JA3 Fingerprints
You can find further information about the JA3 fingerprint 96eba628dcb2b47607192ba74a3b55ba, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 96eba628dcb2b47607192ba74a3b55ba |
|---|---|
| First seen: | 2017-07-19 18:53:48 UTC |
| Last seen: | 2021-07-31 01:48:32 UTC |
| Status: | Blacklisted |
| Malware samples: | 1'536 |
| Destination IPs: | 395 |
| Malware: | Tofsee  |
| Listing date: | 2018-11-14 11:49:02 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2021-10-18 21:18:19 | d5ba8ec389724fb5bcfdee83394b9f37 | n/a | 88.99.1.130:587 |
| 2021-10-11 05:33:41 | a9bf0bbb7cb7e1171fc6d3efd5d588c4 | n/a | 173.199.132.62:587 |
| 2021-10-10 07:02:56 | 1f095180682f14091ad5055be758247c | n/a | 195.121.65.26:587 |
| 2021-10-09 23:22:28 | 5bec1166ffd2277f2dff94e4bcac5003 | n/a | 176.100.7.136:465 |
| 2021-10-09 22:59:15 | ae477d3aee6d377c8d2eccfd5d69de13 | n/a | 95.142.156.6:587 |
| 2021-10-09 22:59:15 | ae477d3aee6d377c8d2eccfd5d69de13 | n/a | 87.106.24.23:587 |
| 2021-10-09 22:59:15 | ae477d3aee6d377c8d2eccfd5d69de13 | n/a | 95.142.156.8:587 |
| 2021-10-09 22:59:15 | ae477d3aee6d377c8d2eccfd5d69de13 | n/a | 87.106.24.23:465 |
| 2021-10-09 22:59:14 | ae477d3aee6d377c8d2eccfd5d69de13 | n/a | 95.142.156.28:587 |
| 2021-10-09 22:59:14 | ae477d3aee6d377c8d2eccfd5d69de13 | n/a | 95.142.156.28:465 |
| 2021-10-09 22:59:14 | ae477d3aee6d377c8d2eccfd5d69de13 | n/a | 95.142.156.8:465 |
| 2021-10-09 17:17:16 | aefe060582c7af2f6e783d1ba89ba024 | n/a | 212.227.17.168:465 |
| 2021-10-09 15:55:45 | acde17af83040cafaaf7183820a3fd89 | n/a | 80.191.56.151:465 |
| 2021-10-09 15:55:45 | acde17af83040cafaaf7183820a3fd89 | n/a | 195.130.217.210:587 |
| 2021-10-09 14:17:58 | 6c5e5bcf03fbe994d3b9941f3dbd1b85 | n/a | 95.142.156.28:465 |
| 2021-10-09 14:17:58 | 6c5e5bcf03fbe994d3b9941f3dbd1b85 | n/a | 95.142.156.28:587 |
| 2021-10-09 14:17:57 | 6c5e5bcf03fbe994d3b9941f3dbd1b85 | n/a | 95.142.156.18:465 |
| 2021-10-09 14:17:57 | 6c5e5bcf03fbe994d3b9941f3dbd1b85 | n/a | 95.142.156.6:587 |
| 2021-10-09 14:17:57 | 6c5e5bcf03fbe994d3b9941f3dbd1b85 | n/a | 95.142.156.18:587 |
| 2021-10-09 14:17:57 | 6c5e5bcf03fbe994d3b9941f3dbd1b85 | n/a | 195.130.217.210:587 |
| 2021-10-09 07:09:28 | 4ade9bccd0b2b9447ff9dbb9c3880830 | n/a | 74.50.62.117:465 |
| 2021-10-09 04:58:19 | ebf3755ddefaa5cb79df628c85ff267b | n/a | 208.89.133.9:587 |
