JA3 Fingerprints
You can find further information about the JA3 fingerprint 57f3642b4e37e28f5cbe3020c9331b4c, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 57f3642b4e37e28f5cbe3020c9331b4c |
|---|---|
| First seen: | 2018-08-28 15:54:53 UTC |
| Last seen: | 2020-11-25 08:54:50 UTC |
| Status: | Blacklisted |
| Malware samples: | 7'713 |
| Destination IPs: | 575 |
| Malware: | Gozi  |
| Listing date: | 2018-11-14 00:00:00 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2020-11-25 08:54:50 | cadc3598cc781ca8d415e8690d092980 |  56 / 71 (78.87%)
| 152.199.19.161:443 |
| 2020-11-25 08:48:44 | ca4c3cfdf7ec69e4137ad7725ae12cee | 48 / 70 (68.57%)
| 152.199.19.161:443 |
| 2020-11-25 08:48:15 | c433bb6f88baa06d9ea955197255557e | n/a | 87.250.250.33:443 |
| 2020-11-25 08:48:15 | c433bb6f88baa06d9ea955197255557e | n/a | 213.180.193.234:443 |
| 2020-11-25 08:48:14 | c433bb6f88baa06d9ea955197255557e | n/a | 87.250.250.36:443 |
| 2020-11-25 08:48:14 | c433bb6f88baa06d9ea955197255557e | n/a | 213.180.204.158:443 |
| 2020-11-25 08:48:14 | c433bb6f88baa06d9ea955197255557e | n/a | 5.255.255.88:443 |
| 2020-11-25 08:48:14 | c433bb6f88baa06d9ea955197255557e | n/a | 77.88.21.232:443 |
| 2020-11-25 08:48:13 | c433bb6f88baa06d9ea955197255557e | n/a | 93.158.134.236:443 |
| 2020-11-25 08:28:12 | c7001f342c3e047514fcb0f42787c846 | 63 / 71 (88.73%)
| 152.199.19.161:443 |
| 2020-11-25 07:56:22 | c26ffdd7fe2e050eace5e8e87b8497ad | 36 / 71 (50.70%)
| 151.101.36.193:443 |
| 2020-11-25 07:44:33 | c0ba0472afffb69b01da77d7765a956f | 60 / 69 (86.96%)
| 152.199.19.161:443 |
| 2020-11-24 22:53:14 | 813c79ac2f1d12d573f6e1a3973e646f | 56 / 70 (80.00%)
| 72.21.81.200:443 |
| 2020-11-24 22:19:49 | 5d3a12e7c3a54422ff25f25acd82fa7e | 55 / 72 (76.39%)
| 152.199.19.161:443 |
| 2020-11-24 21:21:06 | 1c1077cc7fe6db308a6532cbc7f4da12 | n/a | 152.199.19.161:443 |
| 2020-11-24 20:48:04 | 0b84a6e3dbae9b534660103694484705 | 39 / 69 (56.52%)
| 152.199.19.161:443 |
| 2020-11-24 17:29:51 | afbafc8e6646677c1fa29319ef3e4db8 | 3 / 71 (4.23%)
| 77.88.55.88:443 |
| 2020-11-24 17:29:50 | afbafc8e6646677c1fa29319ef3e4db8 | 3 / 71 (4.23%)
| 87.250.250.33:443 |
| 2020-11-24 17:29:50 | afbafc8e6646677c1fa29319ef3e4db8 | 3 / 71 (4.23%)
| 213.180.193.234:443 |
| 2020-11-24 17:29:50 | afbafc8e6646677c1fa29319ef3e4db8 | 3 / 71 (4.23%)
| 213.180.204.158:443 |
| 2020-11-24 17:29:50 | afbafc8e6646677c1fa29319ef3e4db8 | 3 / 71 (4.23%)
| 93.158.134.236:443 |
| 2020-11-24 17:29:50 | afbafc8e6646677c1fa29319ef3e4db8 | 3 / 71 (4.23%)
