JA3 Fingerprints
You can find further information about the JA3 fingerprint 57f3642b4e37e28f5cbe3020c9331b4c, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 57f3642b4e37e28f5cbe3020c9331b4c |
|---|---|
| First seen: | 2018-08-28 15:54:53 UTC |
| Last seen: | 2021-08-11 13:05:18 UTC |
| Status: | Blacklisted |
| Malware samples: | 27'305 |
| Destination IPs: | 1'285 |
| Malware: | Gozi  |
| Listing date: | 2018-11-14 00:00:00 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2023-02-01 03:10:38 | ab343616a97b5147bf35f7a5a9476c89 |  51 / 69 (73.91%)
| 152.199.19.161:443 |
| 2023-02-01 02:29:26 | af2d9440e1dc85d1d6b9261d4643250c | n/a | 152.199.19.161:443 |
| 2023-02-01 00:01:49 | a0ad46aff71d8d1d556c7c9e71332db3 | 53 / 70 (75.71%)
| 152.199.19.161:443 |
| 2023-02-01 00:01:32 | c079faf628ccadf1445d61453f594ce6 | 58 / 70 (82.86%)
| 152.199.19.161:443 |
| 2023-02-01 00:00:01 | aab4c99690a5250bbb4e225f2015810b | 54 / 70 (77.14%)
| 152.199.19.161:443 |
| 2023-01-31 22:41:41 | f2ddd584569825955fa36d1c5e327a9f | n/a | 152.199.19.161:443 |
| 2023-01-31 22:41:41 | f2ddd584569825955fa36d1c5e327a9f | n/a | 152.199.19.161:443 |
| 2023-01-31 22:19:20 | a461288955f3cb27e225dc737d114f3a | 51 / 70 (72.86%)
| 152.199.19.161:443 |
| 2023-01-31 21:08:38 | aec69ca976463a875419e338811e1230 | n/a | 152.199.19.161:443 |
| 2023-01-31 20:49:09 | acf5006880cd2ee0b50da735f6713716 | 51 / 70 (72.86%)
| 152.199.19.161:443 |
| 2023-01-31 20:09:19 | ab85493be6a4f7c6d732eeb2761fa0b0 | 56 / 70 (80.00%)
| 152.199.19.161:443 |
| 2023-01-31 19:50:24 | b745f0c2aacd4ca27721524f39fe4156 | n/a | 152.199.19.161:443 |
| 2023-01-31 19:22:26 | b31697bcc363d77d3cd6d69ef0deb4ad | 54 / 69 (78.26%)
| 152.199.19.161:443 |
| 2023-01-31 19:16:11 | a8e580ef646f82347230c256e072fa13 | 53 / 69 (76.81%)
| 152.199.19.161:443 |
| 2023-01-31 18:25:05 | 94009a927e1328fefb4258319432555e | n/a | 72.21.81.200:443 |
| 2023-01-31 18:22:23 | 94e9673f19973261c10732a6c6f250dd | n/a | 152.199.19.161:443 |
| 2023-01-31 17:59:50 | 76b20a7196c3191e236df18a66f69e35 | n/a | 151.101.2.114:443 |
| 2023-01-31 17:27:11 | 1d83a8cbd570691d429c8a222987e857 | 62 / 70 (88.57%)
| 72.21.81.200:443 |
| 2023-01-31 17:16:24 | 30f80c35aef1add05731e3764fbc6ba5 | 60 / 69 (86.96%)
| 152.199.19.161:443 |
| 2023-01-31 17:09:32 | 5b49f27b4e190b5cf5b3e597661d6014 | 31 / 70 (44.29%)
| 151.101.0.81:443 |
| 2023-01-31 17:09:32 | 5b49f27b4e190b5cf5b3e597661d6014 | 31 / 70 (44.29%)
