JA3 Fingerprints

You can find further information about the JA3 fingerprint 7a29c223fb122ec64d10f0a159e07996, including the corresponding malware samples as well as the associated botnet C&Cs.

Database Entry


JA3 Fingerprint:7a29c223fb122ec64d10f0a159e07996
First seen:2019-06-09 22:55:29 UTC
Last seen:2020-10-22 11:59:14 UTC
Status:Blacklisted
Malware samples:869
Destination IPs:41
Malware:Tofsee -
Listing date:2020-01-09 14:21:55

Malware Samples


The table below documents all malware samples associated with this JA3 Fingerprint.

Timestamp (UTC)Malware Sample (MD5 hash)VTBotnet C&C (IP:port)
2020-10-22 11:59:14cfcd4edd2a5c3212a649c90e8c28108fVirustotal results 38 / 69 (55.07%) 157.240.201.15:443
2020-10-22 11:59:14cfcd4edd2a5c3212a649c90e8c28108fVirustotal results 38 / 69 (55.07%) 31.13.64.21:443
2020-10-22 11:59:14cfcd4edd2a5c3212a649c90e8c28108fVirustotal results 38 / 69 (55.07%) 157.240.194.35:443
2020-10-22 11:59:13cfcd4edd2a5c3212a649c90e8c28108fVirustotal results 38 / 69 (55.07%) 31.13.72.8:443
2020-10-22 11:59:13cfcd4edd2a5c3212a649c90e8c28108fVirustotal results 38 / 69 (55.07%) 31.13.72.36:443
2020-10-22 04:01:531ea097dac06a568e8b73d5931df71205Virustotal results 55 / 71 (77.46%) 31.13.72.36:443
2020-10-22 04:01:531ea097dac06a568e8b73d5931df71205Virustotal results 55 / 71 (77.46%) 31.13.72.8:443
2020-10-22 04:01:531ea097dac06a568e8b73d5931df71205Virustotal results 55 / 71 (77.46%) 185.60.216.15:443
2020-10-22 04:01:521ea097dac06a568e8b73d5931df71205Virustotal results 55 / 71 (77.46%) 157.240.201.15:443
2020-10-21 12:40:07e767f4a18f1fd62795b7657c5af25b94Virustotal results 45 / 69 (65.22%) 185.60.216.35:443
2020-10-21 12:40:07e767f4a18f1fd62795b7657c5af25b94Virustotal results 45 / 69 (65.22%) 185.60.216.15:443
2020-10-21 10:38:37cf1f24fb8868b9a2aefa040f6372110an/a185.60.216.15:443
2020-10-21 10:38:37cf1f24fb8868b9a2aefa040f6372110an/a185.60.216.35:443
2020-10-21 10:38:36cf1f24fb8868b9a2aefa040f6372110an/a157.240.17.15:443
2020-10-21 08:09:38ac4cd39c271ea76c7cfcc5c4ca2f6aebVirustotal results 49 / 71 (69.01%) 31.13.64.21:443
2020-10-21 08:09:38ac4cd39c271ea76c7cfcc5c4ca2f6aebVirustotal results 49 / 71 (69.01%) 157.240.201.15:443
2020-10-21 08:09:37ac4cd39c271ea76c7cfcc5c4ca2f6aebVirustotal results 49 / 71 (69.01%) 31.13.72.8:443
2020-10-21 08:09:37ac4cd39c271ea76c7cfcc5c4ca2f6aebVirustotal results 49 / 71 (69.01%) 157.240.194.18:443
2020-10-21 08:09:35ac4cd39c271ea76c7cfcc5c4ca2f6aebVirustotal results 49 / 71 (69.01%) 31.13.72.36:443
2020-10-21 05:00:065959fb4fdac381625895c71b6aa82354Virustotal results 52 / 71 (73.24%) 31.13.72.8:443
2020-10-21 05:00:055959fb4fdac381625895c71b6aa82354Virustotal results 52 / 71 (73.24%) 31.13.72.36:443
2020-10-21 05:00:055959fb4fdac381625895c71b6aa82354Virustotal results 52 / 71 (73.24%) 157.240.194.18:443
2020-10-21 05:00:045959fb4fdac381625895c71b6aa82354Virustotal results 52 / 71 (73.24%) 193.135.136.17:443
2020-10-20 20:27:04296c19e924a55e9c543704a54b83bb83n/a193.135.136.17:443
2020-10-20 20:27:03296c19e924a55e9c543704a54b83bb83n/a31.13.72.8:443
2020-10-20 20:27:03296c19e924a55e9c543704a54b83bb83n/a157.240.205.35:443
2020-10-20 20:27:02296c19e924a55e9c543704a54b83bb83n/a157.240.194.35:443
