JA3 Fingerprints
You can find further information about the JA3 fingerprint 57f3642b4e37e28f5cbe3020c9331b4c, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 57f3642b4e37e28f5cbe3020c9331b4c |
|---|---|
| First seen: | 2018-08-28 15:54:53 UTC |
| Last seen: | 2021-02-27 09:54:02 UTC |
| Status: | Blacklisted |
| Malware samples: | 8'684 |
| Destination IPs: | 678 |
| Malware: | Gozi  |
| Listing date: | 2018-11-14 00:00:00 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2021-02-27 09:54:02 | a99329632db928c6b698394006622c86 |  59 / 71 (83.10%)
| 152.199.19.161:443 |
| 2021-02-27 03:45:30 | a23f68fd92670e11ce9ba724b982068c | 28 / 71 (39.44%)
| 40.91.78.9:443 |
| 2021-02-27 03:45:30 | a23f68fd92670e11ce9ba724b982068c | 28 / 71 (39.44%)
| 204.79.197.200:443 |
| 2021-02-27 03:03:19 | a33e432d1df1356b963d1e893f8f37f3 | 49 / 70 (70.00%)
| 173.231.189.8:443 |
| 2021-02-27 02:26:47 | 608cdcf92628b52a838432fcc207bcfc | 57 / 69 (82.61%)
| 72.21.81.200:443 |
| 2021-02-27 01:46:34 | 9eb5b36f69666f52d79c7df03b6e40dc | 59 / 71 (83.10%)
| 152.199.19.161:443 |
| 2021-02-26 22:50:58 | 1da8394499f957b6547687eb83fec453 | 59 / 71 (83.10%)
| 152.199.19.161:443 |
| 2021-02-26 22:33:19 | 74148aa2b7bbfbcce8279478495bcada | 49 / 70 (70.00%)
| 152.199.19.161:443 |
| 2021-02-26 19:39:21 | f6920fac45b6b3acac3e87cb22920e76 | n/a | 13.107.21.200:443 |
| 2021-02-26 19:39:21 | f6920fac45b6b3acac3e87cb22920e76 | n/a | 52.142.114.2:443 |
| 2021-02-26 18:59:43 | ad4385d58755109a4435e89456dcccfd | n/a | 13.107.21.200:443 |
| 2021-02-26 18:59:43 | ad4385d58755109a4435e89456dcccfd | n/a | 52.142.114.2:443 |
| 2021-02-26 12:23:13 | f20f79b60ed42d180d992c5ddf9816a2 | n/a | 204.79.197.200:443 |
| 2021-02-26 12:23:13 | f20f79b60ed42d180d992c5ddf9816a2 | n/a | 52.142.114.2:443 |
| 2021-02-26 10:05:24 | 167387608e695c2d564c5578c3d4eadf | n/a | 52.142.114.2:443 |
| 2021-02-26 10:05:24 | 167387608e695c2d564c5578c3d4eadf | n/a | 204.79.197.200:443 |
| 2021-02-26 09:01:25 | 357bbd246ebac75cc5c02053a4d528ed | n/a | 204.79.197.200:443 |
| 2021-02-26 09:01:25 | 357bbd246ebac75cc5c02053a4d528ed | n/a | 52.142.114.2:443 |
| 2021-02-26 08:25:02 | 7270108facd5a2a3f767ef0605cf2572 | 22 / 69 (31.88%)
| 52.142.114.2:443 |
| 2021-02-26 08:25:02 | 7270108facd5a2a3f767ef0605cf2572 | 22 / 69 (31.88%)
| 204.79.197.200:443 |
| 2021-02-26 07:44:35 | b6d56d3ebd48d4a3534140b1c06cf5b4 | n/a | 40.91.78.9:443 |
| 2021-02-26 07:44:35 | b6d56d3ebd48d4a3534140b1c06cf5b4 | n/a | 204.79.197.200:443 |
