c037390d60eef89aefd08 | n/a | 51.38.146.101:443 |
| 2018-11-22 09:45:41 | 2baf9375f27c037390d60eef89aefd08 | n/a | 95.181.198.233:443 |
| 2018-11-22 09:34:56 | 498da922a9c23c42f536e47e7665dc91 | n/a | 95.181.198.233:443 |
| 2018-11-22 09:20:15 | 93b47a0766e48dff25d892d8d279ab6b | n/a | 95.181.198.233:443 |
| 2018-11-22 09:12:00 | 32a7f6cafd2ab9e8a99eb1a70738ab0b | n/a | 95.181.198.233:443 |
| 2018-11-22 09:09:00 | 36b976d3d1143414287fd1ddda05ecf9 | n/a | 95.181.198.233:443 |
| 2018-11-22 09:06:01 | 1f4a8fe49ac862ec0c913e4820c5b04c | n/a | 95.181.198.233:443 |
| 2018-11-22 09:04:25 | 1e510a1879dc41270f5d391fa6f82846 | n/a | 95.181.198.233:443 |
| 2018-11-22 09:04:06 | edc301b74228e65e293e4a18f744d15a | n/a | 95.181.198.233:443 |
| 2018-11-22 08:53:19 | a5afd3987613ed3a99e9d81e98a3e85d | n/a | 95.181.198.233:443 |
| 2018-11-22 07:43:18 | db35c776a335d05f4ca4e5c5e6f6fb39 | n/a | 95.181.198.233:443 |
| 2018-11-21 15:53:39 | 7e603ac7945eb3bb8c9d3cb0563253b5 | 16/67 (23.88%)
| 51.38.146.101:443 |
| 2018-11-20 14:52:25 | e4b4d007d9d8940debd84ec2a68d02fc | n/a | 51.38.146.101:443 |
| 2018-11-19 22:28:36 | 4f68647c95f2b80bd8b094f4733125d9 | n/a | 95.181.198.29:443 |
| 2018-11-19 22:19:44 | 112fbade6d3ee638b1d5be0dba24e66f | n/a | 95.181.198.29:443 |
| 2018-11-19 22:17:44 | a0e5294bf0ef0280c1c5eeebf9d569ad | n/a | 95.181.198.29:443 |
| 2018-11-19 22:17:35 | b53104eb7e657c5dd3700187deb6d8f2 | n/a | 95.181.198.29:443 |
| 2018-11-19 22:16:10 | 7af5023a87e3b605dd0195de8026b8dd | n/a | 95.181.198.29:443 |
| 2018-11-19 22:15:29 | 7aa86a3d31df76f82d0a6236f6d4cd61 | n/a | 95.181.198.29:443 |
| 2018-11-19 22:15:03 | 39c11a14fbff10ab9efe71616b3d3b37 | n/a | 95.181.198.29:443 |
| 2018-11-19 22:12:55 | e47e766c523c0a5aa4f7f121a59bd2b8 | n/a | 95.181.198.29:443 |
| 2018-11-19 22:12:46 | 13758d788a9afe626a35bf8b7fb72241 | n/a | 95.181.198.29:443 |
| 2018-11-19 22:10:29 | b0f267b3bae4b9c8e5cb4f54a369c305 | n/a | 95.181.198.29:443 |
| 2018-11-19 22:10:23 | 2913e1175d5ff171f834f3192d5cee76 | n/a | 95.181.198.29:443 |
# of entries: 100 (max: 100)