JA3 Fingerprints
You can find further information about the JA3 fingerprint 849b04bdbd1d2b983f6e8a457e0632a8, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 849b04bdbd1d2b983f6e8a457e0632a8 |
|---|---|
| First seen: | 2017-07-16 08:37:17 UTC |
| Last seen: | 2020-03-27 08:33:14 UTC |
| Status: | Blacklisted |
| Malware samples: | 764 |
| Destination IPs: | 498 |
| Malware: | Adware |
| Listing date: | 2018-11-14 11:52:11 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2020-03-27 08:33:14 | ae80a5eec2c24d0ebaa2cc40ae50c1da |  37 / 72 (51.39%)
| 216.58.215.228:443 |
| 2020-03-27 08:33:14 | ae80a5eec2c24d0ebaa2cc40ae50c1da | 37 / 72 (51.39%)
| 216.58.215.238:443 |
| 2020-03-27 08:33:14 | ae80a5eec2c24d0ebaa2cc40ae50c1da | 37 / 72 (51.39%)
| 157.240.17.15:443 |
| 2020-03-27 08:33:14 | ae80a5eec2c24d0ebaa2cc40ae50c1da | 37 / 72 (51.39%)
| 204.155.149.44:443 |
| 2020-03-27 08:33:14 | ae80a5eec2c24d0ebaa2cc40ae50c1da | 37 / 72 (51.39%)
| 172.217.168.10:443 |
| 2020-03-27 08:33:14 | ae80a5eec2c24d0ebaa2cc40ae50c1da | 37 / 72 (51.39%)
| 172.217.168.67:443 |
| 2020-03-27 08:33:14 | ae80a5eec2c24d0ebaa2cc40ae50c1da | 37 / 72 (51.39%)
| 172.217.168.14:443 |
| 2020-03-27 08:33:14 | ae80a5eec2c24d0ebaa2cc40ae50c1da | 37 / 72 (51.39%)
| 172.217.168.1:443 |
| 2020-03-22 04:27:02 | a6899ece7872f7f9822d05cd73c8d96a | 37 / 71 (52.11%)
| 172.217.168.4:443 |
| 2020-03-22 04:27:02 | a6899ece7872f7f9822d05cd73c8d96a | 37 / 71 (52.11%)
| 172.217.168.1:443 |
| 2020-03-22 04:27:02 | a6899ece7872f7f9822d05cd73c8d96a | 37 / 71 (52.11%)
| 172.217.168.46:443 |
| 2020-03-22 04:27:02 | a6899ece7872f7f9822d05cd73c8d96a | 37 / 71 (52.11%)
| 172.217.168.74:443 |
| 2020-03-22 04:27:02 | a6899ece7872f7f9822d05cd73c8d96a | 37 / 71 (52.11%)
| 216.58.215.227:443 |
| 2020-03-22 04:27:02 | a6899ece7872f7f9822d05cd73c8d96a | 37 / 71 (52.11%)
| 204.155.149.44:443 |
| 2020-03-22 04:27:02 | a6899ece7872f7f9822d05cd73c8d96a | 37 / 71 (52.11%)
| 172.217.168.14:443 |
| 2020-03-22 04:27:02 | a6899ece7872f7f9822d05cd73c8d96a | 37 / 71 (52.11%)
| 157.240.17.15:443 |
| 2020-03-21 05:54:40 | ac8bb2694f06288a81cbd3e99ec50769 | n/a | 216.58.215.228:443 |
| 2020-03-21 05:54:40 | ac8bb2694f06288a81cbd3e99ec50769 | n/a | 172.217.168.42:443 |
| 2020-03-21 05:54:40 | ac8bb2694f06288a81cbd3e99ec50769 | n/a | 172.217.168.1:443 |
| 2020-03-21 05:54:40 | ac8bb2694f06288a81cbd3e99ec50769 | n/a | 157.240.17.15:443 |
| 2020-03-21 05:54:40 | ac8bb2694f06288a81cbd3e99ec50769 | n/a | 172.217.168.14:443 |