| 2021-02-26 04:02:10 | a581b527e44fdebb3f62b184e4df5a4d | 43 / 71 (60.56%)
| 40.91.78.9:443 |
| 2021-02-26 04:02:10 | a581b527e44fdebb3f62b184e4df5a4d | 43 / 71 (60.56%)
| 204.79.197.200:443 |
| 2021-02-26 03:32:02 | a35bebc058589c4e16ef357082c69a80 | 64 / 71 (90.14%)
| 152.199.19.161:443 |
| 2021-02-26 02:32:37 | a2c8515296a16353fd242c05b02b92e0 | 58 / 71 (81.69%)
| 152.199.19.161:443 |
| 2021-02-26 01:22:58 | 99a3c1b4f957626f55a648d79016ef7b | 28 / 70 (40.00%)
| 94.100.180.216:443 |
| 2021-02-26 01:22:58 | 99a3c1b4f957626f55a648d79016ef7b | 28 / 70 (40.00%)
| 185.5.137.206:443 |
| 2021-02-25 20:58:15 | 8156afae8c5153957efa73b95075558a | 49 / 69 (71.01%)
| 204.79.197.200:443 |
| 2021-02-25 20:58:15 | 8156afae8c5153957efa73b95075558a | 49 / 69 (71.01%)
| 52.142.114.2:443 |
| 2021-02-25 19:05:47 | 203c546ece7ed3c3306df0f4e6ba81a1 | 21 / 69 (30.43%)
| 204.79.197.200:443 |
| 2021-02-25 19:05:47 | 203c546ece7ed3c3306df0f4e6ba81a1 | 21 / 69 (30.43%)
| 52.142.114.2:443 |
| 2021-02-25 16:18:13 | 2378980c67949933be6a3a9e4cac6f42 | n/a | 152.199.19.161:443 |
| 2021-02-25 15:19:22 | 156f0d86196b2e90f1a7158bebcb16ae | 30 / 70 (42.86%)
| 52.142.114.2:443 |
| 2021-02-25 15:19:21 | 156f0d86196b2e90f1a7158bebcb16ae | 30 / 70 (42.86%)
| 13.107.21.200:443 |
| 2021-02-25 15:05:59 | 0253bcc25a1815a9439d3cceb2dd5ff4 | 29 / 69 (42.03%)
| 52.142.114.2:443 |
| 2021-02-25 15:05:59 | 0253bcc25a1815a9439d3cceb2dd5ff4 | 29 / 69 (42.03%)
| 13.107.21.200:443 |
| 2021-02-25 15:04:07 | 014cb5b6537bf7e42edc992fd0adacc8 | n/a | 152.199.19.161:443 |
| 2021-02-25 13:13:26 | 2e3cc35fefcf27bafd1048f2a22926d8 | n/a | 152.199.19.161:443 |
| 2021-02-25 12:44:39 | 0df140f6f21357e4b938cf0fe032769d | 60 / 71 (84.51%)
| 72.21.81.200:443 |
| 2021-02-25 11:15:58 | 3ef2d9e04ef6ecd6f6fdf319ac70812f | 39 / 71 (54.93%)
| 72.21.81.200:443 |
| 2021-02-25 09:25:08 | 3596ef28f94798d70bfb66b18360a872 | n/a | 152.199.19.161:443 |
| 2021-02-25 09:16:31 | 18408dd7dda9c762b679db67e08b1d77 | 30 / 50 (60.00%)
| 216.218.208.114:80 |
| 2021-02-25 09:06:31 | 03864c049c1e0c01697cb7c9681d1ac8 | 59 / 70 (84.29%)
| 152.199.19.161:443 |
| 2021-02-25 08:51:04 | 5a3af3a88eacaae6b58c9a5398319834 | 55 / 71 (77.46%)
| 152.199.19.161:443 |
| 2021-02-25 08:03:27 | 33b8db14b4c226acb4185f72984be337 | 40 / 71 (56.34%)
| 152.199.19.161:443 |
| 2021-02-24 19:48:40 | c1ba57f5ac69d3538e95259eb1a59718 | 43 / 70 (61.43%)
| 152.199.19.161:443 |
| 2021-02-24 18:57:20 | bb37bbf1b3cba1ed8276e1948f575634 | 51 / 71 (71.83%)
| 198.11.136.24:443 |