| 77.88.21.36:443 |
| 2020-11-24 17:29:49 | afbafc8e6646677c1fa29319ef3e4db8 | 3 / 71 (4.23%)
| 213.180.204.232:443 |
| 2020-11-24 17:25:30 | b037a95c5d92f9cf2f1c4de52d12c3af | 35 / 71 (49.30%)
| 152.199.19.161:443 |
| 2020-11-24 16:48:08 | afb431321a08e961408b3133728601ee | 18 / 69 (26.09%)
| 152.199.19.161:443 |
| 2020-11-24 01:34:35 | a379ab2d3e0d229eb1c65971beeb1248 | 61 / 72 (84.72%)
| 72.21.81.200:443 |
| 2020-11-23 22:06:52 | 85dbdcf95ba4b0d834c8fa4759771cc0 | n/a | 152.199.19.161:443 |
| 2020-11-23 21:57:51 | 83c0b0686289d3bfc8355ea7b89334fe | 39 / 72 (54.17%)
| 152.199.19.161:443 |
| 2020-11-23 21:32:58 | 69803e6df92bc164cf367983dfcf190d | 55 / 72 (76.39%)
| 72.21.81.200:443 |
| 2020-11-23 16:50:46 | aa01d85ec38ca414e5259b7c4b27c226 | 56 / 72 (77.78%)
| 152.199.19.161:443 |
| 2020-11-23 06:30:16 | b48beaa1a0cb1aa91b3b71d13be17d3f | 47 / 71 (66.20%)
| 72.21.81.200:443 |
| 2020-11-23 06:11:05 | a5435b066d91fbcfe3eb910f84bb4597 | n/a | 213.180.193.234:443 |
| 2020-11-23 06:11:04 | a5435b066d91fbcfe3eb910f84bb4597 | n/a | 77.88.55.88:443 |
| 2020-11-23 06:11:04 | a5435b066d91fbcfe3eb910f84bb4597 | n/a | 87.250.250.33:443 |
| 2020-11-23 06:11:04 | a5435b066d91fbcfe3eb910f84bb4597 | n/a | 213.180.204.236:443 |
| 2020-11-23 06:11:04 | a5435b066d91fbcfe3eb910f84bb4597 | n/a | 77.88.21.29:443 |
| 2020-11-23 06:11:03 | a5435b066d91fbcfe3eb910f84bb4597 | n/a | 213.180.193.232:443 |
| 2020-11-23 00:58:25 | 7267fac596a664ae60fd71a345f8f2f6 | 43 / 65 (66.15%)
| 152.199.19.161:443 |
| 2020-11-23 00:55:23 | 6b11586ff3d5e3d046632cf28cf9a9f5 | 62 / 72 (86.11%)
| 185.53.178.53:443 |
| 2020-11-22 23:05:25 | 47891c726b0ccc793ebb98a0cf6c8cac | 36 / 69 (52.17%)
| 152.199.19.161:443 |
| 2020-11-22 22:43:14 | 40e83114b3e885b5995a493526f62af2 | 39 / 71 (54.93%)
| 152.199.19.161:443 |
| 2020-11-22 22:42:43 | 40e69fce55f0001d660d386b964b74c7 | 28 / 53 (52.83%)
| 152.199.19.161:443 |
| 2020-11-22 22:24:49 | 40b40a79d570d170616821ce4185158f | 45 / 69 (65.22%)
| 152.199.19.161:443 |
| 2020-11-22 22:09:55 | 400f14b8ba575f310cfc905cac50d32e | 46 / 61 (75.41%)
| 152.199.19.161:443 |
| 2020-11-22 18:22:32 | c84b22c431eda26969277feb104cdbd1 | 60 / 72 (83.33%)
| 152.199.19.161:443 |
| 2020-11-22 17:59:22 | c6aeb1b737a97bb80b8c137e8ffac0f6 | 40 / 71 (56.34%)
| 152.199.19.161:443 |
| 2020-11-22 16:37:47 | bb25aa5611d7635ff9bf0ffe74b9cc35 | 56 / 72 (77.78%)
| 152.199.19.161:443 |
| 2020-11-22 16:30:38 | b998d1196c97e17433d79ca909fc798e | 62 / 72 (86.11%)
| 152.199.19.161:443 |