| 2021-10-08 22:37:32 | 8bbe061254c2f7df8628d014594bae07 | n/a | 104.244.120.82:587 |
| 2021-10-08 22:37:31 | 8bbe061254c2f7df8628d014594bae07 | n/a | 104.244.120.82:465 |
| 2021-10-08 21:44:18 | 6eb144d61460b8e5e9da3226070a68eb | n/a | 160.153.78.131:587 |
| 2021-10-08 21:44:18 | 6eb144d61460b8e5e9da3226070a68eb | n/a | 160.153.78.131:465 |
| 2021-10-08 19:20:13 | 19d688ee7f1238a41b27d6fa143ecb86 |  48 / 69 (69.57%)
| 66.226.70.66:587 |
| 2021-10-08 19:20:13 | 19d688ee7f1238a41b27d6fa143ecb86 | 48 / 69 (69.57%)
| 66.226.70.66:465 |
| 2021-10-08 04:14:01 | 049458cf84d53142577e028c37d4dfe3 | n/a | 169.61.73.165:443 |
| 2021-10-06 22:14:59 | ce11aae9a09a841f08dde930704813b7 | n/a | 209.102.225.2:587 |
| 2021-10-06 21:52:03 | 399ac0dad612e0d35a02e7efa1b31850 | n/a | 168.0.132.203:587 |
| 2021-10-05 05:44:20 | 97ffba9364e8d91ae0e77bd9d21ef55d | n/a | 62.149.128.203:587 |
| 2021-10-05 05:14:31 | 609b6bb39d45ce755da8e34620206ae9 | n/a | 85.13.157.215:465 |
| 2021-10-04 20:00:10 | d15a4c058d6d3d8f4cb3b3d23b8c4e35 | 24 / 69 (34.78%)
| 223.29.248.111:465 |
| 2021-10-04 07:09:27 | 3b48192c10cd25c7a7d5b78ec0f5d9d4 | n/a | 133.167.73.73:587 |
| 2021-10-04 07:09:27 | 3b48192c10cd25c7a7d5b78ec0f5d9d4 | n/a | 133.167.73.73:465 |
| 2021-10-04 06:44:22 | 1f8f27ac53543bb015ef6c44b4da5f53 | n/a | 205.147.111.56:465 |
| 2021-10-04 06:44:21 | 1f8f27ac53543bb015ef6c44b4da5f53 | n/a | 103.20.213.48:465 |
| 2021-10-04 02:59:17 | a23229a7d4a5cc14d40ede304fe4f584 | n/a | 173.236.29.82:465 |
| 2021-10-04 02:59:17 | a23229a7d4a5cc14d40ede304fe4f584 | n/a | 173.236.29.82:587 |
| 2021-10-04 00:23:40 | a16cbc6f6af29082d4dd015e4e77aab6 | n/a | 66.96.160.141:465 |
| 2021-10-04 00:23:40 | a16cbc6f6af29082d4dd015e4e77aab6 | n/a | 66.96.160.141:587 |
| 2021-10-03 17:41:46 | 0ee63705af64383c75ea7cb510e179b0 | n/a | 124.156.190.79:465 |
| 2021-10-03 17:41:46 | 0ee63705af64383c75ea7cb510e179b0 | n/a | 124.156.190.79:587 |
| 2021-10-03 03:35:41 | 922e58fed94bf67d74276fa38aede439 | n/a | 52.97.186.114:587 |
| 2021-10-03 03:35:41 | 922e58fed94bf67d74276fa38aede439 | n/a | 52.98.168.178:587 |
| 2021-10-02 23:34:21 | a08ab368170e0317c9f76e6dd6922d17 | n/a | 107.180.2.152:587 |
| 2021-10-02 23:34:20 | a08ab368170e0317c9f76e6dd6922d17 | n/a | 15.222.16.210:587 |
| 2021-10-02 23:34:20 | a08ab368170e0317c9f76e6dd6922d17 | n/a | 69.49.101.233:465 |