| 2021-02-24 18:40:07 | b6d30a901642d34c8bbd1a5dfdd15ac7 | 31 / 71 (43.66%)
| 152.199.19.161:443 |
| 2021-02-24 17:41:28 | a377eab12412b70acb3935f6d6975aa8 | 40 / 71 (56.34%)
| 34.237.73.95:443 |
| 2021-02-24 14:02:02 | 1de511b46b714eafc6900d09bacdea0f | 50 / 70 (71.43%)
| 47.88.68.21:443 |
| 2021-02-24 11:31:23 | ebc91833d78a53d133b254159270d1bd | 12 / 69 (17.39%)
| 152.199.19.161:443 |
| 2021-02-24 10:57:18 | e94f8a35d57db7c06ced46a4d773f097 | 65 / 71 (91.55%)
| 152.199.19.161:443 |
| 2021-02-24 08:32:27 | b6977008b2cfbdb366acda1cbfe774b2 | 28 / 71 (39.44%)
| 152.199.19.161:443 |
| 2021-02-24 08:13:31 | b3025631a49923506c0cd8056ec8ca9a | 46 / 55 (83.64%)
| 72.21.81.200:443 |
| 2021-02-24 02:08:56 | aafe49850fc4e2ca37691128b42f1f4a | 49 / 70 (70.00%)
| 198.11.132.221:443 |
| 2021-02-24 01:58:28 | ab2c6d062643ed0f998c372033576bf1 | n/a | 47.88.68.21:443 |
| 2021-02-24 00:42:11 | aaab10ac213d8f3d4414e0f5c1cf34f8 | 50 / 71 (70.42%)
| 198.11.132.221:443 |
| 2021-02-24 00:12:19 | 9b68a211e8ce167e3956d8abd611ac3b | n/a | 152.199.19.161:443 |
| 2021-02-23 22:33:22 | 487074ae73a06e3e77ef27f2198e1c79 | 40 / 70 (57.14%)
| 152.199.19.161:443 |
| 2021-02-23 21:10:44 | 034676a0969970648a8a7f0d6b023309 | n/a | 152.199.19.161:443 |
| 2021-02-23 20:47:20 | aa067e92c4289f6c5973d80205ab944d | 50 / 70 (71.43%)
| 47.88.68.21:443 |
| 2021-02-23 20:38:18 | aa0082276a6e14cda495447f3d05ef58 | 50 / 70 (71.43%)
| 47.88.68.21:443 |
| 2021-02-23 18:04:05 | a8da08eb8ff88c68f59f43520e83403c | 51 / 71 (71.83%)
| 205.204.101.182:443 |
| 2021-02-23 11:06:51 | a520a919cf5edeeb15fb376598b849ae | 43 / 67 (64.18%)
| 152.199.19.161:443 |
| 2021-02-23 00:33:16 | a122144b9e96b33355c9e9847d90cbda | 38 / 71 (53.52%)
| 198.11.136.24:443 |
| 2021-02-22 23:59:09 | 82f1327ccb02f89b2ae8d6698fd455e8 | n/a | 152.199.19.161:443 |
| 2021-02-22 23:05:54 | 6e0d22afe8573ff45ae82977964a801c | n/a | 152.199.19.161:443 |
| 2021-02-22 20:44:43 | e434611c79a1350faa8baf3637050350 | n/a | 152.199.19.161:443 |
| 2021-02-22 20:18:49 | e0a2387a0201e91f839d2b7d2496d55b | n/a | 152.199.19.161:443 |
| 2021-02-22 18:11:48 | d3041a4fa464963622530d0c3fe47964 | 64 / 71 (90.14%)
| 72.21.81.200:443 |
| 2021-02-22 15:39:27 | b9bad64d1bf0144e594324b5958ff322 | 43 / 70 (61.43%)
| 152.199.19.161:443 |
| 2021-02-22 11:09:43 | af26c1712951e7e24be74a7684d16972 | 64 / 70 (91.43%)
| 72.21.81.200:443 |
| 2021-02-22 05:27:51 | adeb8868fd815afe646070b8fc9638b5 | 64 / 70 (91.43%)
| 72.21.81.200:443 |
| 2021-02-22 03:27:54 | ad5f87f04b337e490a49d790359c7eb9 | 64 / 70 (91.43%)
