JA3 Fingerprints
You can find further information about the JA3 fingerprint 57f3642b4e37e28f5cbe3020c9331b4c, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 57f3642b4e37e28f5cbe3020c9331b4c |
|---|---|
| First seen: | 2018-08-28 15:54:53 UTC |
| Last seen: | 2021-08-11 13:05:18 UTC |
| Status: | Blacklisted |
| Malware samples: | 17'396 |
| Destination IPs: | 1'035 |
| Malware: | Gozi  |
| Listing date: | 2018-11-14 00:00:00 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2022-01-16 14:57:06 | a6bd2e28ae6f984314e06efb02e61776 |  46 / 58 (79.31%)
| 152.199.19.161:443 |
| 2022-01-16 14:11:04 | a8a087c054626a641a41e373aa96df3b | 59 / 69 (85.51%)
| 152.199.19.161:443 |
| 2022-01-16 13:44:54 | a369464f0bde4436688f01e7142de504 | n/a | 72.21.81.200:443 |
| 2022-01-16 13:37:45 | a896e0a3b2dbac9146d4d9cd810b9e60 | n/a | 152.199.19.161:443 |
| 2022-01-16 12:58:50 | a6f6a8d4eec6c2a705733df0dd22dd3d | 55 / 68 (80.88%)
| 152.199.19.161:443 |
| 2022-01-16 12:15:08 | ab2606a43e663c4f54527855286c1c63 | 57 / 67 (85.07%)
| 152.199.19.161:443 |
| 2022-01-16 11:30:37 | a8ebb141cb91685587deb7f4de504ba9 | 58 / 69 (84.06%)
| 152.199.19.161:443 |
| 2022-01-16 11:21:45 | a5706c304808226d44f4fc73fb1d86b0 | 59 / 69 (85.51%)
| 152.199.19.161:443 |
| 2022-01-16 10:53:56 | b40a71efa0031f5375ee4ee1458e20ea | 59 / 69 (85.51%)
| 152.199.19.161:443 |
| 2022-01-16 10:17:33 | b384a71dfb33154de4a67fe869f8607f | n/a | 152.199.19.161:443 |
| 2022-01-16 10:13:49 | ae2e71974c0ea71de9180e07a18fc3f6 | 52 / 63 (82.54%)
| 152.199.19.161:443 |
| 2022-01-16 08:11:15 | aaf4ce61a2934f34e3b7efa65972a2f8 | 54 / 68 (79.41%)
| 152.199.19.161:443 |
| 2022-01-16 06:24:53 | b4e56c0e758edf6d594128dd390f8107 | 57 / 67 (85.07%)
| 152.199.19.161:443 |
| 2022-01-16 06:23:15 | a15616e36de77cd7a4e93b7dc4d17d18 | 51 / 62 (82.26%)
| 72.21.81.200:443 |
| 2022-01-16 05:28:21 | b83c4709c57be9c09ba93c50e170a7d7 | n/a | 152.199.19.161:443 |
| 2022-01-16 04:22:12 | b122851c30d3608f40084b5b772412fe | 54 / 68 (79.41%)
| 152.199.19.161:443 |
| 2022-01-16 03:24:26 | af8561052fcd29c7d8e79522ea9bb436 | 59 / 69 (85.51%)
| 152.199.19.161:443 |
| 2022-01-16 02:35:46 | a3ba8145864b9f195e75126bfcbb44d9 | n/a | 152.199.19.161:443 |
| 2022-01-16 02:35:46 | a3ba8145864b9f195e75126bfcbb44d9 | n/a | 152.199.19.161:443 |
| 2022-01-16 01:28:45 | b551db0809e5d2c20fce8d07dc671e19 | 59 / 69 (85.51%)
| 72.21.81.200:443 |
| 2022-01-16 01:17:35 | ac492eecf82b4d1d5b4bfc13716abba8 | 59 / 69 (85.51%)