| 151.101.64.81:443 |
| 2023-01-31 13:49:11 | c40170e395f8dbce1b488ae3b05a6f5b | n/a | 72.21.81.200:443 |
| 2023-01-31 13:06:52 | c11d3b9b174f42aac370bfb5a91c660c | n/a | 152.199.19.161:443 |
| 2023-01-31 12:42:45 | c035d5806996f8e293336144e8318052 | n/a | 152.199.19.161:443 |
| 2023-01-31 11:14:20 | a68c0934fac531ff1743dc7f885e0b5e | 58 / 70 (82.86%)
| 152.199.19.161:443 |
| 2023-01-31 10:54:34 | a87d1b36e6042097baf00039ce4683d1 | n/a | 152.199.19.161:443 |
| 2023-01-31 10:12:53 | ac9b773b36ab2b31c1af8323f0bc846c | 57 / 70 (81.43%)
| 152.199.19.161:443 |
| 2023-01-31 10:04:44 | b5669f17530ace4dc187bb00746a4e2a | 51 / 70 (72.86%)
| 152.199.19.161:443 |
| 2023-01-31 09:57:00 | b160b88dfa78d3af9091d3e65814c8bc | 55 / 70 (78.57%)
| 152.199.19.161:443 |
| 2023-01-31 09:41:57 | b3cd0dc9a6d47d6dc8c5d6786d61e9e9 | n/a | 152.199.19.161:443 |
| 2023-01-31 09:33:10 | b13960747fc208ac220629aa9ded0ad3 | 62 / 70 (88.57%)
| 152.199.19.161:443 |
| 2023-01-31 09:07:12 | ac14be64a1efcfd61bc695b988798b44 | 52 / 68 (76.47%)
| 152.199.19.161:443 |
| 2023-01-31 08:25:36 | b0beadd35263a362ccbccaace88d3e3d | n/a | 72.21.81.200:443 |
| 2023-01-31 07:58:01 | a18fa7f5a229b4789b18162f6e9543e4 | 53 / 70 (75.71%)
| 152.199.19.161:443 |
| 2023-01-31 03:26:18 | d04a5d4c05f5a5bf7a15af24ad405069 | n/a | 152.199.19.161:443 |
| 2023-01-31 03:23:24 | cedd62268cb5f6ad0f03fa947c7d9fc5 | n/a | 104.22.25.131:443 |
| 2023-01-31 03:21:20 | cc20b8cf53b4065e3960f69bdf489242 | n/a | 152.199.19.161:443 |
| 2023-01-31 03:06:00 | c5f8f14d4464d9153d44c72047ee11be | n/a | 152.199.19.161:443 |
| 2023-01-31 02:48:37 | c2ff500b275274000acfca6630404890 | n/a | 72.21.81.200:443 |
| 2023-01-31 02:29:01 | c1a84a601f6b9b74e8e6807edb0da313 | 54 / 70 (77.14%)
| 152.199.19.161:443 |
| 2023-01-31 02:24:25 | c078ce7a01978927b39b529b5e93e219 | n/a | 152.199.19.161:443 |
| 2023-01-31 01:39:38 | a1db0aa1c3f632cafc14b5fa80bb0f6a | n/a | 152.199.19.161:443 |
| 2023-01-31 01:38:52 | b9d9f3e0167a0543cb2cc1cea9bd8360 | n/a | 152.199.19.161:443 |
| 2023-01-31 01:33:39 | ab91667095edbfbef457b44a28e8504d | 54 / 70 (77.14%)
| 152.199.19.161:443 |
| 2023-01-31 01:28:29 | b802a4d14e26f6bd081c6330b1e4ed05 | 44 / 68 (64.71%)
| 152.199.19.161:443 |
| 2023-01-31 01:04:31 | b6d46cd1c8a6fbb068052669b8ff8e0e | 50 / 70 (71.43%)
| 152.199.19.161:443 |
| 2023-01-31 01:03:07 | ae1c297e0b9eae1620ba85e6052c7433 | 54 / 70 (77.14%)
| 152.199.19.161:443 |
