JA3 Fingerprints
You can find further information about the JA3 fingerprint 57f3642b4e37e28f5cbe3020c9331b4c, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 57f3642b4e37e28f5cbe3020c9331b4c |
|---|---|
| First seen: | 2018-08-28 15:54:53 UTC |
| Last seen: | 2020-09-21 14:10:21 UTC |
| Status: | Blacklisted |
| Malware samples: | 7'066 |
| Destination IPs: | 492 |
| Malware: | Gozi  |
| Listing date: | 2018-11-14 00:00:00 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2020-09-21 14:10:21 | eae09b37b07211ceee452a7e2d968306 |  37 / 43 (86.05%)
| 152.199.19.161:443 |
| 2020-09-21 12:40:13 | e6463a6c6fc33e2b09a78196d11f6292 | 47 / 68 (69.12%)
| 152.199.19.161:443 |
| 2020-09-21 12:11:58 | e5060eca32cce03d650247a106455caf | 57 / 67 (85.07%)
| 152.199.19.161:443 |
| 2020-09-21 12:05:38 | bffb52ee8a06d8c7162abc747e60bbcf | 57 / 70 (81.43%)
| 152.199.19.161:443 |
| 2020-09-21 11:20:06 | c1cba6986128d4d7a6c4c701263e9fce | 24 / 55 (43.64%)
| 152.199.19.161:443 |
| 2020-09-21 11:15:38 | d85de5b1b38ccbd4cd09f87c89d4985c | 47 / 68 (69.12%)
| 85.94.194.169:443 |
| 2020-09-21 11:15:38 | d85de5b1b38ccbd4cd09f87c89d4985c | 47 / 68 (69.12%)
| 208.100.26.245:443 |
| 2020-09-20 23:09:41 | b60e4b14b2ec0eb70e8be67713b8bd01 | 60 / 69 (86.96%)
| 152.199.19.161:443 |
| 2020-09-20 20:26:20 | b3b097ead2cc9dfc10bae157836ba699 | 42 / 67 (62.69%)
| 213.180.204.232:443 |
| 2020-09-20 20:26:20 | b3b097ead2cc9dfc10bae157836ba699 | 42 / 67 (62.69%)
| 213.180.204.158:443 |
| 2020-09-20 20:26:20 | b3b097ead2cc9dfc10bae157836ba699 | 42 / 67 (62.69%)
| 77.88.55.80:443 |
| 2020-09-20 20:26:19 | b3b097ead2cc9dfc10bae157836ba699 | 42 / 67 (62.69%)
| 213.180.204.36:443 |
| 2020-09-20 20:26:19 | b3b097ead2cc9dfc10bae157836ba699 | 42 / 67 (62.69%)
| 213.180.193.234:443 |
| 2020-09-20 20:26:19 | b3b097ead2cc9dfc10bae157836ba699 | 42 / 67 (62.69%)
| 87.250.250.33:443 |
| 2020-09-20 20:26:18 | b3b097ead2cc9dfc10bae157836ba699 | 42 / 67 (62.69%)
| 93.158.134.236:443 |
| 2020-09-20 20:26:18 | b3b097ead2cc9dfc10bae157836ba699 | 42 / 67 (62.69%)
| 77.88.21.29:443 |
| 2020-09-20 19:55:23 | b2eb91fcae103869b3bba523f566c4af | 60 / 69 (86.96%)
| 162.241.46.48:443 |
| 2020-09-20 17:21:13 | afc8b74fdeeb0e9cfa61fef5e324c3a4 | 12 / 69 (17.39%)
| 152.199.19.161:443 |
| 2020-09-18 02:15:51 | 3f9f9c8674fb22321d7e7beeab2ecd78 | 43 / 70 (61.43%)
| 87.250.250.232:443 |
| 2020-09-18 02:15:50 | 3f9f9c8674fb22321d7e7beeab2ecd78 | 43 / 70 (61.43%)
| 77.88.21.29:443 |
| 2020-09-18 02:15:50 | 3f9f9c8674fb22321d7e7beeab2ecd78 | 43 / 70 (61.43%)
| 213.180.204.158:443 |
