JA3 Fingerprints
You can find further information about the JA3 fingerprint 96eba628dcb2b47607192ba74a3b55ba, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 96eba628dcb2b47607192ba74a3b55ba |
|---|---|
| First seen: | 2017-07-19 18:53:48 UTC |
| Last seen: | 2021-05-03 10:55:43 UTC |
| Status: | Blacklisted |
| Malware samples: | 1'494 |
| Destination IPs: | 356 |
| Malware: | Tofsee  |
| Listing date: | 2018-11-14 11:49:02 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2021-05-03 10:55:43 | 57e54353a0aae647fd6a7d879d81e516 |  33 / 47 (70.21%)
| 193.246.9.44:443 |
| 2021-04-16 04:42:38 | b30d03f7d800765095f64f2940f1484b | 13 / 70 (18.57%)
| 166.78.85.190:443 |
| 2021-04-16 04:42:38 | b30d03f7d800765095f64f2940f1484b | 13 / 70 (18.57%)
| 52.0.99.229:443 |
| 2021-04-08 07:02:26 | 28c6062200c174e2a8048cae0ec899ed | n/a | 62.149.128.201:587 |
| 2021-04-08 07:02:25 | 28c6062200c174e2a8048cae0ec899ed | n/a | 62.149.128.202:587 |
| 2021-04-08 07:02:03 | 82821e54f009d27ead25571b77f5476a | 39 / 69 (56.52%)
| 173.201.193.101:587 |
| 2021-04-08 07:02:03 | 82821e54f009d27ead25571b77f5476a | 39 / 69 (56.52%)
| 198.38.88.80:587 |
| 2021-04-08 06:35:23 | c7012f3e4e95ff94d66b60aaf556c98a | n/a | 81.88.178.55:587 |
| 2021-04-08 03:12:23 | d45f09fbae6b86977830fb7fcfaddc25 | 44 / 69 (63.77%)
| 52.97.179.194:587 |
| 2021-04-08 01:21:36 | d019b3344a1d000f31de5033839c3dd4 | n/a | 213.190.6.246:587 |
| 2021-04-08 00:52:32 | d0ea04f585a6649a0db7a4ee9fb832f3 | 36 / 65 (55.38%)
| 150.162.2.72:465 |
| 2021-04-07 23:53:32 | b5b9d140b5eadd9c311a8d16b348bbde | 44 / 67 (65.67%)
| 186.215.90.50:587 |
| 2021-04-07 16:27:01 | cbdd7a3540d6935c33768fb3aa77727d | n/a | 193.46.84.142:587 |
| 2021-04-07 10:37:58 | b9d717816829a20993b9b5cc6322ba98 | 38 / 66 (57.58%)
| 35.209.104.83:587 |
| 2021-04-07 10:37:58 | b9d717816829a20993b9b5cc6322ba98 | 38 / 66 (57.58%)
| 50.116.85.33:587 |
| 2021-04-07 10:37:58 | b9d717816829a20993b9b5cc6322ba98 | 38 / 66 (57.58%)
| 80.67.18.126:465 |
| 2021-04-06 17:28:32 | a86b94300a39f98fbc13c8f9479b7e8e | 40 / 70 (57.14%)
| 64.29.151.235:587 |
| 2021-04-06 04:48:06 | a378b9daae78b2cee8be8c188660c4e0 | 42 / 70 (60.00%)
| 81.2.195.204:465 |
| 2021-04-06 04:48:06 | a378b9daae78b2cee8be8c188660c4e0 | 42 / 70 (60.00%)
| 62.149.128.203:587 |
| 2021-04-06 04:48:06 | a378b9daae78b2cee8be8c188660c4e0 | 42 / 70 (60.00%)
| 200.91.41.29:465 |
| 2021-04-06 04:48:05 | a378b9daae78b2cee8be8c188660c4e0 | 42 / 70 (60.00%)
| 162.241.85.197:587 |
| 2021-04-06 04:48:05 | a378b9daae78b2cee8be8c188660c4e0 | 42 / 70 (60.00%)
| 81.2.195.204:587 |
| 2021-04-06 04:48:05 | a378b9daae78b2cee8be8c188660c4e0 | 42 / 70 (60.00%)
| 162.241.85.197:465 |
| 2021-04-06 04:48:04 | a378b9daae78b2cee8be8c188660c4e0 | 42 / 70 (60.00%)
| 200.91.41.25:465 |
| 2021-04-06 02:34:10 | 7f7987b9b3b5714f337a67228aa032bb | 43 / 70 (61.43%)
| 120.138.8.96:465 |
| 2021-04-06 02:34:09 | 7f7987b9b3b5714f337a67228aa032bb | 43 / 70 (61.43%)
| 104.193.142.58:587 |
| 2021-04-06 02:34:08 | 7f7987b9b3b5714f337a67228aa032bb | 43 / 70 (61.43%)
| 212.92.23.54:465 |
| 2021-04-06 02:34:08 | 7f7987b9b3b5714f337a67228aa032bb | 43 / 70 (61.43%)
| 64.29.151.235:465 |
| 2021-04-06 02:34:08 | 7f7987b9b3b5714f337a67228aa032bb | 43 / 70 (61.43%)
