JA3 Fingerprints

You can find further information about the JA3 fingerprint 7a29c223fb122ec64d10f0a159e07996, including the corresponding malware samples as well as the associated botnet C&Cs.

Database Entry


JA3 Fingerprint:7a29c223fb122ec64d10f0a159e07996
First seen:2019-06-09 22:55:29 UTC
Last seen:2020-08-02 03:35:21 UTC
Status:Blacklisted
Malware samples:703
Destination IPs:38
Malware:Tofsee -
Listing date:2020-01-09 14:21:55

Malware Samples


The table below documents all malware samples associated with this JA3 Fingerprint.

Timestamp (UTC)Malware Sample (MD5 hash)VTBotnet C&C (IP:port)
2020-08-02 03:35:21a43b6c73b8a0f264516ef0dc29c8bdccVirustotal results 41 / 72 (56.94%) 31.13.72.8:443
2020-08-02 03:35:21a43b6c73b8a0f264516ef0dc29c8bdccVirustotal results 41 / 72 (56.94%) 157.240.17.15:443
2020-08-02 03:35:20a43b6c73b8a0f264516ef0dc29c8bdccVirustotal results 41 / 72 (56.94%) 31.13.72.36:443
2020-08-01 17:24:13ab1e8a77f2e542d1a0b4fb8f921d38edVirustotal results 47 / 70 (67.14%) 31.13.72.8:443
2020-08-01 17:24:13ab1e8a77f2e542d1a0b4fb8f921d38edVirustotal results 47 / 70 (67.14%) 157.240.194.18:443
2020-08-01 17:24:13ab1e8a77f2e542d1a0b4fb8f921d38edVirustotal results 47 / 70 (67.14%) 157.240.17.15:443
2020-08-01 17:24:13ab1e8a77f2e542d1a0b4fb8f921d38edVirustotal results 47 / 70 (67.14%) 157.240.194.35:443
2020-08-01 17:24:12ab1e8a77f2e542d1a0b4fb8f921d38edVirustotal results 47 / 70 (67.14%) 31.13.72.36:443
2020-08-01 13:27:19a3cd6acca1f615c35dfb46abff35e8d0Virustotal results 40 / 71 (56.34%) 157.240.194.27:443
2020-08-01 13:27:19a3cd6acca1f615c35dfb46abff35e8d0Virustotal results 40 / 71 (56.34%) 31.13.72.8:443
2020-08-01 13:27:19a3cd6acca1f615c35dfb46abff35e8d0Virustotal results 40 / 71 (56.34%) 31.13.72.36:443
2020-08-01 13:27:18a3cd6acca1f615c35dfb46abff35e8d0Virustotal results 40 / 71 (56.34%) 31.13.72.12:443
2020-08-01 13:18:13a3aa6991856f6c14fae6319c8ff4d4adVirustotal results 37 / 71 (52.11%) 31.13.72.36:443
2020-08-01 13:18:13a3aa6991856f6c14fae6319c8ff4d4adVirustotal results 37 / 71 (52.11%) 157.240.194.18:443
2020-08-01 13:18:13a3aa6991856f6c14fae6319c8ff4d4adVirustotal results 37 / 71 (52.11%) 157.240.201.15:443
2020-08-01 13:18:13a3aa6991856f6c14fae6319c8ff4d4adVirustotal results 37 / 71 (52.11%) 31.13.72.8:443
2020-08-01 03:20:050b1ab48693041c590917f43f91a050afVirustotal results 49 / 70 (70.00%) 31.13.72.36:443
2020-08-01 03:20:040b1ab48693041c590917f43f91a050afVirustotal results 49 / 70 (70.00%) 31.13.72.8:443
2020-08-01 03:20:030b1ab48693041c590917f43f91a050afVirustotal results 49 / 70 (70.00%) 157.240.201.15:443
2020-07-27 01:33:05a240239c106a62aa8f3efce7d493ff5fVirustotal results 41 / 73 (56.16%) 193.135.136.17:443
2020-07-27 01:33:04a240239c106a62aa8f3efce7d493ff5fVirustotal results 41 / 73 (56.16%) 31.13.72.8:443