| 2020-09-18 02:15:50 | 3f9f9c8674fb22321d7e7beeab2ecd78 | 43 / 70 (61.43%)
| 5.255.255.50:443 |
| 2020-09-18 02:15:49 | 3f9f9c8674fb22321d7e7beeab2ecd78 | 43 / 70 (61.43%)
| 213.180.193.234:443 |
| 2020-09-18 02:15:49 | 3f9f9c8674fb22321d7e7beeab2ecd78 | 43 / 70 (61.43%)
| 87.250.250.33:443 |
| 2020-09-18 02:15:49 | 3f9f9c8674fb22321d7e7beeab2ecd78 | 43 / 70 (61.43%)
| 93.158.134.36:443 |
| 2020-09-18 02:15:48 | 3f9f9c8674fb22321d7e7beeab2ecd78 | 43 / 70 (61.43%)
| 213.180.204.236:443 |
| 2020-09-17 23:37:42 | 277500cf1f80c9d0aa79a3554639831a | 13 / 56 (23.21%)
| 172.67.67.197:443 |
| 2020-09-17 23:37:42 | 277500cf1f80c9d0aa79a3554639831a | 13 / 56 (23.21%)
| 87.248.100.208:443 |
| 2020-09-17 23:32:37 | 231ac4e3366dfc5cdff83ebc238109c6 | 17 / 53 (32.08%)
| 2.19.195.57:443 |
| 2020-09-17 23:32:37 | 231ac4e3366dfc5cdff83ebc238109c6 | 17 / 53 (32.08%)
| 104.27.161.197:443 |
| 2020-09-17 23:32:37 | 231ac4e3366dfc5cdff83ebc238109c6 | 17 / 53 (32.08%)
| 54.192.86.90:443 |
| 2020-09-17 23:32:37 | 231ac4e3366dfc5cdff83ebc238109c6 | 17 / 53 (32.08%)
| 185.196.72.10:443 |
| 2020-09-17 23:32:37 | 231ac4e3366dfc5cdff83ebc238109c6 | 17 / 53 (32.08%)
| 95.131.136.68:443 |
| 2020-09-17 23:32:37 | 231ac4e3366dfc5cdff83ebc238109c6 | 17 / 53 (32.08%)
| 151.101.38.217:443 |
| 2020-09-15 21:26:31 | 63e4eaaace17839fa4e025c1856c79df | 43 / 46 (93.48%)
| 152.199.19.161:443 |
| 2020-09-15 20:41:55 | 5a33f334201dac97cdd9adf41ddcddaf | 9 / 68 (13.24%)
| 198.11.136.24:443 |
| 2020-09-15 20:22:18 | 4ed7a2209607cf34ddf2c3cc70ec3cfa | 38 / 66 (57.58%)
| 54.38.37.22:443 |
| 2020-09-15 19:55:23 | 3007f35da83c1b43e7cea830a95d399a | 62 / 69 (89.86%)
| 152.199.19.161:443 |
| 2020-09-15 18:17:16 | 0eb3b2270cee3f580952de7e0e42400f | n/a | 152.199.19.161:443 |
| 2020-09-15 09:24:58 | ab2858fac4ef84be74d4010b7b122b02 | 58 / 67 (86.57%)
| 162.241.46.48:443 |
| 2020-09-15 04:47:54 | a23393bedb8e9430fbaa5c1784bf09f1 | 59 / 68 (86.76%)
| 162.241.46.48:443 |
| 2020-09-15 03:24:19 | a2abfb9daaba7cae8857e626b215625c | 61 / 69 (88.41%)
| 152.199.19.161:443 |
| 2020-09-15 01:29:51 | 946b876004f1236e377f6613480e1e72 | n/a | 72.21.81.200:443 |
| 2020-09-15 00:41:25 | 798f3a06656edfa6f563021d137816de | 42 / 70 (60.00%)
| 152.199.19.161:443 |
| 2020-09-14 19:50:38 | 16d6b965baad20e5989859d73d79124c | 47 / 66 (71.21%)
| 152.199.19.161:443 |
| 2020-09-12 21:15:52 | 9464fae8536298656acf9290f693f328 | 0 / 41 (0.00%)
| 104.244.42.193:443 |
| 2020-09-12 21:15:52 | 9464fae8536298656acf9290f693f328 | 0 / 41 (0.00%)
| 192.0.78.13:443 |
| 2020-09-11 16:14:11 | 63d72a78a9b898f0ccbf128d4ec36171 | 43 / 68 (63.24%)