| 2021-10-02 23:34:20 | a08ab368170e0317c9f76e6dd6922d17 | n/a | 69.49.101.233:587 |
| 2021-10-02 23:02:50 | 9adfa789ad24d2d1395f14a3ba96e968 | n/a | 205.178.146.249:587 |
| 2021-10-01 18:09:03 | 53b2bbd4507c850e2ca5e93856dad69c | n/a | 193.70.18.144:587 |
| 2021-10-01 18:09:02 | 53b2bbd4507c850e2ca5e93856dad69c | n/a | 193.70.18.144:465 |
| 2021-10-01 06:54:12 | a4274160d57e2287223da19eeec5a7e8 | n/a | 172.96.191.65:587 |
| 2021-09-23 22:48:21 | 1ef746966e85bae95974990de264080d | n/a | 153.92.8.199:587 |
| 2021-09-20 13:15:31 | bab4fea354ce6944ad3db50c7b0de304 | n/a | 64.98.36.221:587 |
| 2021-09-17 13:27:54 | a8de8e9c71c361cd0a38fac8c5305496 | n/a | 81.0.212.10:465 |
| 2021-09-02 17:03:50 | ef253b20c2beea13fcf6bf9c590f78bf | n/a | 116.211.15.215:443 |
| 2021-08-29 07:25:12 | a06ba495c2485e21af395263e3b9841c | 0 / 63 (0.00%)
| 169.61.73.165:443 |
| 2021-08-25 20:08:44 | 491c9f75f988d018b16c6c32d907ea8d | n/a | 64.34.156.154:587 |
| 2021-08-25 20:08:44 | 491c9f75f988d018b16c6c32d907ea8d | n/a | 64.34.156.154:465 |
| 2021-08-12 04:55:39 | 1e90cc98e8afb798455ebb2dda8f98fd | 1 / 68 (1.47%)
| 163.171.138.158:443 |
| 2021-07-31 01:48:32 | f4940e9d843336a142b0deae0ec2174d | 43 / 69 (62.32%)
| 45.32.120.24:777 |
| 2021-07-31 01:48:32 | f4940e9d843336a142b0deae0ec2174d | 43 / 69 (62.32%)
| 45.32.120.24:777 |
| 2021-07-20 20:25:07 | 6e6ed85abc5bee4d20bd675ae564a07a | 1 / 67 (1.49%)
| 116.211.15.215:443 |
| 2021-07-20 20:25:07 | 6e6ed85abc5bee4d20bd675ae564a07a | 1 / 67 (1.49%)
| 116.211.15.215:443 |
| 2021-07-01 20:28:01 | 67eb2cf5c9e34b6dcafae2c8c3582b6e | n/a | 216.240.135.98:587 |
| 2021-07-01 20:28:01 | 67eb2cf5c9e34b6dcafae2c8c3582b6e | n/a | 216.240.135.98:465 |
| 2021-07-01 20:28:01 | 67eb2cf5c9e34b6dcafae2c8c3582b6e | n/a | 216.240.135.98:587 |
| 2021-07-01 20:28:01 | 67eb2cf5c9e34b6dcafae2c8c3582b6e | n/a | 216.240.135.98:465 |
| 2021-06-10 18:38:53 | 377e602861784a23e81cd4581e3ceaa5 | 33 / 69 (47.83%)
| 45.32.120.24:777 |
| 2021-06-10 18:38:53 | 377e602861784a23e81cd4581e3ceaa5 | 33 / 69 (47.83%)
| 45.32.120.24:777 |
| 2021-05-25 19:22:26 | 8d43acc0746fe7ea6ab84b5c4b646d2a | 2 / 71 (2.82%)
| 116.211.15.215:443 |
| 2021-05-25 19:22:26 | 8d43acc0746fe7ea6ab84b5c4b646d2a | 2 / 71 (2.82%)
| 116.211.15.215:443 |
| 2021-05-25 18:54:47 | f922fbe29201b4cc31951fb0b01b33da | 0 / 48 (0.00%)
| 116.211.15.215:443 |