| 2020-11-22 16:30:18 | b59ed9057630fcd955b26a4dc4e6e43a | 49 / 70 (70.00%)
| 203.107.36.99:9208 |
| 2020-11-22 16:05:02 | b361f3484fee454c93ccfd32e530a749 | 11 / 72 (15.28%)
| 151.101.36.193:443 |
| 2020-11-22 14:07:31 | b0f48aefcaea8a6a286617debefe41ca | 59 / 71 (83.10%)
| 72.21.81.200:443 |
| 2020-11-22 08:53:52 | a9df8d91c0e7c24638e6b3cf5c95f2ab | 52 / 72 (72.22%)
| 85.94.194.169:443 |
| 2020-11-22 04:41:35 | a511648b447f7351b921f96562c3048b | n/a | 152.199.19.161:443 |
| 2020-11-22 01:53:35 | 9cc5bc1e712ae3240b311a990ed7530c | 59 / 71 (83.10%)
| 152.199.19.161:443 |
| 2020-11-22 01:19:06 | 989e3dbac862562605801d6b8f7edeeb | 44 / 72 (61.11%)
| 152.199.19.161:443 |
| 2020-11-22 00:03:17 | 7c6717f3f65802de1a08b9254f4fdea2 | 63 / 72 (87.50%)
| 152.199.19.161:443 |
| 2020-11-21 23:47:51 | 7c7cb35e778662351da769c74278751a | 50 / 72 (69.44%)
| 152.199.19.161:443 |
| 2020-11-21 22:58:54 | 676169821ad5b0462729ba9d272c139c | 55 / 71 (77.46%)
| 152.199.19.161:443 |
| 2020-11-21 22:15:23 | 5464f750a694212a3915fc9500809dd0 | 1 / 67 (1.49%)
| 211.152.137.25:443 |
| 2020-11-21 21:41:19 | 33b44e93910873c255f82bd1657b4b66 | 46 / 67 (68.66%)
| 152.199.19.161:443 |
| 2020-11-21 21:37:48 | 4221f9f707106fe6b0cc17dbd97aa7f9 | 47 / 71 (66.20%)
| 152.199.19.161:443 |
| 2020-11-21 20:54:48 | 31b2e524b85aa5a20f6f59f1b8c227ff | 59 / 72 (81.94%)
| 152.199.19.161:443 |
| 2020-11-21 20:51:16 | 2df8d60b48d3753f15c881bc7bdb86b7 | 57 / 70 (81.43%)
| 152.199.19.161:443 |
| 2020-11-21 20:44:37 | 240e252e360518383d38149e543cb207 | 38 / 70 (54.29%)
| 152.199.19.161:443 |
| 2020-11-21 20:35:59 | 007e39c39e049c42700dd2612258289e | 38 / 72 (52.78%)
| 152.199.19.161:443 |
| 2020-11-21 20:27:49 | 22c12cf868a418942de8472e68faaa87 | 47 / 72 (65.28%)
| 152.199.19.161:443 |
| 2020-11-21 20:26:30 | 0924d7a6f4c2cc3707a643b6c6bfbde1 | 56 / 70 (80.00%)
| 152.199.19.161:443 |
| 2020-11-21 16:46:29 | b7ddc8aaa8f38f2b1bb7c39ead315beb | 52 / 71 (73.24%)
| 165.22.207.20:443 |
| 2020-11-21 06:05:20 | a76778741f189225cd00f3e8622d368d | 46 / 72 (63.89%)
| 2.18.233.62:443 |
| 2020-11-21 04:48:31 | a5575b06a7a1394c34eb3098b0a1a7ea | 31 / 72 (43.06%)
| 195.78.95.86:443 |
| 2020-11-21 04:48:31 | a5575b06a7a1394c34eb3098b0a1a7ea | 31 / 72 (43.06%)
| 199.232.81.164:443 |
| 2020-11-21 04:48:31 | a5575b06a7a1394c34eb3098b0a1a7ea | 31 / 72 (43.06%)
| 87.248.100.208:443 |
| 2020-11-21 04:48:30 | a5575b06a7a1394c34eb3098b0a1a7ea | 31 / 72 (43.06%)
| 212.82.100.163:443 |
| 2020-11-21 04:48:30 | a5575b06a7a1394c34eb3098b0a1a7ea | 31 / 72 (43.06%)
