JA3 Fingerprints
You can find further information about the JA3 fingerprint 57f3642b4e37e28f5cbe3020c9331b4c, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 57f3642b4e37e28f5cbe3020c9331b4c |
|---|---|
| First seen: | 2018-08-28 15:54:53 UTC |
| Last seen: | 2021-05-08 11:14:59 UTC |
| Status: | Blacklisted |
| Malware samples: | 10'250 |
| Destination IPs: | 758 |
| Malware: | Gozi  |
| Listing date: | 2018-11-14 00:00:00 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2021-05-08 11:14:59 | b83049feb75e0ebee7e0f2ad63c6e959 |  56 / 70 (80.00%)
| 35.169.227.21:443 |
| 2021-05-08 06:19:26 | df345313d6c4b400804762e5e51bb20a | 53 / 68 (77.94%)
| 152.199.19.161:443 |
| 2021-05-08 01:18:16 | 60b4e4b50e2a54cee45a5a71e93c6636 | 49 / 70 (70.00%)
| 152.199.19.161:443 |
| 2021-05-08 00:53:25 | 55f5f2098bbc7aebc2b798126f7c431a | 50 / 69 (72.46%)
| 72.21.81.200:443 |
| 2021-05-07 23:35:13 | 3d98aab084358aaded6bf39738ce4970 | 33 / 69 (47.83%)
| 152.199.19.161:443 |
| 2021-05-07 22:23:48 | 2ad5614d84cc832efd9259e0dd104cb5 | 41 / 46 (89.13%)
| 152.199.19.161:443 |
| 2021-05-07 20:27:23 | 602cc818da830af138bf1d469519e716 | 44 / 67 (65.67%)
| 152.199.19.161:443 |
| 2021-05-07 14:57:02 | f96bbac18dff937c458d9b81f1c4daa9 | 41 / 68 (60.29%)
| 152.199.19.161:443 |
| 2021-05-07 14:55:39 | f8227e146292a9b4f91def469f3a234a | 45 / 69 (65.22%)
| 152.199.19.161:443 |
| 2021-05-07 14:50:20 | f79c98438ab1e7201a48db807b70d34b | 26 / 70 (37.14%)
| 152.199.19.161:443 |
| 2021-05-07 13:39:33 | f08ab682f3dda029b52fafbc23c4d131 | n/a | 152.199.19.161:443 |
| 2021-05-07 13:28:13 | efc51534cdc397d71ea8de530f9273d2 | 33 / 64 (51.56%)
| 152.199.19.161:443 |
| 2021-05-07 13:14:40 | eed5e11b04019f0812c324fe12d4de41 | 43 / 70 (61.43%)
| 72.21.81.200:443 |
| 2021-05-07 11:06:01 | e1fa68c01dfc2c42aaf2f4a166ee9e2d | n/a | 152.199.19.161:443 |
| 2021-05-07 10:59:19 | e053d7e59e6eaf7de6580d16c9156b44 | 56 / 68 (82.35%)
| 152.199.19.161:443 |
| 2021-05-07 10:47:58 | e00a3a3cb473a080b3f419fd2fda8f3a | 38 / 62 (61.29%)
| 152.199.19.161:443 |
| 2021-05-07 10:26:39 | df489da7e4b7eb089f30354dfd943864 | 45 / 67 (67.16%)
| 152.199.19.161:443 |
| 2021-05-07 09:37:46 | da2c1e008cc7fd7a9a0ee14a8917afe7 | 56 / 70 (80.00%)
| 152.199.19.161:443 |
| 2021-05-07 08:48:49 | d5f064cca9dad079c5acb150dea7fe7c | 53 / 68 (77.94%)
| 152.199.19.161:443 |
| 2021-05-07 08:43:37 | d5104416a0c04ae2e75477ffbbd5497f | 41 / 69 (59.42%)
| 152.199.19.161:443 |
| 2021-05-07 08:30:25 | d478f5e0dc4d0c69339422063a63621f | 36 / 55 (65.45%)
