JA3 Fingerprints
You can find further information about the JA3 fingerprint 807fca46d9d0cf63adf4e5e80e414bbe, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 807fca46d9d0cf63adf4e5e80e414bbe |
|---|---|
| First seen: | 2018-06-07 16:51:03 UTC |
| Last seen: | 2021-08-07 03:15:42 UTC |
| Status: | Blacklisted |
| Malware samples: | 987 |
| Destination IPs: | 289 |
| Malware: | Tofsee  |
| Listing date: | 2020-01-09 14:22:48 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2023-05-21 12:26:46 | 0bb02277ea8f5722372d6f5e1570c7cf |  13 / 70 (18.57%)
| 142.250.27.109:587 |
| 2023-04-14 06:30:24 | de84fcd68db4cf1300e1a48cfa8e46e5 | n/a | 72.52.178.23:443 |
| 2023-03-21 04:44:45 | d31dec6a5797a62aa526fe2da4c0f64f | n/a | 192.30.255.112:443 |
| 2023-03-21 04:44:45 | d31dec6a5797a62aa526fe2da4c0f64f | n/a | 185.199.108.133:443 |
| 2023-03-09 21:35:18 | 523e432070e00667e4d9267e759f6e6a | n/a | 99.84.203.119:443 |
| 2023-03-09 21:35:18 | 523e432070e00667e4d9267e759f6e6a | n/a | 185.40.154.13:443 |
| 2023-03-05 13:21:34 | 3b5d52be14b7f2b756d7798696ab5ea1 | 7 / 70 (10.00%)
| 149.154.167.220:443 |
| 2023-03-05 13:21:34 | 3b5d52be14b7f2b756d7798696ab5ea1 | 7 / 70 (10.00%)
| 64.185.227.155:443 |
| 2023-02-23 22:45:50 | a0eab650dc9402e3caaf0092a7137327 | n/a | 104.237.62.211:443 |
| 2023-02-13 08:12:33 | 8b9a35db58eaddb9c5e7614e935ec63e | n/a | 142.251.2.108:587 |
| 2023-02-11 01:37:01 | 97e22c8800d9bae0735e189dc6f34e2a | n/a | 162.159.136.232:443 |
| 2023-02-08 13:17:30 | 7a5ad66ecc84fcdc4cf3a7074f74f8c8 | n/a | 162.159.128.233:443 |
| 2023-02-08 13:17:30 | 7a5ad66ecc84fcdc4cf3a7074f74f8c8 | n/a | 172.65.251.78:443 |
| 2023-02-08 01:48:55 | 49feafbf6900839e7ccc41f0d4fbb04f | n/a | 142.250.145.109:587 |
| 2023-02-07 14:18:49 | 2a35046b2579468e641585d6c00cd809 | 8 / 62 (12.90%)
| 162.159.138.232:443 |
| 2023-02-07 13:28:59 | 080586757d7a4b7bdef947d58e2b9b98 | 34 / 69 (49.28%)
| 162.159.136.232:443 |
| 2023-02-03 22:36:26 | 1ff30ab5161ad8205700e0c9a81cab13 | n/a | 185.40.154.13:443 |
| 2023-02-03 22:36:26 | 1ff30ab5161ad8205700e0c9a81cab13 | n/a | 99.84.192.101:443 |
| 2023-02-03 22:36:26 | 1ff30ab5161ad8205700e0c9a81cab13 | n/a | 185.40.154.13:443 |
| 2023-02-03 22:36:26 | 1ff30ab5161ad8205700e0c9a81cab13 | n/a | 99.84.192.101:443 |
| 2023-02-03 19:44:08 | 28e75f2acbd054f6dd4311897458f405 | n/a | 104.237.62.211:443 |
| 2023-02-03 19:44:08 | 28e75f2acbd054f6dd4311897458f405 | n/a | 162.159.136.232:443 |
| 2023-02-03 19:44:08 | 28e75f2acbd054f6dd4311897458f405 | n/a | 104.20.68.143:443 |
| 2023-02-01 17:03:37 | 69991ad06c9136a771c312a33ad463bc | n/a | 162.159.138.232:443 |
| 2023-02-01 17:03:37 | 69991ad06c9136a771c312a33ad463bc | n/a | 104.20.68.143:443 |
| 2023-02-01 17:03:37 | 69991ad06c9136a771c312a33ad463bc | n/a | 104.237.62.211:443 |
| 2023-02-01 11:10:58 | 13bb645507e789fc1c1b2accbaeb96ea | 33 / 68 (48.53%)
| 104.237.62.211:443 |
| 2023-02-01 11:10:58 | 13bb645507e789fc1c1b2accbaeb96ea | 33 / 68 (48.53%)
| 162.159.137.232:443 |
| 2023-02-01 11:10:58 | 13bb645507e789fc1c1b2accbaeb96ea | 33 / 68 (48.53%)
| 104.20.67.143:443 |
| 2023-01-31 02:28:33 | c18bcf84d1b96afa8a4425d3f47f309f | n/a | 162.159.136.232:443 |
