JA3 Fingerprints
You can find further information about the JA3 fingerprint 57f3642b4e37e28f5cbe3020c9331b4c, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 57f3642b4e37e28f5cbe3020c9331b4c |
|---|---|
| First seen: | 2018-08-28 15:54:53 UTC |
| Last seen: | 2019-11-17 08:12:47 UTC |
| Status: | Blacklisted |
| Malware samples: | 3'037 |
| Destination IPs: | 237 |
| Malware: | Gozi  |
| Listing date: | 2018-11-14 00:00:00 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2019-11-17 08:12:47 | e1314899e6d96a9c708134c0aa54f1fb |  41 / 69 (59.42%)
| 152.199.19.161:443 |
| 2019-11-17 07:26:34 | 7349cb9ab074015d94d9a9f451d4936b | 30 / 69 (43.48%)
| 152.199.19.161:443 |
| 2019-11-17 07:02:31 | e131d7c062fa9725bb95373eafc7c85e | 46 / 68 (67.65%)
| 152.199.19.161:443 |
| 2019-11-17 04:46:17 | 7c7a7bd3b2a6902b9cd5aa6df8bb0252 | 47 / 68 (69.12%)
| 152.199.19.161:443 |
| 2019-11-17 01:57:40 | a24f068da58a72764bb86170329860ed | n/a | 152.199.19.161:443 |
| 2019-11-17 00:56:19 | e7ca401b36dddbf999c66e86a9040eb5 | 28 / 72 (38.89%)
| 162.159.129.233:443 |
| 2019-11-16 21:05:16 | a0fb79cbd89a25d54b21e946f2ecbe1e | 64 / 71 (90.14%)
| 152.199.19.161:443 |
| 2019-11-16 11:53:34 | a151ed26ca041ffe857f1869d7dddfca | 58 / 70 (82.86%)
| 152.199.19.161:443 |
| 2019-11-16 10:28:25 | 2b9fa402f104ac8f2ab2ff913e654955 | 28 / 43 (65.12%)
| 152.199.19.161:443 |
| 2019-11-16 05:42:53 | 29ff8d3d5cdf67b6085100d62a52a81e | n/a | 152.199.19.161:443 |
| 2019-11-16 04:49:39 | 7af7870e7029221dda6357bd30d4c177 | n/a | 152.199.19.161:443 |
| 2019-11-15 19:09:02 | a41bdc09ade57e63ed63d2113563a345 | n/a | 152.199.19.161:443 |
| 2019-11-15 17:11:47 | a2507ee044b1b5b04f452750aa3741f1 | n/a | 152.199.19.161:443 |
| 2019-11-14 18:36:43 | 73b010e3b540f85defe1ff871a5f3762 | n/a | 152.199.19.161:443 |
| 2019-11-14 14:21:03 | f881ad439f60ca68b9e3c4dd325c1e29 | 44 / 67 (65.67%)
| 152.199.19.161:443 |
| 2019-11-14 12:50:37 | 40797484090b1526e97b3766989c9e6d | 43 / 67 (64.18%)
| 72.21.81.200:443 |
| 2019-11-14 12:16:58 | ec519edfabbaf44e2c738612020b3fef | 45 / 66 (68.18%)
| 152.199.19.161:443 |
| 2019-11-14 06:53:09 | b58c329ec18067c596ab8819dba99cd2 | 48 / 68 (70.59%)
| 152.199.19.161:443 |
| 2019-11-14 01:25:15 | a9034496df6d58e31aa2a5371691bc41 | 52 / 66 (78.79%)
| 152.199.19.161:443 |
| 2019-11-13 23:11:40 | d63729958e031a50c79ba27f434bebf4 | 50 / 68 (73.53%)
| 72.21.81.200:443 |
| 2019-11-13 22:00:11 | 32de7adbb6ae3d2659bf2a292b2a82e9 | 40 / 66 (60.61%)
| 152.199.19.161:443 |