| 72.21.81.200:443 |
| 2021-05-07 08:09:12 | 048758a86e5324253b8077ca3a4b8930 | 1 / 69 (1.45%)
| 104.22.25.131:443 |
| 2021-05-07 05:17:02 | b7b4438aebcba16693792b25236077d9 | 37 / 68 (54.41%)
| 152.199.19.161:443 |
| 2021-05-07 03:03:35 | 8df136717abd21dcb6f4a3e439509396 | 60 / 70 (85.71%)
| 152.199.19.161:443 |
| 2021-05-07 02:47:20 | 8822bb098ce5372c6b16bf785ac658dd | 42 / 70 (60.00%)
| 152.199.19.161:443 |
| 2021-05-07 02:23:06 | 7dc5044cca979f0b8f83dd62c73ec216 | 55 / 69 (79.71%)
| 72.21.81.200:443 |
| 2021-05-07 01:57:02 | 73d02095a2e52fb5a2d241b43f4de931 | 31 / 70 (44.29%)
| 152.199.19.161:443 |
| 2021-05-07 01:53:47 | 70a4173db934229c2ab50ccaebb27d58 | 38 / 69 (55.07%)
| 152.199.19.161:443 |
| 2021-05-06 22:51:07 | 1780efe08c06578bad93610567e40761 | 22 / 68 (32.35%)
| 151.101.37.188:443 |
| 2021-05-06 20:49:58 | 6aacfc914fa3cdefa71c974cb7a84f9b | 49 / 69 (71.01%)
| 152.199.19.161:443 |
| 2021-05-06 20:23:21 | 38236f567a3f21ec3ea37a127854d383 | n/a | 152.199.19.161:443 |
| 2021-05-06 20:22:47 | 1bf7febe8422c2fd3da0796ed5d3f7cb | n/a | 152.199.19.161:443 |
| 2021-05-06 20:20:07 | 5f8a50f3285845d621d3bf01ddd99596 | n/a | 72.21.81.200:443 |
| 2021-05-06 20:09:54 | 556e62f2c378b440db8e2feac0527e7e | n/a | 152.199.19.161:443 |
| 2021-05-06 20:02:44 | 52a84f11f5afcaaf30765d533cc945cb | n/a | 152.199.19.161:443 |
| 2021-05-06 19:46:30 | 49e2999b6ffcfd94ae0b219c2598c4a7 | 62 / 70 (88.57%)
| 152.199.19.161:443 |
| 2021-05-06 18:06:40 | 29e73878a0330c32a3eefc0871bb8206 | 50 / 54 (92.59%)
| 152.199.19.161:443 |
| 2021-05-06 16:42:39 | cb208d1fff837aa361ec1463da34d474 | n/a | 152.199.19.161:443 |
| 2021-05-06 16:36:12 | caa025d8b22e8bddabcc9ab53cba8a3f | 29 / 69 (42.03%)
| 152.199.19.161:443 |
| 2021-05-06 15:14:04 | be5fb4914fc1363b41534d5ca55f8cfa | 52 / 64 (81.25%)
| 152.199.19.161:443 |
| 2021-05-06 11:08:59 | b20b95521e4a26ccdb578f7dd10a279a | 47 / 58 (81.03%)
| 152.199.19.161:443 |
| 2021-05-06 07:35:07 | aed6bf974be5a48c3075c9348092042a | 56 / 68 (82.35%)
| 152.199.19.161:443 |
| 2021-05-06 05:48:45 | a095ce95d0dec4523c53070bb8ff4f38 | 36 / 69 (52.17%)
| 152.199.19.161:443 |
| 2021-05-06 04:45:35 | 837a01bae820b8605fe3f666ddd544ce | 50 / 70 (71.43%)
| 152.199.19.161:443 |
| 2021-05-06 04:34:28 | 60b026a7725b805cf2a4006ae3acd463 | n/a | 152.199.19.161:443 |
| 2021-05-06 03:45:33 | 600835f378868b71e6ec4d32335130ec | n/a | 72.21.81.200:443 |
| 2021-05-06 02:17:22 | 429c9f5b5902454bc13c9be712fb0d32 | 36 / 68 (52.94%)
| 152.199.19.161:443 |