| 2021-05-25 18:54:47 | f922fbe29201b4cc31951fb0b01b33da | 0 / 48 (0.00%)
| 116.211.15.215:443 |
| 2021-05-03 10:55:43 | 57e54353a0aae647fd6a7d879d81e516 | 33 / 47 (70.21%)
| 193.246.9.44:443 |
| 2021-05-03 10:55:43 | 57e54353a0aae647fd6a7d879d81e516 | 33 / 47 (70.21%)
| 193.246.9.44:443 |
| 2021-04-16 04:42:38 | b30d03f7d800765095f64f2940f1484b | 13 / 70 (18.57%)
| 166.78.85.190:443 |
| 2021-04-16 04:42:38 | b30d03f7d800765095f64f2940f1484b | 13 / 70 (18.57%)
| 52.0.99.229:443 |
| 2021-04-16 04:42:38 | b30d03f7d800765095f64f2940f1484b | 13 / 70 (18.57%)
| 166.78.85.190:443 |
| 2021-04-16 04:42:38 | b30d03f7d800765095f64f2940f1484b | 13 / 70 (18.57%)
| 52.0.99.229:443 |
| 2021-04-08 07:02:26 | 28c6062200c174e2a8048cae0ec899ed | n/a | 62.149.128.201:587 |
| 2021-04-08 07:02:26 | 28c6062200c174e2a8048cae0ec899ed | n/a | 62.149.128.201:587 |
| 2021-04-08 07:02:25 | 28c6062200c174e2a8048cae0ec899ed | n/a | 62.149.128.202:587 |
| 2021-04-08 07:02:25 | 28c6062200c174e2a8048cae0ec899ed | n/a | 62.149.128.202:587 |
| 2021-04-08 07:02:03 | 82821e54f009d27ead25571b77f5476a | 39 / 69 (56.52%)
| 173.201.193.101:587 |
| 2021-04-08 07:02:03 | 82821e54f009d27ead25571b77f5476a | 39 / 69 (56.52%)
| 198.38.88.80:587 |
| 2021-04-08 07:02:03 | 82821e54f009d27ead25571b77f5476a | 39 / 69 (56.52%)
| 173.201.193.101:587 |
| 2021-04-08 07:02:03 | 82821e54f009d27ead25571b77f5476a | 39 / 69 (56.52%)
| 198.38.88.80:587 |
| 2021-04-08 06:35:23 | c7012f3e4e95ff94d66b60aaf556c98a | n/a | 81.88.178.55:587 |
| 2021-04-08 06:35:23 | c7012f3e4e95ff94d66b60aaf556c98a | n/a | 81.88.178.55:587 |
| 2021-04-08 03:12:23 | d45f09fbae6b86977830fb7fcfaddc25 | 44 / 69 (63.77%)
| 52.97.179.194:587 |
| 2021-04-08 03:12:23 | d45f09fbae6b86977830fb7fcfaddc25 | 44 / 69 (63.77%)
| 52.97.179.194:587 |
| 2021-04-08 01:21:36 | d019b3344a1d000f31de5033839c3dd4 | n/a | 213.190.6.246:587 |
| 2021-04-08 01:21:36 | d019b3344a1d000f31de5033839c3dd4 | n/a | 213.190.6.246:587 |
| 2021-04-08 00:52:32 | d0ea04f585a6649a0db7a4ee9fb832f3 | 36 / 65 (55.38%)
| 150.162.2.72:465 |
| 2021-04-08 00:52:32 | d0ea04f585a6649a0db7a4ee9fb832f3 | 36 / 65 (55.38%)
| 150.162.2.72:465 |
| 2021-04-07 23:53:32 | b5b9d140b5eadd9c311a8d16b348bbde | 44 / 67 (65.67%)
| 186.215.90.50:587 |
| 2021-04-07 23:53:32 | b5b9d140b5eadd9c311a8d16b348bbde | 44 / 67 (65.67%)
| 186.215.90.50:587 |
# of entries: 100 (max: 100)