2020-07-27 01:33:04a240239c106a62aa8f3efce7d493ff5fVirustotal results 41 / 73 (56.16%) 31.13.72.36:443
2020-07-26 07:58:58b13fe26dbb9b21363e3dc834bd1fa078Virustotal results 47 / 72 (65.28%) 31.13.72.8:443
2020-07-26 07:58:58b13fe26dbb9b21363e3dc834bd1fa078Virustotal results 47 / 72 (65.28%) 31.13.64.21:443
2020-07-26 07:58:58b13fe26dbb9b21363e3dc834bd1fa078Virustotal results 47 / 72 (65.28%) 31.13.72.36:443
2020-07-25 21:49:25742cfefce2f8156ad6a2cc9bc4933cf5Virustotal results 49 / 72 (68.06%) 157.240.201.15:443
2020-07-25 21:49:25742cfefce2f8156ad6a2cc9bc4933cf5Virustotal results 49 / 72 (68.06%) 31.13.64.21:443
2020-07-25 21:49:24742cfefce2f8156ad6a2cc9bc4933cf5Virustotal results 49 / 72 (68.06%) 31.13.72.36:443
2020-07-25 21:49:24742cfefce2f8156ad6a2cc9bc4933cf5Virustotal results 49 / 72 (68.06%) 31.13.72.8:443
2020-07-24 13:58:31c73dac68330eea3db7fd2cb2e16b8d55Virustotal results 44 / 73 (60.27%) 31.13.72.36:443
2020-07-24 13:58:31c73dac68330eea3db7fd2cb2e16b8d55Virustotal results 44 / 73 (60.27%) 31.13.72.8:443
2020-07-24 09:24:37c53db310e0233953deda73029e18a637Virustotal results 44 / 70 (62.86%) 31.13.72.36:443
2020-07-24 09:24:36c53db310e0233953deda73029e18a637Virustotal results 44 / 70 (62.86%) 157.240.17.15:443
2020-07-24 09:24:36c53db310e0233953deda73029e18a637Virustotal results 44 / 70 (62.86%) 157.240.194.18:443
2020-07-24 08:30:55c4642e84fa3107e313d79e156163b215Virustotal results 48 / 73 (65.75%) 193.135.136.17:443
2020-07-24 08:30:54c4642e84fa3107e313d79e156163b215Virustotal results 48 / 73 (65.75%) 157.240.194.18:443
2020-07-24 08:30:54c4642e84fa3107e313d79e156163b215Virustotal results 48 / 73 (65.75%) 31.13.72.36:443
2020-07-24 08:30:54c4642e84fa3107e313d79e156163b215Virustotal results 48 / 73 (65.75%) 31.13.72.8:443
2020-07-23 23:33:30b5959cb9f6266a5c30438a9c27d62f02Virustotal results 47 / 72 (65.28%) 31.13.72.36:443
2020-07-23 23:33:30b5959cb9f6266a5c30438a9c27d62f02Virustotal results 47 / 72 (65.28%) 193.135.136.17:443
2020-07-23 23:33:30b5959cb9f6266a5c30438a9c27d62f02Virustotal results 47 / 72 (65.28%) 157.240.194.35:443
2020-07-23 23:33:30b5959cb9f6266a5c30438a9c27d62f02Virustotal results 47 / 72 (65.28%) 31.13.72.8:443
2020-07-23 23:16:55b5260be159f10d297515405143fd566cVirustotal results 37 / 73 (50.68%) 157.240.201.15:443
2020-07-23 23:16:54b5260be159f10d297515405143fd566cVirustotal results 37 / 73 (50.68%) 31.13.72.36:443
2020-07-23 23:16:54b5260be159f10d297515405143fd566cVirustotal results 37 / 73 (50.68%) 31.13.72.8:443
2020-07-23 23:09:10b51ea1a7a8fa95885a6e22701be82f19Virustotal results 38 / 72 (52.78%) 31.13.72.36:443
2020-07-23 23:09:10b51ea1a7a8fa95885a6e22701be82f19Virustotal results 38 / 72 (52.78%) 31.13.72.12:443