| 2021-05-06 02:12:55 | 45d5a954e4aca72ba15cd85180cf6dd8 | 27 / 70 (38.57%)
| 72.21.81.200:443 |
| 2021-05-06 02:12:35 | 53f6a10c0becd9c6a5abda23ba5b0163 | 55 / 69 (79.71%)
| 72.21.81.200:443 |
| 2021-05-05 23:48:34 | 1dff19026f8c01548e886853e104e71e | 25 / 69 (36.23%)
| 184.85.242.79:443 |
| 2021-05-05 22:05:39 | 06e89d862d4424dc957165a716519c90 | 52 / 70 (74.29%)
| 152.199.19.161:443 |
| 2021-05-05 20:50:58 | 76ef0152828d050e2a5eacbad019c1a8 | 61 / 71 (85.92%)
| 152.199.19.161:443 |
| 2021-05-05 20:49:39 | 86419fd63a7e28a629cbe1f57e5bdf41 | 37 / 70 (52.86%)
| 3.23.190.137:443 |
| 2021-05-05 19:19:43 | ae2125585fa5d0ca2db42c77921f9991 | 48 / 69 (69.57%)
| 152.199.19.161:443 |
| 2021-05-05 14:44:18 | aafb7c24b6a9e8b3597ae4c360f6fef6 | 48 / 70 (68.57%)
| 112.34.111.75:443 |
| 2021-05-05 10:28:26 | 5ac570cf2455b6ae68e85c388cab7b86 | n/a | 152.199.19.161:443 |
| 2021-05-05 09:47:55 | 86a32cf4e1dee260f440e7bb348aac84 | n/a | 35.166.114.172:8880 |
| 2021-05-05 09:45:14 | 659119ec9d6180ed72464461c20cfd7f | n/a | 72.21.81.200:443 |
| 2021-05-05 09:34:02 | 2df4cf887d46ef0e0c901f18d6284645 | 46 / 69 (66.67%)
| 110.242.68.177:443 |
| 2021-05-05 09:25:30 | 0b36daf6c5ae90345cf8c6a98b377b49 | 52 / 68 (76.47%)
| 152.199.19.161:443 |
| 2021-05-05 09:18:45 | 519ac665449eaa3c1ade282aa211085e | n/a | 198.11.132.221:443 |
| 2021-05-05 08:51:16 | 8945f50157317259c29b4fd9494e3399 | n/a | 152.199.19.161:443 |
| 2021-05-05 08:25:59 | 95aee0b355a1888051cd3c0fcc1ca1fb | 47 / 68 (69.12%)
| 152.199.19.161:443 |
| 2021-05-05 08:03:26 | 01fe7447b44c11d0ac0d433ecc0132f1 | n/a | 47.88.68.21:443 |
| 2021-05-05 07:34:23 | 563eebf21069a0627e4bcfafbd571988 | n/a | 152.199.19.161:443 |
| 2021-05-05 07:08:23 | 1392c6ad6fb7bec7dbf802eafecb2ed7 | n/a | 152.199.19.161:443 |
| 2021-05-05 06:01:47 | a2b648b031f35a76fc742e83e23ed9a8 | 52 / 69 (75.36%)
| 152.199.19.161:443 |
| 2021-05-05 05:44:40 | 0987a36a6c3631c098b58de81cda0f08 | n/a | 152.199.19.161:443 |
| 2021-05-05 05:39:04 | 659996d136b749b4cf98bfebaa3b8d44 | 47 / 68 (69.12%)
| 152.199.19.161:443 |
| 2021-05-05 04:36:58 | 4726e86c5b293fd398a75ea142c35c3b | 50 / 69 (72.46%)
| 152.199.19.161:443 |
| 2021-05-05 02:55:46 | 87278844a88856272f747fdf81eec2d1 | 48 / 69 (69.57%)
| 152.199.19.161:443 |
| 2021-05-05 02:05:19 | 2349e73a473bb41e6e856dd754d3909a | n/a | 72.21.81.200:443 |
| 2021-05-05 01:44:24 | 5a265fc4f752caf58fe0986501f9593f | n/a | 152.199.19.161:443 |
| 2021-05-04 22:29:51 | 0f2dc7eb47f00f9cac1203efae6f7c5c | 52 / 68 (76.47%)
| 152.199.19.161:443 |