| 2023-01-30 23:51:09 | adf94c1adbeca8f5b45aab5b19f336a4 | n/a | 152.199.19.161:443 |
| 2023-01-30 23:44:36 | ad96b2d9ae7b84845ee39fcd510b2298 | n/a | 152.199.19.161:443 |
| 2023-01-30 23:22:34 | a82b8e5b1abb410ea9d934c8ba0ec769 | 56 / 70 (80.00%)
| 152.199.19.161:443 |
| 2023-01-30 23:20:22 | a789dce6c3a6bc84615d616e99a4c5c9 | n/a | 152.199.19.161:443 |
| 2023-01-30 23:14:00 | a5e4e8c5b12257f39c2e8539623e846b | n/a | 152.199.19.161:443 |
| 2023-01-30 22:56:52 | 9e046b866c946ba4c766ca0bc828cc5a | n/a | 152.199.19.161:443 |
| 2023-01-30 22:41:54 | 90decbf1c4cd7b40b83a9099face9926 | n/a | 152.199.19.161:443 |
| 2023-01-30 22:41:54 | 90decbf1c4cd7b40b83a9099face9926 | n/a | 152.199.19.161:443 |
| 2023-01-30 21:04:45 | 19f266c68c76a9b945bbd00b1fb2a8b2 | 61 / 70 (87.14%)
| 152.199.19.161:443 |
| 2023-01-30 20:56:02 | 0f05764d9a5d5d9c30a9262a5cebde1b | 51 / 61 (83.61%)
| 72.21.81.200:443 |
| 2023-01-30 20:52:00 | 47f30a695f0b6b0e123fe893e7f80908 | n/a | 152.199.19.161:443 |
| 2023-01-30 19:54:39 | a5dad57cc559ab028f19466cb99272c0 | 56 / 69 (81.16%)
| 152.199.19.161:443 |
| 2023-01-30 19:13:32 | 2d244458e27de830d4dedd8d99cc98c9 | n/a | 152.199.19.161:443 |
| 2023-01-30 19:00:35 | a22504e16d88d1c76a03e9b1de401768 | 52 / 70 (74.29%)
| 152.199.19.161:443 |
| 2023-01-30 18:56:39 | ca4ab322705d156f0559ac6986d56155 | 47 / 69 (68.12%)
| 152.199.19.161:443 |
| 2023-01-30 18:08:30 | c90720ba16d8752a433b595db49c4a16 | n/a | 152.199.19.161:443 |
| 2023-01-30 17:49:16 | c99651d126044aec80b3e429fdabff3f | 52 / 70 (74.29%)
| 152.199.19.161:443 |
| 2023-01-30 17:48:52 | c77b00f85bb807501d224b4fd05229af | 51 / 70 (72.86%)
| 152.199.19.161:443 |
| 2023-01-30 17:47:37 | af4037f6b2ffc89488d844555da63d2e | 51 / 69 (73.91%)
| 152.199.19.161:443 |
| 2023-01-30 17:40:47 | c7d1c4d98ab43f88fbdb3874f0c12b2e | n/a | 152.199.19.161:443 |
| 2023-01-30 17:34:29 | a9b6e433e149f5787c5fd740a7cbe497 | 55 / 68 (80.88%)
| 152.199.19.161:443 |
| 2023-01-30 15:22:57 | aca80ed7cb9bd17185cc385f189b177c | 48 / 69 (69.57%)
| 152.199.19.161:443 |
| 2023-01-30 14:52:33 | b7fba24d1fd5e57b52cc36a88ba6f962 | n/a | 152.199.19.161:443 |
| 2023-01-30 14:26:47 | a4bb9dde462df39ddfb66715d623edef | 54 / 70 (77.14%)
| 152.199.19.161:443 |
| 2023-01-30 14:25:35 | c5b51c234a757d8f973234e3cf419d31 | 62 / 70 (88.57%)
| 152.199.19.161:443 |
| 2023-01-30 13:30:38 | c76ca95efd6a1d2a5eb6ce9ad41ed510 | n/a | 152.199.19.161:443 |
| 2023-01-30 13:11:26 | a4d9a6e9f2f52f5fe6f9009d093b52ad | 54 / 70 (77.14%)