| 2019-11-13 21:53:57 | 91ab8e3fbfd60d373499ffac90aa309c | 46 / 68 (67.65%)
| 152.199.19.161:443 |
| 2019-11-13 20:36:21 | 0535ccc099a7165a2b0ca15eb3e49ad6 | 40 / 69 (57.97%)
| 152.199.19.161:443 |
| 2019-11-13 20:25:35 | 7c63afd4f0902a213cbd78d5528e9a30 | 48 / 67 (71.64%)
| 152.199.19.161:443 |
| 2019-11-13 20:22:21 | 7135494f920c7b02719313c66265e090 | 53 / 66 (80.30%)
| 152.199.19.161:443 |
| 2019-11-13 16:14:44 | 9c73ff0271f478ad9a08969a6e8ff383 | 37 / 71 (52.11%)
| 152.199.19.161:443 |
| 2019-11-13 15:49:32 | 6e10b27e9cd24d10adfe152c09e5a091 | 44 / 70 (62.86%)
| 152.199.19.161:443 |
| 2019-11-13 15:12:46 | 561ad2bbfbcb03d1fefdc3138e02c21c | 54 / 72 (75.00%)
| 152.199.19.161:443 |
| 2019-11-13 15:12:01 | 8c44e1b5ec8719c5b34ca66abd82c887 | 54 / 71 (76.06%)
| 152.199.19.161:443 |
| 2019-11-13 13:20:50 | a310a02cb417c7ad5b1a00c9908c1636 | n/a | 52.166.3.234:443 |
| 2019-11-13 03:19:24 | 593a7fb75af58a7b4d8150e645fd689d | 30 / 71 (42.25%)
| 152.199.19.161:443 |
| 2019-11-12 14:20:25 | 03d7886c1ba5bd5b04a6c8266f0b4aa2 | n/a | 172.217.17.142:443 |
| 2019-11-12 14:20:25 | 03d7886c1ba5bd5b04a6c8266f0b4aa2 | n/a | 85.143.219.95:443 |
| 2019-11-12 14:20:25 | 03d7886c1ba5bd5b04a6c8266f0b4aa2 | n/a | 172.217.19.197:443 |
| 2019-11-12 14:19:01 | 702655de8ee616c31c8d2f3adb5291a6 | n/a | 74.125.136.139:443 |
| 2019-11-12 14:19:01 | 702655de8ee616c31c8d2f3adb5291a6 | n/a | 85.143.219.95:443 |
| 2019-11-12 14:19:01 | 702655de8ee616c31c8d2f3adb5291a6 | n/a | 74.125.196.83:443 |
| 2019-11-12 14:15:35 | 323397805c48ca5d3218878b03e72c67 | n/a | 85.143.219.95:443 |
| 2019-11-12 14:15:35 | 323397805c48ca5d3218878b03e72c67 | n/a | 74.125.136.113:443 |
| 2019-11-12 14:15:34 | 323397805c48ca5d3218878b03e72c67 | n/a | 74.125.196.18:443 |
| 2019-11-12 14:01:07 | 146d1648d6f3109a97edd0829b8bd515 | 57 / 70 (81.43%)
| 183.232.96.107:443 |
| 2019-11-12 13:39:38 | ccb6836305b1584beb194196a58941b6 | 53 / 70 (75.71%)
| 152.199.19.161:443 |
| 2019-11-12 09:40:07 | 8022312966cf8aa145b5edb6b7459c1a | n/a | 152.199.19.161:443 |
| 2019-11-12 07:50:03 | a1bf12bbcd06dfff26665e5287fb2a06 | n/a | 152.199.19.161:443 |
| 2019-11-12 05:25:58 | 00a8cfb72dcc3842cc6f3412e738c668 | n/a | 152.199.19.161:443 |
| 2019-11-12 01:27:50 | a21521a9a69d7a3f27b38d809b3c6c96 | n/a | 152.199.19.161:443 |
| 2019-11-12 00:09:22 | a2cefda746d0799d5fb7edb1791c3530 | n/a | 152.199.19.161:443 |
| 2019-11-11 21:00:13 | 4755b39be643d96cee5f51a37f4c98e4 | 20 / 70 (28.57%)
| 152.199.19.161:443 |
