JA3 Fingerprints
You can find further information about the JA3 fingerprint 57f3642b4e37e28f5cbe3020c9331b4c, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 57f3642b4e37e28f5cbe3020c9331b4c |
|---|---|
| First seen: | 2018-08-28 15:54:53 UTC |
| Last seen: | 2020-01-26 08:41:14 UTC |
| Status: | Blacklisted |
| Malware samples: | 3'600 |
| Destination IPs: | 279 |
| Malware: | Gozi  |
| Listing date: | 2018-11-14 00:00:00 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2020-01-26 08:41:14 | b40bc9f70fbfd55201bedde326b6bb59 |  53 / 73 (72.60%)
| 152.199.19.161:443 |
| 2020-01-26 08:41:12 | b40bc9f70fbfd55201bedde326b6bb59 | 53 / 73 (72.60%)
| 67.202.110.21:443 |
| 2020-01-26 07:44:24 | b864caa13f74cfcdcaac044d018de455 | 54 / 73 (73.97%)
| 67.202.110.24:443 |
| 2020-01-26 07:44:24 | b864caa13f74cfcdcaac044d018de455 | 54 / 73 (73.97%)
| 152.199.19.161:443 |
| 2020-01-26 07:32:03 | a59b96662e382521c72a313eb3601e1e | 53 / 73 (72.60%)
| 67.202.110.21:443 |
| 2020-01-26 07:32:01 | a59b96662e382521c72a313eb3601e1e | 53 / 73 (72.60%)
| 152.199.19.161:443 |
| 2020-01-26 06:59:59 | ae24b986074c68fc2aa1a8875bb3d2fb | 62 / 73 (84.93%)
| 152.199.19.161:443 |
| 2020-01-26 06:59:57 | ae24b986074c68fc2aa1a8875bb3d2fb | 62 / 73 (84.93%)
| 67.202.110.21:443 |
| 2020-01-26 01:25:18 | b2051df9511ba700bdd485d834abe40b | 49 / 72 (68.06%)
| 208.100.17.178:443 |
| 2020-01-26 01:25:16 | b2051df9511ba700bdd485d834abe40b | 49 / 72 (68.06%)
| 152.199.19.161:443 |
| 2020-01-25 23:36:11 | b9fe29c09f913f889a56b777875e61b7 | 51 / 72 (70.83%)
| 152.199.19.161:443 |
| 2020-01-25 20:59:41 | aaecdf13dc3903d1bcae3b69a1bfea00 | n/a | 72.21.81.200:443 |
| 2020-01-25 20:23:57 | a25787a8c1d90dba6da442a72c31e30b | 48 / 71 (67.61%)
| 67.202.110.21:443 |
| 2020-01-25 20:23:56 | a25787a8c1d90dba6da442a72c31e30b | 48 / 71 (67.61%)
| 152.199.19.161:443 |
| 2020-01-25 17:34:10 | 4db6ddcf7197e671703fa9b8cb7d0e87 | n/a | 67.202.110.21:443 |
| 2020-01-25 17:34:09 | 4db6ddcf7197e671703fa9b8cb7d0e87 | n/a | 152.199.19.161:443 |
| 2020-01-25 17:32:10 | 192d75e2bd7f441d1c29b382bb26c25c | n/a | 18.208.86.167:443 |
| 2020-01-25 17:32:10 | 192d75e2bd7f441d1c29b382bb26c25c | n/a | 152.199.19.161:443 |
| 2020-01-25 15:09:33 | b8d61d0223a73764538704bdb772b5a4 | n/a | 152.199.19.161:443 |
| 2020-01-25 15:09:33 | b8d61d0223a73764538704bdb772b5a4 | n/a | 67.202.110.22:443 |
| 2020-01-25 13:59:50 | bdb979655f323000342bbc2fcd1c0ae7 | 65 / 72 (90.28%)
| 67.202.110.22:443 |