| 152.199.19.161:443 |
| 2023-01-30 12:53:58 | bf02bb0af0ec8524607e17502936d8f3 | n/a | 152.199.19.161:443 |
| 2023-01-30 12:47:30 | a2b882f8c3f58bc49f29ec126184d9d6 | n/a | 152.199.19.161:443 |
| 2023-01-30 12:04:58 | c3993f884af013df94d54fd5253e4bb1 | 57 / 70 (81.43%)
| 152.199.19.161:443 |
| 2023-01-30 11:06:45 | ba8f7b8afbe226195a6364b5dce4425b | 53 / 70 (75.71%)
| 152.199.19.161:443 |
| 2023-01-30 11:03:31 | c4b006b7be91ba7e3449716966ae2608 | 54 / 70 (77.14%)
| 152.199.19.161:443 |
| 2023-01-30 11:00:36 | 079fd2b24dd0f2a7a992c1bc0978d395 | 49 / 68 (72.06%)
| 152.199.19.161:443 |
| 2023-01-30 10:52:21 | a85fb0c486cf1bc981e8fd18a2c5b96d | 53 / 70 (75.71%)
| 72.21.81.200:443 |
| 2023-01-30 10:45:41 | c3f402dc04a733ee4cf752b8a70a5dcf | n/a | 72.21.81.200:443 |
| 2023-01-30 09:50:03 | b6f8b17c9e2c4982848d59c414e139b8 | 52 / 69 (75.36%)
| 152.199.19.161:443 |
| 2023-01-30 09:17:25 | bb3e5af6ab1d28664e6e079eff53b3ea | n/a | 152.199.19.161:443 |
| 2023-01-30 08:42:27 | b9df29cde01bf4736f69f69f447dcbbf | n/a | 152.199.19.161:443 |
| 2023-01-30 02:20:50 | fb99e704dd0d0e357e73e9d17ed257ab | n/a | 152.199.19.161:443 |
| 2023-01-30 02:00:08 | eb6ffdf7888176ee8c06a47ad3ed3a9c | n/a | 152.199.19.161:443 |
| 2023-01-30 00:58:07 | c9b14c3c30efdedd174a24fb576f42e4 | n/a | 152.199.19.161:443 |
| 2023-01-29 23:50:41 | b02cd7b1e62845ead7adf9689f97c963 | n/a | 152.199.19.161:443 |
| 2023-01-29 23:21:05 | a04aeb0662b5c3e80a4ad925d80996cc | n/a | 152.199.19.161:443 |
| 2023-01-29 23:08:36 | 8aa2fd552adb7699748e89955c06f16c | n/a | 152.199.19.161:443 |
| 2023-01-29 23:03:33 | 8ec852ea279f1b207f4f1052a2b5ca06 | n/a | 152.199.19.161:443 |
| 2023-01-29 22:03:22 | 573ea737884dde8166118fc928d1c406 | n/a | 152.199.19.161:443 |
| 2023-01-29 21:52:11 | 278c162dd15e2b0fda54003e08b0f990 | n/a | 152.199.19.161:443 |
| 2023-01-29 21:51:44 | 030eec33e8d9153c47a29632332e4247 | n/a | 152.199.19.161:443 |
| 2023-01-29 21:17:59 | 4ca2c6f98e9dcd7a4033f8c538a709d3 | 8 / 70 (11.43%)
| 152.199.19.161:443 |
| 2023-01-29 21:06:34 | b7cc7be1036642f1de265dc6376ef3e3 | n/a | 152.199.19.161:443 |
| 2023-01-29 21:01:44 | 1bfe9e7071e3fefe3e488ce83daa67ff | 63 / 70 (90.00%)
| 72.21.81.200:443 |
| 2023-01-29 20:50:53 | 373efa303c2dfd47696dba00df29c9c2 | 28 / 71 (39.44%)
| 152.199.19.161:443 |
| 2023-01-29 20:33:21 | 6e39e5dceecc0a2f4bec03909ab9f93d | 63 / 70 (90.00%)
| 152.199.19.161:443 |
# of entries: 100 (max: 100)