| 2023-01-22 21:52:54 | 6ce55dec5efa07ab71104205076d6c68 | n/a | 162.159.136.232:443 |
| 2023-01-20 22:29:50 | fdf3f205d8026fd353415aae94af28e9 | n/a | 104.237.62.211:443 |
| 2023-01-20 22:29:50 | fdf3f205d8026fd353415aae94af28e9 | n/a | 162.159.128.233:443 |
| 2023-01-18 12:39:59 | e98f2211ce6f858d25fe7162707359be | n/a | 104.20.68.143:443 |
| 2023-01-18 12:39:59 | e98f2211ce6f858d25fe7162707359be | n/a | 104.237.62.211:443 |
| 2023-01-18 12:39:59 | e98f2211ce6f858d25fe7162707359be | n/a | 162.159.136.232:443 |
| 2023-01-18 03:26:01 | cfd851af4c98887f17f17701476f61eb | n/a | 162.159.138.232:443 |
| 2023-01-17 22:03:50 | c3a16d7fc6561f82735b58603cbd504d | n/a | 162.159.137.232:443 |
| 2023-01-17 22:03:50 | c3a16d7fc6561f82735b58603cbd504d | n/a | 104.20.68.143:443 |
| 2023-01-17 22:03:50 | c3a16d7fc6561f82735b58603cbd504d | n/a | 64.185.227.155:443 |
| 2023-01-16 23:11:25 | 64860909b6e147172cdb42ad35c826e3 | n/a | 172.67.34.170:443 |
| 2023-01-16 23:11:25 | 64860909b6e147172cdb42ad35c826e3 | n/a | 162.159.135.233:443 |
| 2023-01-16 23:11:24 | 64860909b6e147172cdb42ad35c826e3 | n/a | 104.237.62.211:443 |
| 2023-01-09 01:38:36 | 7cbf7e9ab78bf576cac250e73b814851 | n/a | 34.160.111.145:443 |
| 2023-01-09 01:38:36 | 7cbf7e9ab78bf576cac250e73b814851 | n/a | 162.159.136.232:443 |
| 2023-01-04 18:16:09 | 2e937adf2a89d1a046cb3ea0542028d9 | 32 / 66 (48.48%)
| 104.237.62.212:443 |
| 2023-01-04 18:16:09 | 2e937adf2a89d1a046cb3ea0542028d9 | 32 / 66 (48.48%)
| 162.159.136.232:443 |
| 2023-01-04 18:16:08 | 2e937adf2a89d1a046cb3ea0542028d9 | 32 / 66 (48.48%)
| 172.67.34.170:443 |
| 2023-01-03 11:34:57 | f0783e36f29f21ef1e0c9284d95fd168 | n/a | 162.159.128.233:443 |
| 2023-01-01 03:04:42 | 75cf3f55cf451084cced699934590084 | n/a | 162.159.138.232:443 |
| 2022-12-30 13:51:53 | 2a3390e77a9a4127204513056f2953dc | n/a | 162.159.135.232:443 |
| 2022-12-30 13:51:53 | 2a3390e77a9a4127204513056f2953dc | n/a | 34.160.111.145:443 |
| 2022-12-15 09:09:57 | 4d90f7ea3ec9cf206beaf776a36eb3fc | n/a | 162.159.138.232:443 |
| 2022-12-15 04:42:12 | db30734ad5801e4f68666d4f337f74f6 | n/a | 104.237.62.212:443 |
| 2022-12-15 04:42:12 | db30734ad5801e4f68666d4f337f74f6 | n/a | 162.159.138.232:443 |
| 2022-12-11 20:05:22 | 68753aa9586c56cee84ca471a4a0e308 | n/a | 162.159.136.232:443 |
| 2022-12-11 09:16:58 | 5a57b5c8b3074e6df3a2e83fa7610182 | 25 / 69 (36.23%)
| 173.231.16.76:443 |
| 2022-12-11 09:16:58 | 5a57b5c8b3074e6df3a2e83fa7610182 | 25 / 69 (36.23%)
| 162.159.128.233:443 |
| 2022-12-11 06:12:41 | bbe8d5b2b0bd2b69aab35136a658fdeb | n/a | 162.159.135.232:443 |
| 2022-12-11 02:26:43 | b1cd5913b3723fae7eac716ac9411b0e | n/a | 162.159.138.232:443 |
| 2022-12-11 02:26:43 | b1cd5913b3723fae7eac716ac9411b0e | n/a | 104.237.62.212:443 |
| 2022-12-11 02:26:43 | b1cd5913b3723fae7eac716ac9411b0e | n/a | 104.20.68.143:443 |
| 2022-12-10 23:48:13 | ab44834132690f2bd41a60136aca2e83 | n/a | 104.237.62.212:443 |
| 2022-12-10 12:22:48 | 09e35ec958b718b81c8d89fe083ec5de | 41 / 71 (57.75%)
| 162.159.128.233:443 |
| 2022-12-10 12:22:48 | 09e35ec958b718b81c8d89fe083ec5de | 41 / 71 (57.75%)
