JA3 Fingerprints
You can find further information about the JA3 fingerprint 57f3642b4e37e28f5cbe3020c9331b4c, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 57f3642b4e37e28f5cbe3020c9331b4c |
|---|---|
| First seen: | 2018-08-28 15:54:53 UTC |
| Last seen: | 2019-09-16 08:35:05 UTC |
| Status: | Blacklisted |
| Malware samples: | 2'698 |
| Destination IPs: | 180 |
| Malware: | Gozi  |
| Listing date: | 2018-11-14 00:00:00 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2019-09-16 08:35:05 | a1e685032c1ff8873a1cf5c52b09f27d | n/a | 72.21.81.200:443 |
| 2019-09-16 06:39:55 | a44cb205138dc8e6423c30b447734ab5 |  57 / 70 (81.43%)
| 152.199.19.161:443 |
| 2019-09-16 05:58:15 | a3e15b15c78916b9f2557194e03a3e71 | n/a | 72.21.81.200:443 |
| 2019-09-16 04:52:25 | a267555ce3bcbe0bea857053604e4f95 | 14 / 41 (34.15%)
| 13.79.247.219:443 |
| 2019-09-16 03:42:13 | a4c6dd64dd5b42ef8ac4c93aa71d41d4 | 57 / 69 (82.61%)
| 152.199.19.161:443 |
| 2019-09-16 03:17:25 | a2242d2f8db4f32d4603aa287c9a7ab0 | 62 / 69 (89.86%)
| 152.199.19.161:443 |
| 2019-09-16 02:22:20 | a29966b0f2be58ef2297508791fb79ee | n/a | 72.21.81.200:443 |
| 2019-09-15 20:15:20 | e7da1c7a7a7ee2dd2a6496ecead9b42e | n/a | 72.21.81.200:443 |
| 2019-09-15 16:55:49 | 3811510a6b0b96edd7af15c58a501883 | n/a | 152.199.19.161:443 |
| 2019-09-15 13:42:26 | 4330927c21ef9384442a6ee2bbe27061 | n/a | 152.199.19.161:443 |
| 2019-09-15 13:15:00 | 8ba325c4c7b4facf0a223cd2f368e422 | 30 / 69 (43.48%)
| 72.21.81.200:443 |
| 2019-09-15 10:07:49 | a08a530a3419bf61a8faf4990e333378 | n/a | 152.199.19.161:443 |
| 2019-09-15 02:48:32 | a05738c3169ec91419dca3a8bc8e954e | 54 / 68 (79.41%)
| 152.199.19.161:443 |
| 2019-09-15 01:00:55 | a386687fadd96a551bc10e8dee1d652a | n/a | 152.199.19.161:443 |
| 2019-09-14 22:54:57 | 69e98eb45ae2794a9c7ebde77a8a3bf3 | n/a | 152.199.19.161:443 |
| 2019-09-14 20:32:55 | a486640ffc2382a8c652c11f982686ff | n/a | 152.199.19.161:443 |
| 2019-09-14 19:31:54 | a32b0c9332fc7b31c1dd92b9b1e4fdbd | n/a | 152.199.19.161:443 |
| 2019-09-14 18:47:52 | a45a38e05ee4bf035b73192e4a756894 | 54 / 70 (77.14%)
| 152.199.19.161:443 |
| 2019-09-14 12:57:54 | a3f7fe8cecc79826d7e0e45c3ad68c45 | n/a | 72.21.81.200:443 |
| 2019-09-14 12:21:44 | a2fe51a1983c2e86d53222c8378f692f | n/a | 152.199.19.161:443 |
| 2019-09-14 09:43:25 | 4f0c15395080eca7b419c2fc0f5527b2 | n/a | 152.199.19.161:443 |
| 2019-09-14 09:34:04 | a2a6e64c3dfbae73d88281406e2d71c1 | 56 / 67 (83.58%)