| 87.250.250.33:443 |
| 2020-09-11 16:14:10 | 63d72a78a9b898f0ccbf128d4ec36171 | 43 / 68 (63.24%)
| 87.250.250.232:443 |
| 2020-09-11 16:14:10 | 63d72a78a9b898f0ccbf128d4ec36171 | 43 / 68 (63.24%)
| 213.180.204.236:443 |
| 2020-09-11 16:14:10 | 63d72a78a9b898f0ccbf128d4ec36171 | 43 / 68 (63.24%)
| 77.88.55.50:443 |
| 2020-09-11 16:14:10 | 63d72a78a9b898f0ccbf128d4ec36171 | 43 / 68 (63.24%)
| 87.250.250.36:443 |
| 2020-09-11 16:14:09 | 63d72a78a9b898f0ccbf128d4ec36171 | 43 / 68 (63.24%)
| 213.180.193.234:443 |
| 2020-09-11 16:14:08 | 63d72a78a9b898f0ccbf128d4ec36171 | 43 / 68 (63.24%)
| 213.180.204.158:443 |
| 2020-09-11 15:52:49 | 5739e3e8d2d122e788826e9f9e3c6852 | 0 / 43 (0.00%)
| 172.217.168.14:443 |
| 2020-09-11 15:52:49 | 5739e3e8d2d122e788826e9f9e3c6852 | 0 / 43 (0.00%)
| 13.224.95.66:443 |
| 2020-09-11 15:52:49 | 5739e3e8d2d122e788826e9f9e3c6852 | 0 / 43 (0.00%)
| 151.101.242.194:443 |
| 2020-09-11 15:52:49 | 5739e3e8d2d122e788826e9f9e3c6852 | 0 / 43 (0.00%)
| 104.193.109.63:443 |
| 2020-09-11 15:52:49 | 5739e3e8d2d122e788826e9f9e3c6852 | 0 / 43 (0.00%)
| 173.249.24.71:443 |
| 2020-09-11 15:52:49 | 5739e3e8d2d122e788826e9f9e3c6852 | 0 / 43 (0.00%)
| 151.101.241.164:443 |
| 2020-09-11 15:52:49 | 5739e3e8d2d122e788826e9f9e3c6852 | 0 / 43 (0.00%)
| 87.248.100.208:443 |
| 2020-09-11 15:51:16 | 562a4b0f0378464431961dbb4bd2f292 | n/a | 152.199.19.161:443 |
| 2020-09-11 14:28:31 | 0a295d95406d9e07f2ad06b38db50622 | 53 / 67 (79.10%)
| 152.199.19.161:443 |
| 2020-09-11 04:18:05 | b166e71a5546afd8e68fb7ac29f8a168 | 60 / 68 (88.24%)
| 68.66.226.85:443 |
| 2020-09-10 19:42:02 | 95e6cfa29835ce779148fb5e664308b8 | n/a | 152.199.19.161:443 |
| 2020-09-09 22:09:33 | 8dbbd318e7dc7b6302a1da3c1246f3c8 | 43 / 67 (64.18%)
| 152.199.19.161:443 |
| 2020-09-09 19:16:24 | 1d5f419e28bdfea857df34a1c6fa681f | 34 / 42 (80.95%)
| 152.199.19.161:443 |
| 2020-09-09 12:26:25 | dedc1943010ca58a02abd4fb8526143a | 48 / 67 (71.64%)
| 72.21.81.200:443 |
| 2020-09-09 12:17:03 | de85c5404eca1a6b42152d35fea20f30 | 48 / 73 (65.75%)
| 205.204.101.182:443 |
| 2020-09-09 04:11:55 | c9278b3518fc5fa58d3579d537782fe6 | 17 / 68 (25.00%)
| 5.255.255.77:443 |
| 2020-09-09 04:11:54 | c9278b3518fc5fa58d3579d537782fe6 | 17 / 68 (25.00%)
| 93.158.134.36:443 |
| 2020-09-09 04:11:54 | c9278b3518fc5fa58d3579d537782fe6 | 17 / 68 (25.00%)
| 213.180.193.234:443 |
| 2020-09-09 04:11:54 | c9278b3518fc5fa58d3579d537782fe6 | 17 / 68 (25.00%)
| 87.250.250.33:443 |
| 2020-09-09 04:11:53 | c9278b3518fc5fa58d3579d537782fe6 | 17 / 68 (25.00%)