| 2019-11-11 18:11:01 | a01f0d240c2a2c3e9ce64faecd68b09f | n/a | 152.199.19.161:443 |
| 2019-11-11 05:17:20 | 4a16e28e32f1dac267351c4f11d6c13b | 10 / 71 (14.08%)
| 64.233.185.83:443 |
| 2019-11-11 05:17:20 | 4a16e28e32f1dac267351c4f11d6c13b | 10 / 71 (14.08%)
| 85.143.219.95:443 |
| 2019-11-11 05:17:20 | 4a16e28e32f1dac267351c4f11d6c13b | 10 / 71 (14.08%)
| 216.58.194.238:443 |
| 2019-11-11 04:24:04 | 2bd932aff5807500cb3af3341ce12e18 | 10 / 72 (13.89%)
| 85.143.219.95:443 |
| 2019-11-11 04:24:03 | 2bd932aff5807500cb3af3341ce12e18 | 10 / 72 (13.89%)
| 108.177.122.19:443 |
| 2019-11-11 04:24:03 | 2bd932aff5807500cb3af3341ce12e18 | 10 / 72 (13.89%)
| 108.177.122.113:443 |
| 2019-11-11 04:18:38 | 5b02681a03164de42a1bbc2af0e036ec | 45 / 71 (63.38%)
| 152.199.19.161:443 |
| 2019-11-11 03:27:06 | d5f5d33622d68be8c675ce15fea836dc | 10 / 72 (13.89%)
| 85.143.219.95:443 |
| 2019-11-11 03:27:06 | d5f5d33622d68be8c675ce15fea836dc | 10 / 72 (13.89%)
| 64.233.177.139:443 |
| 2019-11-11 03:27:06 | d5f5d33622d68be8c675ce15fea836dc | 10 / 72 (13.89%)
| 64.233.177.83:443 |
| 2019-11-11 03:21:04 | 45fe4fc80f5f94ecb385f979634232a2 | 33 / 70 (47.14%)
| 208.93.230.204:8081 |
| 2019-11-11 03:18:53 | eb823076edaa9803fee7c644efff0436 | 8 / 71 (11.27%)
| 85.143.219.95:443 |
| 2019-11-11 03:18:53 | eb823076edaa9803fee7c644efff0436 | 8 / 71 (11.27%)
| 216.58.211.110:443 |
| 2019-11-11 03:18:53 | eb823076edaa9803fee7c644efff0436 | 8 / 71 (11.27%)
| 172.217.20.69:443 |
| 2019-11-10 23:39:26 | a141734d2f8be5693e0ddeda9db46b41 | n/a | 152.199.19.161:443 |
| 2019-11-10 23:24:27 | a161fd346fedf4a98e40a144962f5c6a | n/a | 152.199.19.161:443 |
| 2019-11-10 16:41:40 | 5bdee7008a11628dd37235b2f51dbf21 | 35 / 70 (50.00%)
| 152.199.19.161:443 |
| 2019-11-10 09:29:52 | a1fbc4640c3a11610bafb1d98f08a01a | 59 / 71 (83.10%)
| 152.199.19.161:443 |
| 2019-11-10 06:17:19 | 094d9786d49a8d75b1e8fec446912aa7 | 47 / 70 (67.14%)
| 152.199.19.161:443 |
| 2019-11-10 04:35:06 | a32770cde2fa60a1539b4f4f86035303 | 59 / 71 (83.10%)
| 152.199.19.161:443 |
| 2019-11-09 18:59:27 | 2993897b7997fe81ea11f3da2c70df82 | 37 / 71 (52.11%)
| 152.199.19.161:443 |
| 2019-11-07 20:33:24 | 2f4f1d9475eaa09990eb5b98deb107bc | 42 / 57 (73.68%)
| 85.202.175.200:443 |
| 2019-11-07 20:33:24 | 2f4f1d9475eaa09990eb5b98deb107bc | 42 / 57 (73.68%)
| 207.38.89.115:443 |
| 2019-11-07 20:19:34 | 1d600194b3836bc4169f8eda7f979d02 | 45 / 58 (77.59%)
| 85.202.175.200:443 |
| 2019-11-07 20:19:34 | 1d600194b3836bc4169f8eda7f979d02 | 45 / 58 (77.59%)