| 2020-01-25 13:59:49 | bdb979655f323000342bbc2fcd1c0ae7 | 65 / 72 (90.28%)
| 152.199.19.161:443 |
| 2020-01-25 12:43:59 | ba4ba7f258c180463afdb733a6839868 | 62 / 73 (84.93%)
| 208.100.17.174:443 |
| 2020-01-25 12:43:58 | ba4ba7f258c180463afdb733a6839868 | 62 / 73 (84.93%)
| 152.199.19.161:443 |
| 2020-01-25 09:30:12 | b6bb25da302939cc37256a2768bb73dd | n/a | 152.199.19.161:443 |
| 2020-01-25 09:30:11 | b6bb25da302939cc37256a2768bb73dd | n/a | 208.100.17.177:443 |
| 2020-01-25 08:28:34 | b4a24c002f74c439cac6c6b6d2b12483 | n/a | 152.199.19.161:443 |
| 2020-01-25 08:28:34 | b4a24c002f74c439cac6c6b6d2b12483 | n/a | 67.202.110.24:443 |
| 2020-01-25 08:21:01 | b25ab7cfda18760c4bb71348f58e936a | n/a | 152.199.19.161:443 |
| 2020-01-25 08:21:01 | b25ab7cfda18760c4bb71348f58e936a | n/a | 67.202.110.24:443 |
| 2020-01-25 05:12:02 | a99874f9a9cee15c6700354483b95750 | 39 / 73 (53.42%)
| 208.93.230.204:8081 |
| 2020-01-25 04:52:13 | b015bdff1887f81beb58300decb1a0c6 | n/a | 152.199.19.161:443 |
| 2020-01-25 04:08:47 | af968525941dd0cabf5eb6e2da42e7e0 | n/a | 67.202.110.21:443 |
| 2020-01-25 04:08:44 | af968525941dd0cabf5eb6e2da42e7e0 | n/a | 152.199.19.161:443 |
| 2020-01-25 02:47:59 | bfb7e5e0518800f544e7cd9a53bcccd5 | n/a | 152.199.19.161:443 |
| 2020-01-24 20:40:02 | aa3e8484145512d153fdfa9df97ccd9a | n/a | 208.100.17.177:443 |
| 2020-01-24 20:40:02 | aa3e8484145512d153fdfa9df97ccd9a | n/a | 152.199.19.161:443 |
| 2020-01-24 19:49:38 | a824df82974213b0664b88438b0e41df | n/a | 72.21.81.200:443 |
| 2020-01-24 07:27:03 | b2a1511f1304115f45f3fa55f946f3e3 | n/a | 152.199.19.161:443 |
| 2020-01-24 07:27:02 | b2a1511f1304115f45f3fa55f946f3e3 | n/a | 67.202.110.22:443 |
| 2020-01-24 06:41:26 | c33c997b09ee144b8d98e52912724f56 | 61 / 72 (84.72%)
| 152.199.19.161:443 |
| 2020-01-24 06:41:26 | c33c997b09ee144b8d98e52912724f56 | 61 / 72 (84.72%)
| 208.100.17.177:443 |
| 2020-01-24 05:56:01 | b45bb08906a63bb79579cb12327f268e | 56 / 73 (76.71%)
| 208.100.17.176:443 |
| 2020-01-24 05:56:00 | b45bb08906a63bb79579cb12327f268e | 56 / 73 (76.71%)
| 152.199.19.161:443 |
| 2020-01-24 03:23:24 | bec55b8c06f3883714e31426207afecc | 61 / 73 (83.56%)
| 152.199.19.161:443 |
| 2020-01-24 03:23:23 | bec55b8c06f3883714e31426207afecc | 61 / 73 (83.56%)
| 67.202.110.21:443 |
| 2020-01-24 03:07:42 | af739ee616cc9a51816ccd2342da2824 | 59 / 70 (84.29%)
| 67.202.110.24:443 |
| 2020-01-24 03:07:40 | af739ee616cc9a51816ccd2342da2824 | 59 / 70 (84.29%)
| 152.199.19.161:443 |