| 213.180.204.158:443 |
| 2020-09-09 04:11:53 | c9278b3518fc5fa58d3579d537782fe6 | 17 / 68 (25.00%)
| 213.180.204.236:443 |
| 2020-09-09 04:11:53 | c9278b3518fc5fa58d3579d537782fe6 | 17 / 68 (25.00%)
| 87.250.250.232:443 |
| 2020-09-09 01:16:14 | be1651fd905fd1b5685864396a4de274 | 23 / 66 (34.85%)
| 195.78.94.76:443 |
| 2020-09-09 01:16:14 | be1651fd905fd1b5685864396a4de274 | 23 / 66 (34.85%)
| 67.195.231.20:443 |
| 2020-09-09 01:16:14 | be1651fd905fd1b5685864396a4de274 | 23 / 66 (34.85%)
| 98.137.11.157:443 |
| 2020-09-09 01:16:14 | be1651fd905fd1b5685864396a4de274 | 23 / 66 (34.85%)
| 151.101.25.188:443 |
| 2020-09-09 01:16:14 | be1651fd905fd1b5685864396a4de274 | 23 / 66 (34.85%)
| 151.101.1.164:443 |
| 2020-09-08 22:24:26 | 692b2d101242dff25d3a26514f269a28 | n/a | 152.199.19.161:443 |
| 2020-09-08 22:17:05 | 627a64d4b08d55faf3b8e40ea8dac7cc | 41 / 67 (61.19%)
| 93.158.134.236:443 |
| 2020-09-08 22:17:04 | 627a64d4b08d55faf3b8e40ea8dac7cc | 41 / 67 (61.19%)
| 93.158.134.36:443 |
| 2020-09-08 22:17:04 | 627a64d4b08d55faf3b8e40ea8dac7cc | 41 / 67 (61.19%)
| 87.250.251.232:443 |
| 2020-09-08 22:17:04 | 627a64d4b08d55faf3b8e40ea8dac7cc | 41 / 67 (61.19%)
| 5.255.255.55:443 |
| 2020-09-08 22:17:04 | 627a64d4b08d55faf3b8e40ea8dac7cc | 41 / 67 (61.19%)
| 87.250.250.33:443 |
| 2020-09-08 22:17:04 | 627a64d4b08d55faf3b8e40ea8dac7cc | 41 / 67 (61.19%)
| 213.180.204.158:443 |
| 2020-09-08 22:17:04 | 627a64d4b08d55faf3b8e40ea8dac7cc | 41 / 67 (61.19%)
| 213.180.193.234:443 |
| 2020-09-08 14:33:37 | b91b8997e7a194056db8babdc0001170 | 52 / 68 (76.47%)
| 152.199.19.161:443 |
| 2020-09-08 07:27:56 | b0ac3705e656d97bc66f2836243c407a | n/a | 152.199.19.161:443 |
| 2020-09-08 00:43:07 | ac39c99d6a089327f7f81f511e71d054 | 62 / 68 (91.18%)
| 152.199.19.161:443 |
| 2020-09-08 00:24:11 | aa32f7e7810d274c6c1073806f3c57a2 | 61 / 69 (88.41%)
| 152.199.19.161:443 |
| 2020-09-07 03:30:48 | a043bfbd1a82f5fcd7e25cdd2ebac91d | 54 / 70 (77.14%)
| 152.199.19.161:443 |
| 2020-09-06 16:18:44 | 4654c410db71e7507758f16dde7e05f6 | 35 / 68 (51.47%)
| 152.199.19.161:443 |
| 2020-09-03 21:40:44 | 8709aac84d256a2f0553e561961e97f0 | 54 / 68 (79.41%)
| 152.199.19.161:443 |
| 2020-09-03 17:53:17 | 14d34d3e73b566d25927c43c18c283e5 | 46 / 68 (67.65%)
| 165.22.207.20:443 |
| 2020-09-03 17:45:07 | 0e7190ca2921ed0b42299b24c2a5d503 | n/a | 213.180.204.236:443 |
| 2020-09-03 17:45:06 | 0e7190ca2921ed0b42299b24c2a5d503 | n/a | 213.180.204.232:443 |
| 2020-09-03 17:45:06 | 0e7190ca2921ed0b42299b24c2a5d503 | n/a | 213.180.193.234:443 |
# of entries: 100 (max: 100)