| 2020-03-21 05:54:40 | ac8bb2694f06288a81cbd3e99ec50769 | n/a | 172.217.168.35:443 |
| 2020-03-21 05:54:40 | ac8bb2694f06288a81cbd3e99ec50769 | n/a | 204.155.149.44:443 |
| 2020-03-20 19:04:47 | cc9f4c921b3dedf8c9ecb2e98b5c8b32 | 39 / 71 (54.93%)
| 172.217.168.74:443 |
| 2020-03-20 19:04:47 | cc9f4c921b3dedf8c9ecb2e98b5c8b32 | 39 / 71 (54.93%)
| 157.240.17.15:443 |
| 2020-03-20 19:04:47 | cc9f4c921b3dedf8c9ecb2e98b5c8b32 | 39 / 71 (54.93%)
| 216.58.215.228:443 |
| 2020-03-20 19:04:47 | cc9f4c921b3dedf8c9ecb2e98b5c8b32 | 39 / 71 (54.93%)
| 172.217.168.35:443 |
| 2020-03-20 19:04:47 | cc9f4c921b3dedf8c9ecb2e98b5c8b32 | 39 / 71 (54.93%)
| 204.155.149.44:443 |
| 2020-03-20 19:04:47 | cc9f4c921b3dedf8c9ecb2e98b5c8b32 | 39 / 71 (54.93%)
| 172.217.168.65:443 |
| 2020-03-20 19:04:47 | cc9f4c921b3dedf8c9ecb2e98b5c8b32 | 39 / 71 (54.93%)
| 216.58.215.238:443 |
| 2020-03-16 03:48:31 | ae2b26efc987885c45504738857539e7 | 36 / 72 (50.00%)
| 31.13.64.21:443 |
| 2020-03-16 03:48:31 | ae2b26efc987885c45504738857539e7 | 36 / 72 (50.00%)
| 216.58.211.99:443 |
| 2020-03-16 03:48:31 | ae2b26efc987885c45504738857539e7 | 36 / 72 (50.00%)
| 172.217.17.68:443 |
| 2020-03-16 03:48:31 | ae2b26efc987885c45504738857539e7 | 36 / 72 (50.00%)
| 172.217.17.74:443 |
| 2020-03-16 03:48:31 | ae2b26efc987885c45504738857539e7 | 36 / 72 (50.00%)
| 172.217.168.193:443 |
| 2020-03-16 03:48:31 | ae2b26efc987885c45504738857539e7 | 36 / 72 (50.00%)
| 172.217.19.206:443 |
| 2020-03-16 03:48:30 | ae2b26efc987885c45504738857539e7 | 36 / 72 (50.00%)
| 216.58.211.110:443 |
| 2020-03-16 03:48:30 | ae2b26efc987885c45504738857539e7 | 36 / 72 (50.00%)
| 204.155.149.44:443 |
| 2020-03-15 07:18:52 | cbc8484919daf3742ea09a6bdcba7d7c | n/a | 157.240.11.22:443 |
| 2020-03-15 07:18:52 | cbc8484919daf3742ea09a6bdcba7d7c | n/a | 74.125.142.95:443 |
| 2020-03-15 07:18:51 | cbc8484919daf3742ea09a6bdcba7d7c | n/a | 74.125.142.113:443 |
| 2020-03-15 07:18:51 | cbc8484919daf3742ea09a6bdcba7d7c | n/a | 204.155.149.44:443 |
| 2020-03-15 07:18:51 | cbc8484919daf3742ea09a6bdcba7d7c | n/a | 74.125.20.104:443 |
| 2020-03-14 16:03:43 | a8356e1b3cb9e75e8d0dc54fe095cf68 | n/a | 216.58.215.227:443 |
| 2020-03-14 16:03:43 | a8356e1b3cb9e75e8d0dc54fe095cf68 | n/a | 172.217.168.68:443 |
| 2020-03-14 16:03:43 | a8356e1b3cb9e75e8d0dc54fe095cf68 | n/a | 216.58.215.238:443 |
| 2020-03-14 16:03:43 | a8356e1b3cb9e75e8d0dc54fe095cf68 | n/a | 204.155.149.44:443 |
| 2020-03-14 16:03:43 | a8356e1b3cb9e75e8d0dc54fe095cf68 | n/a | 172.217.168.78:443 |
| 2020-03-14 16:03:42 | a8356e1b3cb9e75e8d0dc54fe095cf68 | n/a | 172.217.168.14:443 |