| 2020-01-24 02:06:51 | a8e1daabe84add5b69c411d7f2bc3ed0 | n/a | 152.199.19.161:443 |
| 2020-01-24 02:06:51 | a8e1daabe84add5b69c411d7f2bc3ed0 | n/a | 67.202.110.21:443 |
| 2020-01-24 01:18:45 | c6576d563bcc5e17a328ae800f394173 | n/a | 152.199.19.161:443 |
| 2020-01-24 01:18:45 | c6576d563bcc5e17a328ae800f394173 | n/a | 67.202.110.21:443 |
| 2020-01-24 01:00:48 | a0ee27e582a19158e4fa1b31c4e11968 | 52 / 72 (72.22%)
| 208.100.17.175:443 |
| 2020-01-24 01:00:46 | a0ee27e582a19158e4fa1b31c4e11968 | 52 / 72 (72.22%)
| 152.199.19.161:443 |
| 2020-01-24 00:35:39 | b33f36f11532d3ba811b0fb41bb6fc80 | 54 / 72 (75.00%)
| 67.202.110.22:443 |
| 2020-01-24 00:35:37 | b33f36f11532d3ba811b0fb41bb6fc80 | 54 / 72 (75.00%)
| 152.199.19.161:443 |
| 2020-01-23 19:34:36 | abb738eebbc644e52f915998683ca59c | 51 / 71 (71.83%)
| 34.192.225.148:443 |
| 2020-01-23 19:34:36 | abb738eebbc644e52f915998683ca59c | 51 / 71 (71.83%)
| 152.199.19.161:443 |
| 2020-01-23 19:14:37 | acb44ade4df8f232cf0f4dca5d2b0690 | 60 / 71 (84.51%)
| 152.199.19.161:443 |
| 2020-01-23 17:57:24 | a878f6d15c0baff242b78bcb06fb3730 | 66 / 73 (90.41%)
| 152.199.19.161:443 |
| 2020-01-23 17:45:24 | b8fa620411a05dd1062a63a16c73cd2c | 63 / 72 (87.50%)
| 152.199.19.161:443 |
| 2020-01-23 16:42:30 | a4abd4fc1e9b1f6abb8b67852bdac3f3 | 52 / 72 (72.22%)
| 152.199.19.161:443 |
| 2020-01-23 14:26:50 | a8196b88dfd119963e9acf6cd5eb25d6 | 54 / 72 (75.00%)
| 152.199.19.161:443 |
| 2020-01-23 10:53:37 | af0b3ae824354db4118e5a2618e6cf3b | 64 / 72 (88.89%)
| 152.199.19.161:443 |
| 2020-01-23 10:30:58 | b1e6d72854968dfbad676d5104593b61 | 54 / 72 (75.00%)
| 72.21.81.200:443 |
| 2020-01-23 09:30:49 | a2e9879fcb421ed6dfc1db07c03c0a4c | 55 / 73 (75.34%)
| 152.199.19.161:443 |
| 2020-01-23 08:14:08 | ad439074f0fc7a58517432fd0e19f1aa | 53 / 72 (73.61%)
| 152.199.19.161:443 |
| 2020-01-23 07:38:00 | bc65cbaeedbc62dbe1cc8f3ab6bef7aa | 61 / 72 (84.72%)
| 152.199.19.161:443 |
| 2020-01-23 05:22:57 | b4af0d435ae56849a4ccb9b72015283d | 51 / 72 (70.83%)
| 152.199.19.161:443 |
| 2020-01-23 03:13:32 | c8609074872b0a1c6bf344ccd50d986f | 53 / 72 (73.61%)
| 152.199.19.161:443 |
| 2020-01-23 02:48:28 | c6731f366734b062b6716439bb6434dc | 53 / 72 (73.61%)
| 152.199.19.161:443 |
| 2020-01-23 01:42:59 | a48da20e843157899471d833778c1166 | 60 / 72 (83.33%)
| 152.199.19.161:443 |
| 2020-01-23 01:10:43 | a0b87481430a7a0953ba3e5541286e7b | 50 / 71 (70.42%)
| 152.199.19.161:443 |
| 2020-01-23 00:55:17 | ae99f748b64a17b02d331d524129f934 | 61 / 72 (84.72%)