2020-07-23 23:09:10b51ea1a7a8fa95885a6e22701be82f19Virustotal results 38 / 72 (52.78%) 157.240.194.35:443
2020-07-23 23:09:09b51ea1a7a8fa95885a6e22701be82f19Virustotal results 38 / 72 (52.78%) 31.13.72.8:443
2020-07-23 21:17:50b25d88825e3a3fe5badb668ee5b5d2fcVirustotal results 45 / 72 (62.50%) 31.13.72.36:443
2020-07-23 21:17:49b25d88825e3a3fe5badb668ee5b5d2fcVirustotal results 45 / 72 (62.50%) 31.13.72.8:443
2020-07-23 19:48:31b0c7b491bbbd15a84e7b75352a6461e0Virustotal results 36 / 71 (50.70%) 31.13.72.36:443
2020-07-23 19:48:31b0c7b491bbbd15a84e7b75352a6461e0Virustotal results 36 / 71 (50.70%) 193.135.136.17:443
2020-07-23 19:48:30b0c7b491bbbd15a84e7b75352a6461e0Virustotal results 36 / 71 (50.70%) 157.240.194.18:443
2020-07-23 06:20:25a4412d02373789ca7ab5953a22a62c70Virustotal results 44 / 72 (61.11%) 31.13.72.36:443
2020-07-23 06:20:25a4412d02373789ca7ab5953a22a62c70Virustotal results 44 / 72 (61.11%) 157.240.194.18:443
2020-07-23 06:20:25a4412d02373789ca7ab5953a22a62c70Virustotal results 44 / 72 (61.11%) 31.13.72.8:443
2020-07-22 22:49:240c32e0654a5b35e07d739cd1092bb699Virustotal results 39 / 71 (54.93%) 157.240.17.15:443
2020-07-22 22:49:240c32e0654a5b35e07d739cd1092bb699Virustotal results 39 / 71 (54.93%) 31.13.72.8:443
2020-07-22 22:49:230c32e0654a5b35e07d739cd1092bb699Virustotal results 39 / 71 (54.93%) 31.13.72.36:443
2020-07-22 20:28:0305c1317c112a5a44a9410a3da8349715Virustotal results 45 / 72 (62.50%) 31.13.72.8:443
2020-07-22 20:28:0205c1317c112a5a44a9410a3da8349715Virustotal results 45 / 72 (62.50%) 31.13.72.36:443
2020-07-22 20:28:0205c1317c112a5a44a9410a3da8349715Virustotal results 45 / 72 (62.50%) 193.135.136.17:443
2020-07-22 20:28:0205c1317c112a5a44a9410a3da8349715Virustotal results 45 / 72 (62.50%) 157.240.194.35:443
2020-07-21 18:46:3864d5e5824b2c0897814708f6de962c29Virustotal results 42 / 71 (59.15%) 193.135.136.17:443
2020-07-21 18:46:3764d5e5824b2c0897814708f6de962c29Virustotal results 42 / 71 (59.15%) 31.13.72.36:443
2020-07-21 18:46:3764d5e5824b2c0897814708f6de962c29Virustotal results 42 / 71 (59.15%) 31.13.72.8:443
2020-07-21 12:57:555ccd31ff1297c3352ad489a202abee91Virustotal results 51 / 68 (75.00%) 31.13.72.8:443
2020-07-21 12:57:545ccd31ff1297c3352ad489a202abee91Virustotal results 51 / 68 (75.00%) 157.240.194.35:443
2020-07-21 12:57:545ccd31ff1297c3352ad489a202abee91Virustotal results 51 / 68 (75.00%) 157.240.17.15:443
2020-07-21 10:02:3657bdc835c0faf894920f999aa16a94cfVirustotal results 41 / 73 (56.16%) 193.135.136.17:443
2020-07-21 10:02:3457bdc835c0faf894920f999aa16a94cfVirustotal results 41 / 73 (56.16%) 31.13.72.8:443
2020-07-21 10:02:3457bdc835c0faf894920f999aa16a94cfVirustotal results 41 / 73 (56.16%) 31.13.72.36:443
2020-07-21 10:02:3357bdc835c0faf894920f999aa16a94cfVirustotal results 41 / 73 (56.16%) 157.240.194.35:443