| 152.199.19.161:443 |
| 2022-01-15 23:33:42 | b129b6d8e57cb101325f731e7af50b54 | 58 / 68 (85.29%)
| 72.21.81.200:443 |
| 2022-01-15 22:02:33 | 8f785bc2e2a254e3f697c1d3bc88a7e2 | n/a | 152.199.19.161:443 |
| 2022-01-15 21:43:44 | 87c78f52c59d45ca4e920c70975b938b | n/a | 72.21.81.200:443 |
| 2022-01-15 21:23:12 | 75bc0dd4f0a81b03b42cad842efaa86b | n/a | 152.199.19.161:443 |
| 2022-01-15 20:58:32 | 58a1feb65567b6dd63bf7653d367733e | n/a | 152.199.19.161:443 |
| 2022-01-15 20:12:30 | 0b242744bcc6faab26a4ed1e8678e3b9 | 56 / 68 (82.35%)
| 152.199.19.161:443 |
| 2022-01-15 20:05:51 | 2c46136c464b74dc69c5caff4d42b82e | 35 / 68 (51.47%)
| 23.201.243.21:443 |
| 2022-01-15 20:01:41 | 32d26fafb7e49d50ff52cd42b0758685 | 58 / 64 (90.62%)
| 152.199.19.161:443 |
| 2022-01-15 19:50:37 | 271a9aa5f018da72981b2a1ed71f2ef0 | 56 / 65 (86.15%)
| 72.21.81.200:443 |
| 2022-01-15 18:27:54 | b5de61c5b92d64d22077926ed2739dae | n/a | 152.199.19.161:443 |
| 2022-01-15 17:45:04 | adbb36a1530f2b58c5150cfdeb13e60f | n/a | 152.199.19.161:443 |
| 2022-01-15 16:01:23 | aba2f5d5c98d8b719cd21f3bb4d9edd7 | 57 / 68 (83.82%)
| 152.199.19.161:443 |
| 2022-01-15 15:29:32 | aaa75edce57bcdb9a59227806ae16feb | 58 / 68 (85.29%)
| 152.199.19.161:443 |
| 2022-01-15 15:20:18 | a9e5311bd49767a3a822b6fd13d4dfb6 | 47 / 68 (69.12%)
| 152.199.19.161:443 |
| 2022-01-15 15:18:32 | b55c669a3c9086b9643d31a79595c333 | n/a | 152.199.19.161:443 |
| 2022-01-15 15:15:43 | a64a81447d7004e44d3623fa32213b2d | 59 / 69 (85.51%)
| 152.199.19.161:443 |
| 2022-01-15 14:33:15 | adc7d32009944dc0594f8daf0e592f7d | 59 / 68 (86.76%)
| 152.199.19.161:443 |
| 2022-01-15 14:07:45 | af0119c3e7097930ab3304b82e78a635 | 58 / 69 (84.06%)
| 72.21.81.200:443 |
| 2022-01-15 12:40:50 | ac0fa9fe7f67e5b5c6fa30faf0c28a97 | n/a | 152.199.19.161:443 |
| 2022-01-15 11:27:08 | a5ac4ed82b3b1fa499812d365ec834d9 | 58 / 68 (85.29%)
| 152.199.19.161:443 |
| 2022-01-15 11:17:39 | a054b805e9e87e8d6b4cd2b3af6374e7 | 57 / 67 (85.07%)
| 152.199.19.161:443 |
| 2022-01-15 11:12:29 | a03586231ce2822b5cbde2c3ccde1fa7 | 59 / 69 (85.51%)
| 72.21.81.200:443 |
| 2022-01-15 10:57:13 | a223fb0a5696c84dc2d3d29b17500016 | 28 / 67 (41.79%)
| 152.199.19.161:443 |
| 2022-01-15 10:27:26 | a484cdbf6cde682ff3813d5763209720 | 60 / 69 (86.96%)
| 152.199.19.161:443 |
| 2022-01-15 07:41:24 | a7d2ffb114a5cce7affe8423c3d073b4 | n/a | 152.199.19.161:443 |
| 2022-01-15 07:08:41 | ba6d518880bf81459d85743736e0f7dc | 42 / 61 (68.85%)