| 72.21.81.200:443 |
| 2019-09-14 09:20:37 | a30c973278a9f6adbeaafe12d0a714c2 | 43 / 69 (62.32%)
| 152.199.19.161:443 |
| 2019-09-14 05:33:40 | a089d37b140f46b40fc123c0bfe8000c | n/a | 152.199.19.161:443 |
| 2019-09-13 12:25:10 | a2a07f83881e5f44ae134b74df1d5ded | 55 / 67 (82.09%)
| 152.199.19.161:443 |
| 2019-09-13 08:21:35 | a041d1ecab2d776e92b27a78cd3f525e | 58 / 71 (81.69%)
| 72.21.81.200:443 |
| 2019-09-13 07:17:16 | 3df94dd815024bc177576c88b2bc5cdd | 26 / 68 (38.24%)
| 152.199.19.161:443 |
| 2019-09-13 07:01:47 | a0aeea4858e671a6187ad6d26e135a47 | n/a | 72.21.81.200:443 |
| 2019-09-13 06:15:48 | a39546fe1dd789ba64def1191b5877e3 | n/a | 152.199.19.161:443 |
| 2019-09-13 06:06:39 | a07bd9e46356ba4e898d2d4d8d4d9684 | n/a | 152.199.19.161:443 |
| 2019-09-13 06:01:36 | a0109809768c6ae7bbcce6ef48f21f60 | n/a | 72.21.81.200:443 |
| 2019-09-13 05:04:02 | ef14d14fd4b381dd3f9890a375b71cc3 | n/a | 72.21.81.200:443 |
| 2019-09-12 21:20:43 | a2028253af0256d07e471c1e3c4fb80d | n/a | 152.199.19.161:443 |
| 2019-09-12 14:08:29 | a401cfab353e21d6ec883975971c0984 | n/a | 152.199.19.161:443 |
| 2019-09-12 14:08:05 | a2430aeb7a90bb45e49ecf078f363623 | n/a | 52.166.3.234:443 |
| 2019-09-12 11:57:42 | a02b2ea31702b3707542b08b89b1f06c | n/a | 152.199.19.161:443 |
| 2019-09-12 11:41:56 | d2904c522448640ac1fecc4e2cf8db8c | 24 / 70 (34.29%)
| 152.199.19.161:443 |
| 2019-09-12 09:07:49 | a1748565288c38eff40b5cf2c59a35f7 | n/a | 152.199.19.161:443 |
| 2019-09-12 06:33:22 | a0214240e827f67ab4b49a797c6f23db | 57 / 69 (82.61%)
| 152.199.19.161:443 |
| 2019-09-12 05:02:35 | fa489a46cd94f4838f8a63c6d401db5c | 62 / 71 (87.32%)
| 217.74.76.129:443 |
| 2019-09-11 22:16:15 | a210eb14fa4a86bbb18738de7d1b82ff | 60 / 69 (86.96%)
| 157.7.107.111:443 |
| 2019-09-11 21:30:38 | a0341b8a26fd6c0edda7cc755819d9c3 | n/a | 152.199.19.161:443 |
| 2019-09-11 21:09:45 | a0ccba34422577aff9a8a0d2fc442c96 | n/a | 152.199.19.161:443 |
| 2019-09-11 20:27:39 | a3517d77b99e8d5e6fbad90b1d2f62d6 | n/a | 72.21.81.200:443 |
| 2019-09-11 10:39:19 | a1fd63989cb4040c41da7249092d1e4b | n/a | 152.199.19.161:443 |
| 2019-09-11 10:32:33 | d9f253a06a3aeef577435af7f5789556 | 43 / 71 (60.56%)
| 72.21.81.200:443 |
| 2019-09-11 07:50:12 | a2173e8db54218334b40389a038e6039 | n/a | 152.199.19.161:443 |
| 2019-09-10 18:06:46 | a17dac44dbeb65a52b20de057fba70fb | n/a | 152.199.19.161:443 |