2020-10-20 20:20:32246811115e42c1e330c6b2cc779f1314Virustotal results 41 / 71 (57.75%) 157.240.201.15:443
2020-10-20 20:20:32246811115e42c1e330c6b2cc779f1314Virustotal results 41 / 71 (57.75%) 31.13.64.21:443
2020-10-20 20:20:31246811115e42c1e330c6b2cc779f1314Virustotal results 41 / 71 (57.75%) 31.13.72.36:443
2020-10-20 20:20:30246811115e42c1e330c6b2cc779f1314Virustotal results 41 / 71 (57.75%) 31.13.72.8:443
2020-10-20 12:07:07d83b97357d25de17ce7753c358a6ad84Virustotal results 50 / 69 (72.46%) 157.240.201.15:443
2020-10-20 12:07:06d83b97357d25de17ce7753c358a6ad84Virustotal results 50 / 69 (72.46%) 31.13.72.36:443
2020-10-20 12:07:06d83b97357d25de17ce7753c358a6ad84Virustotal results 50 / 69 (72.46%) 31.13.72.8:443
2020-10-20 12:07:06d83b97357d25de17ce7753c358a6ad84Virustotal results 50 / 69 (72.46%) 157.240.205.35:443
2020-10-20 09:31:47cf58effcb1d31dfa9e075ccebc18b889Virustotal results 41 / 68 (60.29%) 31.13.72.36:443
2020-10-20 09:31:46cf58effcb1d31dfa9e075ccebc18b889Virustotal results 41 / 68 (60.29%) 31.13.72.8:443
2020-10-20 09:31:46cf58effcb1d31dfa9e075ccebc18b889Virustotal results 41 / 68 (60.29%) 193.135.136.17:443
2020-10-20 01:10:076de9f7d281407ea5506c5220d9869a6cVirustotal results 48 / 68 (70.59%) 193.135.136.17:443
2020-10-20 01:10:066de9f7d281407ea5506c5220d9869a6cVirustotal results 48 / 68 (70.59%) 31.13.72.8:443
2020-10-20 01:10:056de9f7d281407ea5506c5220d9869a6cVirustotal results 48 / 68 (70.59%) 31.13.72.36:443
2020-10-20 00:09:575e8cdcd0c462df5d08c29a92452e3df8Virustotal results 50 / 70 (71.43%) 185.60.216.15:443
2020-10-20 00:09:575e8cdcd0c462df5d08c29a92452e3df8Virustotal results 50 / 70 (71.43%) 157.240.201.15:443
2020-10-20 00:09:575e8cdcd0c462df5d08c29a92452e3df8Virustotal results 50 / 70 (71.43%) 185.60.216.35:443
2020-10-19 22:42:184ef80a44197d7e37f1d995963758fee2Virustotal results 54 / 71 (76.06%) 157.240.20.35:443
2020-10-19 22:42:184ef80a44197d7e37f1d995963758fee2Virustotal results 54 / 71 (76.06%) 31.13.72.36:443
2020-10-19 22:42:184ef80a44197d7e37f1d995963758fee2Virustotal results 54 / 71 (76.06%) 193.135.136.17:443
2020-10-19 22:42:184ef80a44197d7e37f1d995963758fee2Virustotal results 54 / 71 (76.06%) 31.13.72.8:443
2020-10-19 21:55:173ddc7e243aa3c841a6ad02b9a7cd8249Virustotal results 56 / 69 (81.16%) 31.13.72.36:443
2020-10-19 21:55:163ddc7e243aa3c841a6ad02b9a7cd8249Virustotal results 56 / 69 (81.16%) 157.240.194.35:443
2020-10-19 21:55:153ddc7e243aa3c841a6ad02b9a7cd8249Virustotal results 56 / 69 (81.16%) 157.240.17.15:443
2020-10-19 21:55:143ddc7e243aa3c841a6ad02b9a7cd8249Virustotal results 56 / 69 (81.16%) 185.60.216.15:443
2020-10-19 19:48:0213ccdcc6a707010adfb9b08fcf838df6Virustotal results 52 / 71 (73.24%) 31.13.72.8:443
2020-10-19 19:48:0213ccdcc6a707010adfb9b08fcf838df6Virustotal results 52 / 71 (73.24%) 157.240.194.27:443
2020-10-19 19:48:0113ccdcc6a707010adfb9b08fcf838df6Virustotal results 52 / 71 (73.24%) 185.60.216.35:443
2020-10-19 14:21:26beba8fbcc297d2abdcb58fc1af743d77n/a31.13.72.36:443
2020-10-19 14:21:26beba8fbcc297d2abdcb58fc1af743d77n/a185.60.216.15:443
2020-10-19 14:21:26beba8fbcc297d2abdcb58fc1af743d77n/a185.60.216.35:443
2020-10-19 14:21:25beba8fbcc297d2abdcb58fc1af743d77n/a193.135.136.17:443
2020-10-19 09:58:41bb7325a7a8d0e4f6fea479a7e3543477Virustotal results 55 / 70 (78.57%) 31.13.72.8:443