| 152.199.19.161:443 |
| 2020-01-22 23:08:43 | c433245d0f0b7e2d2ed78c44055def14 | n/a | 152.199.19.161:443 |
| 2020-01-22 22:54:13 | c189968e92e6a66a9ed3b7767cb3fce2 | 54 / 72 (75.00%)
| 152.199.19.161:443 |
| 2020-01-22 22:33:46 | c35331f7a1a7e4c8c8e51f6dbd833afe | n/a | 152.199.19.161:443 |
| 2020-01-22 19:30:10 | c7109bfd7c4cda76d8c23077218534d9 | 62 / 73 (84.93%)
| 152.199.19.161:443 |
| 2020-01-22 15:15:57 | b1f02f407409e0fbaf2cdc67085cb7e9 | n/a | 152.199.19.161:443 |
| 2020-01-22 15:15:13 | a0fb49526dd4384eadccf9b91ee2469a | n/a | 152.199.19.161:443 |
| 2020-01-22 13:53:10 | a792f170b6d3bb3fa171b583eb1b4d44 | n/a | 152.199.19.161:443 |
| 2020-01-22 12:53:35 | 71f888cfc7fa160b40e216780d0205aa | n/a | 152.199.19.161:443 |
| 2020-01-22 08:13:26 | acdd8d20865b62fc3039f01972b598bb | 59 / 71 (83.10%)
| 152.199.19.161:443 |
| 2020-01-22 08:03:51 | a29cc7b0bc5c967550f22150acef8b12 | n/a | 152.199.19.161:443 |
| 2020-01-22 05:04:25 | a613e5c98ed0d6cd16bcfa7830ed768e | n/a | 152.199.19.161:443 |
| 2020-01-22 03:22:40 | b03618f33b1bc5228578137b71dc8a12 | n/a | 152.199.19.161:443 |
| 2020-01-22 01:45:45 | a5e7834b9f03705f463990c75ba28344 | n/a | 152.199.19.161:443 |
| 2020-01-21 21:51:05 | bca12b622f40f34a4aa82a9fdf72a9a4 | 58 / 69 (84.06%)
| 72.21.81.200:443 |
| 2020-01-21 20:34:45 | b665fe6393dd32d3d14c7617119c20ef | 62 / 73 (84.93%)
| 152.199.19.161:443 |
| 2020-01-21 19:24:23 | b8de8908ea0907e1245cc0d624987d82 | n/a | 152.199.19.161:443 |
| 2020-01-21 18:45:57 | aa0ccf071e8fb01282535c4642a6ecd2 | n/a | 152.199.19.161:443 |
| 2020-01-21 17:32:51 | af90f052b68f22660ef17461be436679 | n/a | 152.199.19.161:443 |
| 2020-01-21 16:39:26 | b5630d88d10c96b8dbd95906d124b8e3 | 62 / 71 (87.32%)
| 152.199.19.161:443 |
| 2020-01-21 11:23:27 | afe04db3c54d6bf24d812ee68f235a7c | n/a | 207.38.89.115:443 |
| 2020-01-21 07:20:47 | 6ff666583d42bfdc1abb58c79280b03b | 55 / 71 (77.46%)
| 152.199.19.161:443 |
| 2020-01-21 06:10:59 | 184cd5d130f2040e645817d6d17198c8 | 59 / 71 (83.10%)
| 152.199.19.161:443 |
| 2020-01-21 06:02:22 | 89043574bc6891dbc474052fa8100ab7 | 60 / 71 (84.51%)
| 152.199.19.161:443 |
| 2020-01-21 05:31:28 | 15146fe04d7de3464e01833fda326d51 | 63 / 72 (87.50%)
| 152.199.19.161:443 |
| 2020-01-21 04:09:35 | 2417470aedb5185f7973ef0374741e03 | 58 / 73 (79.45%)
| 152.199.19.161:443 |
| 2020-01-21 03:29:28 | 178ce700a7507a5ace27db3169875b61 | 59 / 72 (81.94%)
| 152.199.19.161:443 |
# of entries: 100 (max: 100)