| 85.93.88.251:443 |
| 2019-11-07 18:27:27 | d3142cbc094757cda1cb0f3b747b1d2c | 14 / 43 (32.56%)
| 152.199.19.161:443 |
| 2019-11-07 15:04:39 | bbaa40cb6a7059dc2dc43a9ad8b53422 | 38 / 68 (55.88%)
| 152.199.19.161:443 |
| 2019-11-07 13:25:03 | ecd4c15de32ba5599f0725706a334674 | n/a | 152.199.19.161:443 |
| 2019-11-07 07:17:06 | a38c00de15e6b47b9e13ed5353f46752 | 59 / 71 (83.10%)
| 152.199.19.161:443 |
| 2019-11-06 09:19:27 | d593bcd34544bf85ee588141d27ef388 | n/a | 152.199.19.161:443 |
| 2019-11-06 03:54:51 | 4ae7d80a77a781fd47382a8536bc5aa0 | 50 / 71 (70.42%)
| 152.199.19.161:443 |
| 2019-11-05 23:59:18 | 1738224b8019a58e1002f0286a7025fd | n/a | 195.133.146.24:443 |
| 2019-11-05 23:59:18 | 1738224b8019a58e1002f0286a7025fd | n/a | 172.217.20.110:443 |
| 2019-11-05 23:59:18 | 1738224b8019a58e1002f0286a7025fd | n/a | 172.217.19.197:443 |
| 2019-11-05 23:13:28 | 0ef57c7a09476bbe4730ce895afbe6e8 | n/a | 195.133.146.24:443 |
| 2019-11-05 23:13:28 | 0ef57c7a09476bbe4730ce895afbe6e8 | n/a | 74.125.138.100:443 |
| 2019-11-05 23:13:28 | 0ef57c7a09476bbe4730ce895afbe6e8 | n/a | 64.233.185.83:443 |
| 2019-11-05 19:25:55 | 2f6185c431714e928d040a990a53d460 | n/a | 74.125.21.113:443 |
| 2019-11-05 19:25:55 | 2f6185c431714e928d040a990a53d460 | n/a | 64.233.177.83:443 |
| 2019-11-05 19:25:55 | 2f6185c431714e928d040a990a53d460 | n/a | 195.133.146.24:443 |
| 2019-11-05 19:19:00 | 3dfb1cde2bf24b064e7b810597e898b3 | 63 / 72 (87.50%)
| 152.199.19.161:443 |
| 2019-11-05 14:03:07 | 4bbf533dc97a34be6e506ee960406a21 | 64 / 72 (88.89%)
| 152.199.19.161:443 |
| 2019-11-05 13:27:30 | c4be789560ed168bc96254275ae6ad90 | 63 / 71 (88.73%)
| 72.21.81.200:443 |
| 2019-11-05 02:45:54 | a2cb8be229830b9a1c7435c04034b925 | 58 / 71 (81.69%)
| 152.199.19.161:443 |
| 2019-11-05 00:13:50 | a5367ae8df0b01fdb30cea80acb8ccfe | n/a | 72.21.81.200:443 |
| 2019-11-04 22:51:22 | f1917ac03876b6f698f6432d0569b764 | 60 / 70 (85.71%)
| 152.199.19.161:443 |
| 2019-11-04 11:24:36 | 6ca740a997d8097bd9ba56e5d53508c3 | 43 / 70 (61.43%)
| 152.199.19.161:443 |
| 2019-11-04 02:57:37 | 161d5bf2502fcf7084b326fd33308818 | 56 / 70 (80.00%)
| 152.199.19.161:443 |
| 2019-11-01 03:14:38 | 76c22f8ca072057e4aed850dec17e906 | 38 / 67 (56.72%)
| 152.199.19.161:443 |
| 2019-11-01 01:24:46 | a077f92ce5a31ebf504bb80ebc3cd6b6 | 57 / 70 (81.43%)
| 152.199.19.161:443 |
| 2019-10-31 19:22:04 | 30a1ae69456c37b191bde09f975c6639 | n/a | 152.199.19.161:443 |
# of entries: 100 (max: 100)