| 152.199.19.161:443 |
| 2021-02-22 01:04:51 | ac97d60894a2cd1ba9d2c33aae5a5e00 | 64 / 70 (91.43%)
| 152.199.19.161:443 |
| 2021-02-22 01:00:43 | ac87227108410038a06ad5987604f027 | 64 / 71 (90.14%)
| 152.199.19.161:443 |
| 2021-02-22 00:53:38 | ac7e38edf5addb9f30a63aa912db76f5 | 65 / 71 (91.55%)
| 72.21.81.200:443 |
| 2021-02-21 23:54:13 | ac0347c4db1a9270bd20ca7cfa3cfd2c | 64 / 71 (90.14%)
| 152.199.19.161:443 |
| 2021-02-21 23:52:08 | abe37d2c8be602016016fba4c258f623 | 65 / 71 (91.55%)
| 152.199.19.161:443 |
| 2021-02-21 22:35:48 | a2f914433461b45fc5505e9f89683625 | 30 / 70 (42.86%)
| 13.224.89.96:443 |
| 2021-02-21 22:35:47 | a2f914433461b45fc5505e9f89683625 | 30 / 70 (42.86%)
| 65.55.44.109:443 |
| 2021-02-21 21:05:15 | 46ef75eb6f186878175037b45dd2e123 | 57 / 70 (81.43%)
| 152.199.19.161:443 |
| 2021-02-21 20:59:02 | 3575664ac82bb93cdad1acf765a9783c | 55 / 70 (78.57%)
| 152.199.19.161:443 |
| 2021-02-21 20:10:09 | 0b10ee4983137e3e2702b80595acee31 | n/a | 152.199.19.161:443 |
| 2021-02-21 19:07:12 | ab0c0177f573bc7cf2aa1395b07f5e14 | 63 / 70 (90.00%)
| 152.199.19.161:443 |
| 2021-02-21 19:06:03 | ab01df4641c9ac0b998ae18ad53885ae | 63 / 70 (90.00%)
| 152.199.19.161:443 |
| 2021-02-21 17:02:05 | aa15958024b192b8a1ad2e946ea42560 | 65 / 71 (91.55%)
| 152.199.19.161:443 |
| 2021-02-21 15:32:31 | a961006627e0789a185814a9d1a2777b | 64 / 71 (90.14%)
| 152.199.19.161:443 |
| 2021-02-21 14:51:40 | a8fe09fe77c455c956a4afbd6cf28901 | 56 / 62 (90.32%)
| 152.199.19.161:443 |
| 2021-02-21 14:49:03 | a8fe4fdaa40cac0352c905757497b669 | 64 / 70 (91.43%)
| 152.199.19.161:443 |
| 2021-02-21 13:26:30 | a8547755810ac822959881d8ee334bd9 | 65 / 71 (91.55%)
| 152.199.19.161:443 |
| 2021-02-21 12:47:39 | a811a21f899763ba19e9d9d852fb053d | 65 / 71 (91.55%)
| 152.199.19.161:443 |
| 2021-02-21 11:31:03 | a75456bde855a1d20e2a2ba91b9bb141 | 65 / 71 (91.55%)
| 72.21.81.200:443 |
| 2021-02-21 10:59:49 | a71ad58fde700f78a05a49446b251ade | 62 / 68 (91.18%)
| 152.199.19.161:443 |
| 2021-02-21 10:55:09 | a65f2a71ed51cd5def0f950a63bcd82f | 65 / 71 (91.55%)
| 152.199.19.161:443 |
| 2021-02-21 10:50:02 | a070eca6eed293261a033124144604bf | 64 / 70 (91.43%)
| 152.199.19.161:443 |
| 2021-02-21 10:10:49 | a5435c71a35081989a4f13b2be14e0ba | 65 / 71 (91.55%)
| 152.199.19.161:443 |
| 2021-02-21 08:32:51 | a58cacbc126dfe69f8765a4a6121a34e | 64 / 71 (90.14%)
| 152.199.19.161:443 |
| 2021-02-21 08:03:15 | a1644e4edad64736cd3c2edaccec7770 | 65 / 71 (91.55%)
| 152.199.19.161:443 |
# of entries: 100 (max: 100)