| 104.237.62.212:443 |
| 2022-11-20 16:53:47 | 56648db8b4a237c6981e12d7048ef9c8 | n/a | 144.76.136.153:443 |
| 2022-11-14 09:23:02 | b47ae09f86fefb8efc7572a83b6ded62 | n/a | 162.159.128.233:443 |
| 2022-11-10 10:20:18 | e3fa476e00a9961a0aa3145e1478d284 | n/a | 162.159.136.232:443 |
| 2022-11-10 10:20:18 | e3fa476e00a9961a0aa3145e1478d284 | n/a | 3.220.57.224:443 |
| 2022-10-15 18:27:45 | 21add128d45831529185751a39466310 | 6 / 72 (8.33%)
| 65.108.156.223:443 |
| 2022-10-09 06:54:32 | bfbf6572787412ccb11f20b6a42127b5 | 19 / 71 (26.76%)
| 104.20.67.143:443 |
| 2022-10-09 06:54:32 | bfbf6572787412ccb11f20b6a42127b5 | 19 / 71 (26.76%)
| 185.199.108.133:443 |
| 2022-10-04 17:56:43 | e0d4a76eb5489edecd7c247840a93861 | n/a | 188.114.97.7:443 |
| 2022-10-04 17:56:43 | e0d4a76eb5489edecd7c247840a93861 | n/a | 162.159.136.232:443 |
| 2022-10-04 17:32:16 | d9d25695631379039a304ee3ea74d1c8 | n/a | 162.159.138.232:443 |
| 2022-10-04 04:21:00 | 8ba8e377019585d80fed2e5adae88b61 | n/a | 3.232.242.170:443 |
| 2022-10-04 04:21:00 | 8ba8e377019585d80fed2e5adae88b61 | n/a | 104.20.68.143:443 |
| 2022-10-04 04:21:00 | 8ba8e377019585d80fed2e5adae88b61 | n/a | 162.159.137.232:443 |
| 2022-10-01 12:45:09 | eef1936396ab53a6617fe7bd3af75bbf | n/a | 162.159.135.232:443 |
| 2022-10-01 12:45:09 | eef1936396ab53a6617fe7bd3af75bbf | n/a | 3.232.242.170:443 |
| 2022-10-01 12:45:09 | eef1936396ab53a6617fe7bd3af75bbf | n/a | 172.67.34.170:443 |
| 2022-09-22 15:18:51 | b649eb643a22a9824831820cd862cfbd | n/a | 162.159.137.232:443 |
| 2022-09-22 15:18:51 | b649eb643a22a9824831820cd862cfbd | n/a | 172.67.34.170:443 |
| 2022-09-22 15:18:51 | b649eb643a22a9824831820cd862cfbd | n/a | 3.220.57.224:443 |
| 2022-09-21 12:04:22 | 0ee367040f932d7dfa20ca25d139104c | 36 / 70 (51.43%)
| 162.159.137.232:443 |
| 2022-09-14 22:52:32 | e6633e964e603c722fc950b3f3a96ce6 | n/a | 162.159.137.232:443 |
| 2022-09-14 22:52:32 | e6633e964e603c722fc950b3f3a96ce6 | n/a | 104.20.68.143:443 |
| 2022-09-14 22:52:32 | e6633e964e603c722fc950b3f3a96ce6 | n/a | 52.20.78.240:443 |
| 2022-09-14 18:36:29 | ca38ecc27e50dacfb8462a31146fd0dd | n/a | 162.159.136.232:443 |
| 2022-09-14 18:36:29 | ca38ecc27e50dacfb8462a31146fd0dd | n/a | 104.20.68.143:443 |
| 2022-09-14 05:52:32 | 79ba0900754b03eb3165c15edb98ab63 | n/a | 104.20.68.143:443 |
| 2022-09-14 05:52:32 | 79ba0900754b03eb3165c15edb98ab63 | n/a | 162.159.135.233:443 |
| 2022-09-14 05:52:32 | 79ba0900754b03eb3165c15edb98ab63 | n/a | 162.159.137.232:443 |
| 2022-09-13 23:29:42 | 50ed56c48c0ca8658531a1298a56f9fb | n/a | 3.220.57.224:443 |
| 2022-09-13 23:29:42 | 50ed56c48c0ca8658531a1298a56f9fb | n/a | 172.217.168.3:443 |
| 2022-09-13 23:29:42 | 50ed56c48c0ca8658531a1298a56f9fb | n/a | 162.159.138.232:443 |
| 2022-09-13 23:29:42 | 50ed56c48c0ca8658531a1298a56f9fb | n/a | 104.20.67.143:443 |
| 2022-09-13 16:35:41 | 27da12482f40ff1074d9cd04dc943768 | 21 / 69 (30.43%)
| 34.160.111.145:443 |
| 2022-09-13 16:35:41 | 27da12482f40ff1074d9cd04dc943768 | 21 / 69 (30.43%)
| 162.159.137.232:443 |
| 2022-09-10 13:51:19 | f80cf5a8cb1ade52b6b85bd654e47c51 | n/a | 104.20.67.143:443 |
# of entries: 100 (max: 100)