2020-10-19 09:58:40bb7325a7a8d0e4f6fea479a7e3543477Virustotal results 55 / 70 (78.57%) 157.240.194.35:443
2020-10-19 07:07:58b961a1b4d8090f242ebd68718177178bn/a31.13.72.36:443
2020-10-19 07:07:58b961a1b4d8090f242ebd68718177178bn/a193.135.136.17:443
2020-10-19 07:07:57b961a1b4d8090f242ebd68718177178bn/a157.240.194.35:443
2020-10-19 07:07:55b961a1b4d8090f242ebd68718177178bn/a31.13.72.8:443
2020-10-18 21:07:44ad8adf57cc6e40a4dcf24455037abd94n/a157.240.194.27:443
2020-10-18 21:07:43ad8adf57cc6e40a4dcf24455037abd94n/a31.13.72.36:443
2020-10-18 21:07:43ad8adf57cc6e40a4dcf24455037abd94n/a157.240.194.18:443
2020-10-18 21:07:42ad8adf57cc6e40a4dcf24455037abd94n/a157.240.194.35:443
2020-10-18 21:07:42ad8adf57cc6e40a4dcf24455037abd94n/a31.13.72.8:443
2020-10-18 20:54:39acc980a35efcb5dddce6d71c02138db9n/a193.135.136.17:443
2020-10-18 20:54:39acc980a35efcb5dddce6d71c02138db9n/a157.240.194.35:443
2020-10-18 20:54:39acc980a35efcb5dddce6d71c02138db9n/a185.60.216.15:443
2020-10-18 20:54:39acc980a35efcb5dddce6d71c02138db9n/a31.13.72.36:443
2020-10-18 20:00:09861c576e20a6b2015515d671a97367f4n/a185.60.216.35:443
2020-10-18 20:00:09861c576e20a6b2015515d671a97367f4n/a185.60.216.15:443
2020-10-18 19:01:353d559fcd37dc542821567d3fd20d7ab0n/a193.135.136.17:443
2020-10-18 19:01:353d559fcd37dc542821567d3fd20d7ab0n/a31.13.72.8:443
2020-10-18 19:01:343d559fcd37dc542821567d3fd20d7ab0n/a31.13.72.36:443
2020-10-18 19:01:343d559fcd37dc542821567d3fd20d7ab0n/a157.240.194.35:443
2020-10-18 18:45:0039d0b8df66305e95e85406b03e6ea9bcn/a157.240.194.18:443
2020-10-18 18:45:0039d0b8df66305e95e85406b03e6ea9bcn/a185.60.216.35:443
2020-10-18 18:45:0039d0b8df66305e95e85406b03e6ea9bcn/a157.240.194.35:443
2020-10-18 18:44:5939d0b8df66305e95e85406b03e6ea9bcn/a31.13.64.21:443
2020-10-18 18:30:361e9625c661773864a239b572b0f02d24n/a157.240.17.15:443
2020-10-18 18:30:361e9625c661773864a239b572b0f02d24n/a31.13.72.36:443
2020-10-18 18:30:351e9625c661773864a239b572b0f02d24n/a31.13.72.8:443
2020-10-18 18:22:421f364d49c07faaf123b15d0f08890f6aVirustotal results 37 / 71 (52.11%) 157.240.194.35:443
2020-10-18 18:22:421f364d49c07faaf123b15d0f08890f6aVirustotal results 37 / 71 (52.11%) 31.13.72.8:443
2020-10-18 18:22:421f364d49c07faaf123b15d0f08890f6aVirustotal results 37 / 71 (52.11%) 157.240.194.18:443
2020-10-18 18:22:411f364d49c07faaf123b15d0f08890f6aVirustotal results 37 / 71 (52.11%) 31.13.72.36:443
2020-10-18 18:22:401f364d49c07faaf123b15d0f08890f6aVirustotal results 37 / 71 (52.11%) 157.240.201.15:443
2020-10-17 20:55:442bf2fda10408f9ddb9e545ffdca8b888n/a31.13.72.36:443
2020-10-17 20:55:442bf2fda10408f9ddb9e545ffdca8b888n/a31.13.72.8:443
2020-10-17 20:55:442bf2fda10408f9ddb9e545ffdca8b888n/a157.240.201.15:443
2020-10-17 20:17:084464ef23777eb955efe15239a7f7e349Virustotal results 47 / 70 (67.14%) 31.13.72.8:443
2020-10-17 20:17:084464ef23777eb955efe15239a7f7e349Virustotal results 47 / 70 (67.14%) 31.13.72.36:443
2020-10-17 20:17:084464ef23777eb955efe15239a7f7e349Virustotal results 47 / 70 (67.14%) 157.240.194.35:443
2020-10-17 20:17:074464ef23777eb955efe15239a7f7e349Virustotal results 47 / 70 (67.14%) 193.135.136.17:443
2020-10-17 19:23:38145e3ae4ab28997b7f279676aeb082een/a31.13.72.8:443

# of entries: 100 (max: 100)