| 2020-03-14 16:03:42 | a8356e1b3cb9e75e8d0dc54fe095cf68 | n/a | 216.58.215.234:443 |
| 2020-03-14 16:03:42 | a8356e1b3cb9e75e8d0dc54fe095cf68 | n/a | 172.217.168.65:443 |
| 2020-03-14 16:03:42 | a8356e1b3cb9e75e8d0dc54fe095cf68 | n/a | 157.240.17.15:443 |
| 2020-03-13 04:15:49 | a859d311dfc804ec0604c47269f80d87 | 37 / 71 (52.11%)
| 172.217.168.193:443 |
| 2020-03-13 04:15:49 | a859d311dfc804ec0604c47269f80d87 | 37 / 71 (52.11%)
| 172.217.168.196:443 |
| 2020-03-13 04:15:48 | a859d311dfc804ec0604c47269f80d87 | 37 / 71 (52.11%)
| 31.13.64.21:443 |
| 2020-03-13 04:15:48 | a859d311dfc804ec0604c47269f80d87 | 37 / 71 (52.11%)
| 172.217.168.202:443 |
| 2020-03-13 04:15:48 | a859d311dfc804ec0604c47269f80d87 | 37 / 71 (52.11%)
| 172.217.17.35:443 |
| 2020-03-13 04:15:48 | a859d311dfc804ec0604c47269f80d87 | 37 / 71 (52.11%)
| 204.155.149.44:443 |
| 2020-03-13 04:15:48 | a859d311dfc804ec0604c47269f80d87 | 37 / 71 (52.11%)
| 172.217.168.238:443 |
| 2020-03-10 13:06:12 | c9b2749ed3f147298177071bca55623c | 39 / 71 (54.93%)
| 204.155.149.44:443 |
| 2020-03-10 13:06:12 | c9b2749ed3f147298177071bca55623c | 39 / 71 (54.93%)
| 74.125.195.113:443 |
| 2020-03-10 13:06:12 | c9b2749ed3f147298177071bca55623c | 39 / 71 (54.93%)
| 74.125.199.95:443 |
| 2020-03-10 13:06:12 | c9b2749ed3f147298177071bca55623c | 39 / 71 (54.93%)
| 157.240.11.22:443 |
| 2020-03-10 13:06:12 | c9b2749ed3f147298177071bca55623c | 39 / 71 (54.93%)
| 74.125.142.105:443 |
| 2020-03-10 13:06:12 | c9b2749ed3f147298177071bca55623c | 39 / 71 (54.93%)
| 74.125.20.94:443 |
| 2020-03-10 13:06:12 | c9b2749ed3f147298177071bca55623c | 39 / 71 (54.93%)
| 74.125.195.138:443 |
| 2020-03-10 13:06:12 | c9b2749ed3f147298177071bca55623c | 39 / 71 (54.93%)
| 74.125.195.101:443 |
| 2020-03-10 07:05:44 | ab0eb0ad29596601b1304da70a0f3a93 | 40 / 73 (54.79%)
| 74.125.142.100:443 |
| 2020-03-10 07:05:43 | ab0eb0ad29596601b1304da70a0f3a93 | 40 / 73 (54.79%)
| 74.125.195.94:443 |
| 2020-03-10 07:05:43 | ab0eb0ad29596601b1304da70a0f3a93 | 40 / 73 (54.79%)
| 74.125.20.132:443 |
| 2020-03-10 07:05:43 | ab0eb0ad29596601b1304da70a0f3a93 | 40 / 73 (54.79%)
| 74.125.20.103:443 |
| 2020-03-10 07:05:43 | ab0eb0ad29596601b1304da70a0f3a93 | 40 / 73 (54.79%)
| 74.125.28.95:443 |
| 2020-03-10 07:05:43 | ab0eb0ad29596601b1304da70a0f3a93 | 40 / 73 (54.79%)
| 204.155.149.44:443 |
| 2020-03-10 07:05:43 | ab0eb0ad29596601b1304da70a0f3a93 | 40 / 73 (54.79%)
| 74.125.142.101:443 |
| 2020-03-10 07:05:43 | ab0eb0ad29596601b1304da70a0f3a93 | 40 / 73 (54.79%)