| 2019-09-10 16:14:33 | a09b6fb0da736ce38ed6637a5fd3aca2 | 62/70 (88.57%)
| 67.227.183.123:443 |
| 2019-09-10 16:14:32 | a09b6fb0da736ce38ed6637a5fd3aca2 | 62/70 (88.57%)
| 116.203.159.155:443 |
| 2019-09-10 14:56:59 | dc33ab9caea6d0703173ff06557a7480 | n/a | 85.143.223.150:443 |
| 2019-09-10 14:56:59 | dc33ab9caea6d0703173ff06557a7480 | n/a | 172.217.14.69:443 |
| 2019-09-10 14:56:58 | dc33ab9caea6d0703173ff06557a7480 | n/a | 172.217.4.142:443 |
| 2019-09-10 14:40:57 | a10a9c5c099817ef12928b6b85140548 | 61/69 (88.41%)
| 116.203.159.155:443 |
| 2019-09-10 14:40:57 | a10a9c5c099817ef12928b6b85140548 | 61/69 (88.41%)
| 67.227.183.123:443 |
| 2019-09-10 09:49:33 | a06c7435cfb4055cfcb55eb109f35cfd | 46/69 (66.67%)
| 152.199.19.161:443 |
| 2019-09-10 09:33:49 | 659e91c42c28059889e8244b088d69a2 | n/a | 152.199.19.161:443 |
| 2019-09-10 09:11:11 | a33f88c1595510d5d5096b086f7222b0 | 57 / 69 (82.61%)
| 152.199.19.161:443 |
| 2019-09-10 05:44:55 | a393d71a07971ffa71cb71047cc95663 | 54 / 66 (81.82%)
| 152.199.19.161:443 |
| 2019-09-10 05:27:38 | a2f8759a6694a425a451dd110065b4e6 | 43/68 (63.24%)
| 152.199.19.161:443 |
| 2019-09-10 05:14:35 | a2e1b8b7c646350f6d8f0ab41a178c0f | 54/67 (80.60%)
| 152.199.19.161:443 |
| 2019-09-10 04:40:16 | a09986ed72f220ec28b59e599b45143c | 48 / 61 (78.69%)
| 152.199.19.161:443 |
| 2019-09-10 04:05:31 | a0c1d75e6f6c35bce61850156afb734c | 50/63 (79.37%)
| 152.199.19.161:443 |
| 2019-09-09 20:28:20 | a240c9f38e1c379a82d171580dfa8587 | 47/68 (69.12%)
| 152.199.19.161:443 |
| 2019-09-09 19:49:23 | a0c3a8a6af04eb262b1317443219da32 | 49/62 (79.03%)
| 152.199.19.161:443 |
| 2019-09-09 19:22:25 | a041a2bcbcec75d024114503e440d3a8 | 58 / 70 (82.86%)
| 152.199.19.161:443 |
| 2019-09-09 16:43:43 | a146742926ecefcccbd4c4b96f868a9a | 58 / 71 (81.69%)
| 152.199.19.161:443 |
| 2019-09-09 15:46:15 | a08059c12ac22ecf5f5ba8e400545242 | 55/67 (82.09%)
| 152.199.19.161:443 |
| 2019-09-09 14:16:58 | 6dcaae31b813669539df2ef205c9d8f7 | n/a | 85.143.223.150:443 |
| 2019-09-09 14:16:58 | 6dcaae31b813669539df2ef205c9d8f7 | n/a | 216.58.206.14:443 |
| 2019-09-09 14:16:58 | 6dcaae31b813669539df2ef205c9d8f7 | n/a | 216.58.210.5:443 |
| 2019-09-09 07:58:35 | 006b81baff057a60f7d64a571ab883c8 | n/a | 152.199.19.161:443 |
| 2019-09-09 07:43:02 | 054ab46ca86a61a60a627118c254fbca | 42 / 70 (60.00%)
| 152.199.19.161:443 |
| 2019-09-09 07:21:15 | c5fd5d6cc5e791fbb5546ae13ff5e74a | 45 / 68 (66.18%)