| 152.199.19.161:443 |
| 2022-01-15 06:25:47 | a72a73c0d57df9ee53f20f42ded1f365 | 54 / 68 (79.41%)
| 152.199.19.161:443 |
| 2022-01-15 06:04:09 | ad2885820f393c486e3ac490703522be | 53 / 65 (81.54%)
| 152.199.19.161:443 |
| 2022-01-15 06:02:32 | acc805f6be049ab4715bf46b2a1747f8 | 57 / 69 (82.61%)
| 152.199.19.161:443 |
| 2022-01-15 05:25:48 | aa329bbf981b4b1ecac61b91f8543bf3 | 59 / 69 (85.51%)
| 72.21.81.200:443 |
| 2022-01-15 05:19:54 | ad69a42989ebc9cb546fd524283b37db | 51 / 67 (76.12%)
| 152.199.19.161:443 |
| 2022-01-15 05:19:30 | b5989feaa08c0722d2970bc4520ecb03 | 58 / 68 (85.29%)
| 152.199.19.161:443 |
| 2022-01-15 05:16:20 | a9a6f12d00212370e000141d05f1b612 | 54 / 69 (78.26%)
| 152.199.19.161:443 |
| 2022-01-15 04:43:15 | a51d1735b0f2d220b48fda4bab0d162c | n/a | 152.199.19.161:443 |
| 2022-01-15 04:32:42 | ae54311337b6cca763c523ca6b0dc838 | 53 / 68 (77.94%)
| 152.199.19.161:443 |
| 2022-01-15 04:21:27 | b601015a3a8f1d7d302b9bf766d0e91b | 50 / 69 (72.46%)
| 152.199.19.161:443 |
| 2022-01-15 04:09:08 | a5da1202c9467a0d48194370f31ff40f | 58 / 69 (84.06%)
| 152.199.19.161:443 |
| 2022-01-15 04:03:07 | b0b941c9228d5c1b18bf115c3c190e40 | 59 / 68 (86.76%)
| 152.199.19.161:443 |
| 2022-01-15 03:34:28 | a716ca9a5fa87c2dcb6e180a89f2e1cd | 52 / 68 (76.47%)
| 152.199.19.161:443 |
| 2022-01-15 03:08:16 | aa268bf1792e629e6e443609ff6ba743 | 58 / 68 (85.29%)
| 152.199.19.161:443 |
| 2022-01-15 02:50:55 | a0c86a21d6ff202fac7867c53ba72e6b | 57 / 67 (85.07%)
| 152.199.19.161:443 |
| 2022-01-15 02:21:50 | ae963df9a9b602eae5ef1ae64a79c1be | 59 / 68 (86.76%)
| 72.21.81.200:443 |
| 2022-01-15 02:21:43 | b81480031918b22829f557a494e3df72 | 57 / 68 (83.82%)
| 72.21.81.200:443 |
| 2022-01-15 00:10:46 | a627ccf07acb6a3bac6bf8fc006b8f29 | 58 / 66 (87.88%)
| 152.199.19.161:443 |
| 2022-01-14 23:31:32 | b495ad8b6bc8dab7343c00338a197497 | 51 / 69 (73.91%)
| 152.199.19.161:443 |
| 2022-01-14 22:59:52 | aee8584ca18eeeaf8c4a378b59679469 | 57 / 68 (83.82%)
| 152.199.19.161:443 |
| 2022-01-14 22:31:06 | a86ba9347fc093ef4b53160a74acc5d5 | 57 / 66 (86.36%)
| 152.199.19.161:443 |
| 2022-01-14 21:15:19 | a0ba886cf7279287d583bc3cf6f42962 | 57 / 68 (83.82%)
| 152.199.19.161:443 |
| 2022-01-14 20:33:11 | c65c5bdff53ade394e8ec032b7e1a7d7 | n/a | 152.199.19.161:443 |
| 2022-01-14 20:20:34 | c15e9a8e3f5684b82552950b11422e68 | n/a | 152.199.19.161:443 |
| 2022-01-14 19:42:26 | b3fa9990f02ca8079bfb93cd74037981 | n/a | 152.199.19.161:443 |