| 157.240.11.22:443 |
| 2020-03-10 01:14:34 | cd0d47ebe904f0cf17f557ca3b0e25eb | 40 / 73 (54.79%)
| 172.217.17.106:443 |
| 2020-03-10 01:14:34 | cd0d47ebe904f0cf17f557ca3b0e25eb | 40 / 73 (54.79%)
| 172.217.20.67:443 |
| 2020-03-10 01:14:34 | cd0d47ebe904f0cf17f557ca3b0e25eb | 40 / 73 (54.79%)
| 172.217.168.206:443 |
| 2020-03-10 01:14:34 | cd0d47ebe904f0cf17f557ca3b0e25eb | 40 / 73 (54.79%)
| 31.13.92.14:443 |
| 2020-03-10 01:14:34 | cd0d47ebe904f0cf17f557ca3b0e25eb | 40 / 73 (54.79%)
| 172.217.17.78:443 |
| 2020-03-10 01:14:34 | cd0d47ebe904f0cf17f557ca3b0e25eb | 40 / 73 (54.79%)
| 204.155.149.44:443 |
| 2020-03-10 01:14:34 | cd0d47ebe904f0cf17f557ca3b0e25eb | 40 / 73 (54.79%)
| 172.217.17.132:443 |
| 2020-03-09 13:21:14 | cd07865227ca38b5fb47280f104986cf | 37 / 71 (52.11%)
| 185.60.216.19:443 |
| 2020-03-09 13:21:13 | cd07865227ca38b5fb47280f104986cf | 37 / 71 (52.11%)
| 216.58.208.36:443 |
| 2020-03-09 13:21:13 | cd07865227ca38b5fb47280f104986cf | 37 / 71 (52.11%)
| 204.155.149.44:443 |
| 2020-03-09 13:21:13 | cd07865227ca38b5fb47280f104986cf | 37 / 71 (52.11%)
| 216.58.206.14:443 |
| 2020-03-09 13:21:13 | cd07865227ca38b5fb47280f104986cf | 37 / 71 (52.11%)
| 172.217.18.14:443 |
| 2020-03-09 13:21:13 | cd07865227ca38b5fb47280f104986cf | 37 / 71 (52.11%)
| 172.217.23.174:443 |
| 2020-03-09 13:21:13 | cd07865227ca38b5fb47280f104986cf | 37 / 71 (52.11%)
| 172.217.22.33:443 |
| 2020-03-09 13:21:13 | cd07865227ca38b5fb47280f104986cf | 37 / 71 (52.11%)
| 172.217.16.195:443 |
| 2020-03-09 13:21:13 | cd07865227ca38b5fb47280f104986cf | 37 / 71 (52.11%)
| 172.217.23.106:443 |
| 2020-03-08 22:32:33 | c3c64e0b2665bda489dc787ead086c29 | 39 / 72 (54.17%)
| 172.217.168.67:443 |
| 2020-03-08 22:32:33 | c3c64e0b2665bda489dc787ead086c29 | 39 / 72 (54.17%)
| 172.217.168.14:443 |
| 2020-03-08 22:32:33 | c3c64e0b2665bda489dc787ead086c29 | 39 / 72 (54.17%)
| 216.58.215.228:443 |
| 2020-03-08 22:32:33 | c3c64e0b2665bda489dc787ead086c29 | 39 / 72 (54.17%)
| 216.58.215.238:443 |
| 2020-03-08 22:32:33 | c3c64e0b2665bda489dc787ead086c29 | 39 / 72 (54.17%)
| 157.240.17.15:443 |
| 2020-03-08 22:32:33 | c3c64e0b2665bda489dc787ead086c29 | 39 / 72 (54.17%)
| 172.217.168.42:443 |
| 2020-03-08 22:32:33 | c3c64e0b2665bda489dc787ead086c29 | 39 / 72 (54.17%)
| 204.155.149.44:443 |
| 2020-03-08 22:32:33 | c3c64e0b2665bda489dc787ead086c29 | 39 / 72 (54.17%)
| 172.217.168.1:443 |
| 2020-03-08 04:07:38 | b3f8bed187e3fd60c462b53c79acfa90 | 39 / 73 (53.42%)
| 172.217.168.1:443 |
# of entries: 100 (max: 100)