| 151.101.241.188:443 |
| 2020-11-21 04:27:06 | a4ce4c658bf252bc211b8cc72b4d1233 | 57 / 69 (82.61%)
| 152.199.19.161:443 |
| 2020-11-21 04:23:11 | a4a635883d21320da33bc3b76d93c12a | 55 / 71 (77.46%)
| 152.199.19.161:443 |
| 2020-11-21 01:23:32 | 9adfd4bf6e06b00083ecf45df9aca706 | 57 / 71 (80.28%)
| 152.199.19.161:443 |
| 2020-11-20 22:40:13 | 607b6f2c4a95ba9417560790e91c52cc | 60 / 72 (83.33%)
| 152.199.19.161:443 |
| 2020-11-20 22:19:38 | 56dc558a01463233b34d46d4513c2d46 | 59 / 70 (84.29%)
| 152.199.19.161:443 |
| 2020-11-20 21:21:03 | 30f818127e98b621f6d63aa9c099e6bd | 41 / 57 (71.93%)
| 152.199.19.161:443 |
| 2020-11-20 20:56:30 | 142f1870c9f8c87300360902d6e3d38d | 58 / 72 (80.56%)
| 152.199.19.161:443 |
| 2020-11-20 18:17:28 | 398a07c5d4112d55151c73308860e868 | n/a | 5.255.255.55:443 |
| 2020-11-20 18:17:27 | 398a07c5d4112d55151c73308860e868 | n/a | 213.180.204.236:443 |
| 2020-11-20 18:17:27 | 398a07c5d4112d55151c73308860e868 | n/a | 87.250.250.33:443 |
| 2020-11-20 18:17:27 | 398a07c5d4112d55151c73308860e868 | n/a | 213.180.193.234:443 |
| 2020-11-20 18:03:20 | 4e4e471c0bec13e25d69283bca970554 | n/a | 213.180.193.234:443 |
| 2020-11-20 18:03:19 | 4e4e471c0bec13e25d69283bca970554 | n/a | 213.180.204.36:443 |
| 2020-11-20 18:03:19 | 4e4e471c0bec13e25d69283bca970554 | n/a | 5.255.255.70:443 |
| 2020-11-20 18:03:19 | 4e4e471c0bec13e25d69283bca970554 | n/a | 213.180.204.232:443 |
| 2020-11-20 18:03:19 | 4e4e471c0bec13e25d69283bca970554 | n/a | 213.180.204.158:443 |
| 2020-11-20 18:03:18 | 4e4e471c0bec13e25d69283bca970554 | n/a | 87.250.250.33:443 |
| 2020-11-20 18:03:18 | 4e4e471c0bec13e25d69283bca970554 | n/a | 93.158.134.236:443 |
| 2020-11-20 16:43:42 | 26af538c67828ea40a66ef29efa863df | 49 / 72 (68.06%)
| 72.21.81.200:443 |
| 2020-11-20 14:02:20 | cee83130cc00598267ec6fcdc5a21c27 | 58 / 71 (81.69%)
| 152.199.19.161:443 |
| 2020-11-20 12:35:03 | c5196908006b798fe23bd2a5969f1b43 | 40 / 70 (57.14%)
| 152.199.19.161:443 |
| 2020-11-20 11:42:47 | b39baacb02d8336524b76ed1824a0c47 | n/a | 152.199.19.161:443 |
| 2020-11-20 01:33:08 | 96859709f7e7b265209ddd517086ae99 | 58 / 71 (81.69%)
| 152.199.19.161:443 |
| 2020-11-20 00:53:27 | 892515a0257667fc440ccf8e869e5f16 | 58 / 72 (80.56%)
| 152.199.19.161:443 |
| 2020-11-19 23:40:57 | 5eb7c1f49d4930b81b8f76d653ced04d | 54 / 71 (76.06%)
| 152.199.19.161:443 |
| 2020-11-19 23:07:20 | 5bb57cc48ebafad76f3a478c92e1449a | 45 / 72 (62.50%)
| 152.199.19.161:443 |
# of entries: 100 (max: 100)