| 2022-01-14 18:22:20 | 977e045d82dccbd0fc0bb064481205af | n/a | 72.21.81.200:443 |
| 2022-01-14 17:57:42 | 8fb77edbae0c40e1e19d82a406b7615a | n/a | 72.21.81.200:443 |
| 2022-01-14 16:59:48 | aea21ab88cca720a34ec1c9c4794f82a | 17 / 68 (25.00%)
| 72.21.81.200:443 |
| 2022-01-14 16:40:41 | 614c39009f33eb0a386622df442dcf5f | n/a | 152.199.19.161:443 |
| 2022-01-14 16:27:38 | 565b20055fea712f35acb4d98fcd7d80 | n/a | 152.199.19.161:443 |
| 2022-01-14 15:32:41 | 2cb9b8058fdfb462f1ae98f8a2e031b1 | 58 / 69 (84.06%)
| 152.199.19.161:443 |
| 2022-01-14 14:15:09 | 80df148ef5a932085c641928ef79923e | n/a | 152.199.19.161:443 |
| 2022-01-14 14:10:04 | 7ebf41b7e0d24473f2ad0b25e354f615 | n/a | 152.199.19.161:443 |
| 2022-01-14 13:33:54 | 5ff025a866aeb9b52a4f70cfc6135724 | n/a | 152.199.19.161:443 |
| 2022-01-14 13:07:05 | 51b0a7a85958d279e7d6b65f76220fd9 | n/a | 152.199.19.161:443 |
| 2022-01-14 12:48:54 | 4337553d9ec463f1815ac66f32fd657b | n/a | 152.199.19.161:443 |
| 2022-01-13 22:02:13 | 1cc378412416674f7987133febdd9bcc | n/a | 152.199.19.161:443 |
| 2022-01-12 00:36:47 | f022fc604c9bebe1d0d298f7eb6db575 | n/a | 152.199.19.161:443 |
| 2022-01-11 23:31:49 | bcf99d1556ec075cd2c57c4135a88ab9 | n/a | 152.199.19.161:443 |
| 2022-01-11 23:28:08 | b6730ed0a0f365d41f26459feb39425b | n/a | 152.199.19.161:443 |
| 2022-01-11 23:07:55 | a57e4093496de5f95413ae26d0bcc9ee | n/a | 144.91.81.112:443 |
| 2022-01-11 23:07:55 | a57e4093496de5f95413ae26d0bcc9ee | n/a | 23.219.41.143:443 |
| 2022-01-11 23:07:55 | a57e4093496de5f95413ae26d0bcc9ee | n/a | 69.147.88.7:443 |
| 2022-01-11 23:07:55 | a57e4093496de5f95413ae26d0bcc9ee | n/a | 108.139.1.96:443 |
| 2022-01-11 23:07:55 | a57e4093496de5f95413ae26d0bcc9ee | n/a | 91.121.218.87:443 |
| 2022-01-11 23:07:55 | a57e4093496de5f95413ae26d0bcc9ee | n/a | 108.138.246.33:443 |
| 2022-01-11 23:07:55 | a57e4093496de5f95413ae26d0bcc9ee | n/a | 172.67.134.8:443 |
| 2022-01-11 23:07:55 | a57e4093496de5f95413ae26d0bcc9ee | n/a | 199.232.193.50:443 |
| 2022-01-11 23:07:55 | a57e4093496de5f95413ae26d0bcc9ee | n/a | 95.216.36.96:443 |
| 2022-01-11 23:01:25 | a2b81d7a31086eb6d0666982d186738b | n/a | 152.199.19.161:443 |
| 2022-01-11 22:53:04 | 7a812ed33db4e0c03b1ad44a929859c8 | n/a | 152.199.19.161:443 |
| 2022-01-11 22:33:25 | 87ea33fe79a6bea7d824abcb594b2a32 | n/a | 72.21.81.200:443 |
| 2022-01-11 22:30:49 | 760e5a5a8fe61d04b46410dec74d6c44 | n/a | 172.217.168.206:443 |
# of entries: 100 (max: 100)