| 152.199.19.161:443 |
| 2019-09-09 07:15:46 | 0edd9e5e0293e661562760cd04b7aea3 | n/a | 152.199.19.161:443 |
| 2019-09-09 04:21:15 | 4d16060da0448af9b0373538c7670189 | n/a | 152.199.19.161:443 |
| 2019-09-09 03:29:24 | a0db537b3c2dd41cdf3ec2ee485757c0 | n/a | 152.199.19.161:443 |
| 2019-09-09 01:50:16 | fc08e966996eb94c4e6cc923eb45088b | 57 / 67 (85.07%)
| 152.199.19.161:443 |
| 2019-09-08 18:59:20 | a22c9644a2a481b69ac9c4de324d309b | 61 / 70 (87.14%)
| 152.199.19.161:443 |
| 2019-09-08 18:55:00 | a0351305312eea2d8a329a7708fb4c0c | n/a | 152.199.19.161:443 |
| 2019-09-08 18:31:36 | 3382c5d05532e156d067cfcd646ae1ce | n/a | 152.199.19.161:443 |
| 2019-09-08 18:00:02 | a0ce79e3421abb6557fed84206cdaafb | 58 / 71 (81.69%)
| 152.199.19.161:443 |
| 2019-09-08 17:39:21 | a1290c028466ca91fea662e7a568f8cb | n/a | 152.199.19.161:443 |
| 2019-09-08 17:22:01 | cd8286c637da2a885d27f2c2ae5d7743 | 40 / 66 (60.61%)
| 152.199.19.161:443 |
| 2019-09-08 16:55:19 | e2aacca687f825be9d961a1966526ce2 | n/a | 185.127.27.238:443 |
| 2019-09-08 16:55:19 | e2aacca687f825be9d961a1966526ce2 | n/a | 172.217.22.78:443 |
| 2019-09-08 16:55:18 | e2aacca687f825be9d961a1966526ce2 | n/a | 216.58.210.5:443 |
| 2019-09-08 10:33:06 | 77ca1a76d66969c35465a85d115ae986 | n/a | 152.199.19.161:443 |
| 2019-09-08 04:47:13 | 51fbf7b2b1124924f2a5aa6429aa8fc0 | 23 / 69 (33.33%)
| 216.58.215.238:443 |
| 2019-09-08 04:47:13 | 51fbf7b2b1124924f2a5aa6429aa8fc0 | 23 / 69 (33.33%)
| 172.217.168.69:443 |
| 2019-09-08 01:31:55 | 1df96238d33f2ccde3be08adbd684f9c | 21 / 66 (31.82%)
| 152.199.19.161:443 |
| 2019-09-08 00:46:10 | a1ce534423d917cfb047cf29609af0b8 | n/a | 185.69.194.129:443 |
| 2019-09-07 22:26:35 | a2122224fb7cfed8dce6af67cb91ba6f | n/a | 152.199.19.161:443 |
| 2019-09-07 21:32:12 | cbebaeecd86ab047f4cd2a8bacfdda21 | 57 / 70 (81.43%)
| 152.199.19.161:443 |
| 2019-09-07 21:08:15 | f05b74c21d83fcb429c2a8bc2c0efe5f | 52 / 70 (74.29%)
| 152.199.19.161:443 |
| 2019-09-07 20:51:59 | b383dc4e30e2d96ee31a804aa69421f1 | n/a | 172.217.4.142:443 |
| 2019-09-07 20:51:59 | b383dc4e30e2d96ee31a804aa69421f1 | n/a | 172.217.14.69:443 |
| 2019-09-07 20:51:59 | b383dc4e30e2d96ee31a804aa69421f1 | n/a | 85.143.223.150:443 |
| 2019-09-07 20:50:55 | f5622db87a850e2f6a4e4f0e2df679ed | 57 / 70 (81.43%)
| 152.199.19.161:443 |
| 2019-09-07 20:44:50 | a171c88bfaf93d41c91dcf3fc3fbb72c | n/a | 152.199.19.161:443 |
# of entries: 100 (max: 100)