| 2021-05-04 12:12:24 | f84569d5639ce7524153cb4bec804eb3 | 60 / 70 (85.71%)
| 152.199.19.161:443 |
| 2021-05-04 08:03:00 | e0127631396fc93d4824345602a106c3 | n/a | 152.199.19.161:443 |
| 2021-05-04 07:33:41 | dc18d24db910c70e3026a742404e2399 | 55 / 69 (79.71%)
| 72.21.81.200:443 |
| 2021-05-04 07:29:16 | db990c84bf0426fc9f4e627537b01cc9 | 40 / 70 (57.14%)
| 152.199.19.161:443 |
| 2021-05-04 06:47:20 | d5b117e25b6ef61c3ce65caf4ff44509 | n/a | 13.226.211.39:443 |
| 2021-05-04 06:47:11 | 92158ea88232525ce958497ffecebdd1 | 46 / 68 (67.65%)
| 152.199.19.161:443 |
| 2021-05-04 06:32:58 | c80ca6e0875b69a759b57e4c9e41b9e1 | 52 / 70 (74.29%)
| 152.199.19.161:443 |
| 2021-05-04 06:29:56 | d2ddacae2c8c074340f5a51200190d74 | n/a | 152.199.19.161:443 |
| 2021-05-04 06:07:43 | c2b55eda98a3edfd4d75f0f1402ee354 | 45 / 64 (70.31%)
| 152.199.19.161:443 |
| 2021-05-04 05:41:10 | c3ef5d5b4d8107c28edda1a0b922b698 | 56 / 71 (78.87%)
| 72.21.81.200:443 |
| 2021-05-04 04:43:48 | b73f44d9d9ddf4ae1a7ca68fda349c5c | 21 / 70 (30.00%)
| 152.199.19.161:443 |
| 2021-05-04 04:41:36 | af24fd1221ce3ba47353753de83575cb | n/a | 72.21.81.200:443 |
| 2021-05-04 04:15:30 | 8eaa2164f9dfab39dd7e4f651804aeb6 | 50 / 70 (71.43%)
| 152.199.19.161:443 |
| 2021-05-04 02:14:27 | a31bee1e5a3a3bd6bb7e3ef46d859cc1 | 51 / 70 (72.86%)
| 152.199.19.161:443 |
| 2021-05-04 02:11:54 | 890fddf4d52d04a02915817a14713c36 | n/a | 152.199.19.161:443 |
| 2021-05-04 01:23:16 | 82a76c6d295e62da26954f09aba4c038 | 51 / 69 (73.91%)
| 152.199.19.161:443 |
| 2021-05-04 01:11:57 | 87b24a9c7eea73232c361b163936c7b6 | 51 / 70 (72.86%)
| 152.199.19.161:443 |
| 2021-05-04 00:59:00 | 74233ab68c78dc348f9e888dec9680d6 | 54 / 69 (78.26%)
| 152.199.19.161:443 |
| 2021-05-04 00:07:55 | 4ccd092d5a2a9f314d1929b501d32f48 | 50 / 55 (90.91%)
| 152.199.19.161:443 |
| 2021-05-03 23:42:47 | 4fe3aa60cf8913e44df47f3563813212 | 48 / 69 (69.57%)
| 152.199.19.161:443 |
| 2021-05-03 23:21:39 | 5364aeba2df531a04f4ba9b22b92d40c | 52 / 70 (74.29%)
| 152.199.19.161:443 |
| 2021-05-03 22:34:05 | 37f12b44a78f10e933899c498832c4a5 | 50 / 70 (71.43%)
| 152.199.19.161:443 |
| 2021-05-03 22:20:24 | 37466bc3925c165b1779b4989be47237 | 51 / 70 (72.86%)
| 152.199.19.161:443 |
| 2021-05-03 22:20:17 | 38aa29aa0af5f61217d5ba737b9167f3 | n/a | 72.21.81.200:443 |
| 2021-05-03 22:06:41 | 0755e00f264d6e6079c0b78870f18690 | 57 / 70 (81.43%)
| 152.199.19.161:443 |
| 2021-05-03 21:49:58 | 2b5de678cea74c471e26b9e860da243f | n/a | 152.199.19.161:443 |
# of entries: 100 (max: 100)