2020-07-21 06:10:204bdf3f775fadb11146e8cf5a486066e4Virustotal results 45 / 72 (62.50%) 31.13.72.36:443
2020-07-21 06:10:204bdf3f775fadb11146e8cf5a486066e4Virustotal results 45 / 72 (62.50%) 157.240.201.15:443
2020-07-21 06:10:194bdf3f775fadb11146e8cf5a486066e4Virustotal results 45 / 72 (62.50%) 157.240.194.35:443
2020-07-21 06:10:184bdf3f775fadb11146e8cf5a486066e4Virustotal results 45 / 72 (62.50%) 31.13.72.8:443
2020-07-21 06:10:174bdf3f775fadb11146e8cf5a486066e4Virustotal results 45 / 72 (62.50%) 31.13.64.21:443
2020-07-21 05:27:07481279af8ad6550f2819982ae289420bVirustotal results 46 / 73 (63.01%) 31.13.72.36:443
2020-07-21 05:27:07481279af8ad6550f2819982ae289420bVirustotal results 46 / 73 (63.01%) 157.240.194.18:443
2020-07-20 21:51:11419c8dcace5529506de07e57da23d24aVirustotal results 41 / 72 (56.94%) 157.240.17.15:443
2020-07-20 21:51:11419c8dcace5529506de07e57da23d24aVirustotal results 41 / 72 (56.94%) 31.13.72.36:443
2020-07-20 21:51:11419c8dcace5529506de07e57da23d24aVirustotal results 41 / 72 (56.94%) 31.13.72.8:443
2020-07-20 21:51:10419c8dcace5529506de07e57da23d24aVirustotal results 41 / 72 (56.94%) 157.240.194.35:443
2020-07-20 12:45:14309d61828e6b7b260e0ff9b5681ef8cdVirustotal results 38 / 72 (52.78%) 31.13.72.8:443
2020-07-20 12:45:14309d61828e6b7b260e0ff9b5681ef8cdVirustotal results 38 / 72 (52.78%) 157.240.194.35:443
2020-07-20 07:25:0421e39e2345bec35bd7a1f3c06381d5efVirustotal results 54 / 73 (73.97%) 157.240.201.15:443
2020-07-20 07:25:0421e39e2345bec35bd7a1f3c06381d5efVirustotal results 54 / 73 (73.97%) 31.13.72.8:443
2020-07-20 07:25:0421e39e2345bec35bd7a1f3c06381d5efVirustotal results 54 / 73 (73.97%) 31.13.72.36:443
2020-07-20 07:25:0321e39e2345bec35bd7a1f3c06381d5efVirustotal results 54 / 73 (73.97%) 31.13.64.21:443
2020-07-20 00:52:560fc3cf028228ff0ebb24ae9a6aaa4daeVirustotal results 46 / 68 (67.65%) 31.13.72.36:443
2020-07-20 00:52:560fc3cf028228ff0ebb24ae9a6aaa4daeVirustotal results 46 / 68 (67.65%) 31.13.72.8:443
2020-07-20 00:52:560fc3cf028228ff0ebb24ae9a6aaa4daeVirustotal results 46 / 68 (67.65%) 157.240.201.15:443
2020-07-19 22:26:210e6f54dcc872215b49ec711ec95e74bcVirustotal results 38 / 73 (52.05%) 31.13.72.8:443
2020-07-19 22:26:210e6f54dcc872215b49ec711ec95e74bcVirustotal results 38 / 73 (52.05%) 31.13.72.36:443
2020-07-19 22:26:210e6f54dcc872215b49ec711ec95e74bcVirustotal results 38 / 73 (52.05%) 31.13.64.21:443
2020-07-19 22:26:210e6f54dcc872215b49ec711ec95e74bcVirustotal results 38 / 73 (52.05%) 157.240.201.15:443
2020-07-19 21:56:210e1d1e8931a73e7287c2d46ecda6a9afVirustotal results 44 / 72 (61.11%) 31.13.72.36:443
2020-07-19 21:56:210e1d1e8931a73e7287c2d46ecda6a9afVirustotal results 44 / 72 (61.11%) 31.13.72.8:443

# of entries: 100 (max: 100)