| 212.92.23.54:587 |
| 2021-04-06 02:34:07 | 7f7987b9b3b5714f337a67228aa032bb | 43 / 70 (61.43%)
| 104.193.142.58:465 |
| 2021-04-06 02:34:07 | 7f7987b9b3b5714f337a67228aa032bb | 43 / 70 (61.43%)
| 45.114.245.103:587 |
| 2021-04-06 02:34:06 | 7f7987b9b3b5714f337a67228aa032bb | 43 / 70 (61.43%)
| 109.234.162.98:587 |
| 2021-04-06 02:34:06 | 7f7987b9b3b5714f337a67228aa032bb | 43 / 70 (61.43%)
| 64.29.151.235:587 |
| 2021-04-06 02:34:06 | 7f7987b9b3b5714f337a67228aa032bb | 43 / 70 (61.43%)
| 109.234.162.98:465 |
| 2021-04-06 02:34:06 | 7f7987b9b3b5714f337a67228aa032bb | 43 / 70 (61.43%)
| 45.114.245.103:465 |
| 2021-04-05 23:54:39 | 8a5e8eb59a0ce9f6c8567afaf63a0858 | 40 / 69 (57.97%)
| 212.45.32.200:587 |
| 2021-04-05 22:50:44 | 4cc0160586ba19ece72e062213d9a9ab | 39 / 69 (56.52%)
| 62.149.128.202:587 |
| 2021-04-05 22:50:43 | 4cc0160586ba19ece72e062213d9a9ab | 39 / 69 (56.52%)
| 216.40.42.5:465 |
| 2021-04-05 21:17:08 | 2dda8a2bc9c8f0ff83c0e9ebdb1535f3 | 55 / 70 (78.57%)
| 193.70.18.144:465 |
| 2021-04-05 21:17:07 | 2dda8a2bc9c8f0ff83c0e9ebdb1535f3 | 55 / 70 (78.57%)
| 188.165.47.122:465 |
| 2021-04-05 21:17:07 | 2dda8a2bc9c8f0ff83c0e9ebdb1535f3 | 55 / 70 (78.57%)
| 193.70.18.144:587 |
| 2021-04-01 00:14:17 | 752f150e2bf7f8097cda8a5b6ea9eeb0 | n/a | 212.10.10.65:587 |
| 2021-04-01 00:14:17 | 752f150e2bf7f8097cda8a5b6ea9eeb0 | n/a | 62.149.128.200:587 |
| 2021-04-01 00:14:16 | 752f150e2bf7f8097cda8a5b6ea9eeb0 | n/a | 62.149.128.202:587 |
| 2021-03-30 20:23:01 | 8d4d84d0ee162638eea72eab54a2b838 | 33 / 63 (52.38%)
| 178.255.41.44:587 |
| 2021-03-30 20:22:59 | 8d4d84d0ee162638eea72eab54a2b838 | 33 / 63 (52.38%)
| 208.91.199.224:587 |
| 2021-03-29 14:18:23 | e68afe3ef530745d7724c4c9c18fa670 | 48 / 71 (67.61%)
| 216.40.42.5:465 |
| 2021-03-28 01:30:49 | 224a1e76325d9898f612050bbfa52ae3 | 44 / 70 (62.86%)
| 74.50.227.221:587 |
| 2021-03-24 15:22:31 | 900f828a368bb17e2e8f57a12c323b2f | 47 / 71 (66.20%)
| 62.149.128.203:587 |
| 2021-03-24 15:19:11 | 91bb31332caddb8af3458358751cd19a | 45 / 70 (64.29%)
| 88.149.128.13:587 |
| 2021-03-24 15:16:44 | 8548a6ecb226ff7dd87abd49b61c7529 | 52 / 71 (73.24%)
| 115.236.118.130:465 |
| 2021-03-24 14:09:41 | 58f70f68210fe51080db7b3aa67b823c | n/a | 103.96.148.66:465 |
| 2021-03-24 14:09:40 | 58f70f68210fe51080db7b3aa67b823c | n/a | 103.108.195.92:465 |
| 2021-03-24 11:29:53 | cee827426d7cd2b415ee5b021c775754 | n/a | 208.91.198.143:587 |
| 2021-03-24 04:09:25 | b46f495f12e7415f853b67c3d0b77949 | n/a | 177.70.110.120:587 |
| 2021-03-24 04:09:25 | b46f495f12e7415f853b67c3d0b77949 | n/a | 62.149.128.202:587 |
| 2021-03-22 22:07:28 | 15d3936a9b78e64dcf520b5e5de2b646 | 35 / 71 (49.30%)
| 184.107.41.78:587 |
| 2021-03-18 07:36:39 | 22f6b5aa2b77bc2023b310b439105537 | n/a | 83.166.143.44:587 |
| 2021-03-18 07:36:38 | 22f6b5aa2b77bc2023b310b439105537 | n/a | 83.166.143.44:465 |
| 2021-03-18 07:36:38 | 22f6b5aa2b77bc2023b310b439105537 | n/a | 83.166.143.45:465 |
| 2021-03-18 07:36:38 | 22f6b5aa2b77bc2023b310b439105537 | n/a | 83.166.143.45:587 |
| 2021-03-18 07:32:55 | 1bf9fcfb55e364f90fbe96c4443a359a | 49 / 70 (70.00%)
| 202.130.44.227:587 |
| 2021-03-18 07:32:55 | 1bf9fcfb55e364f90fbe96c4443a359a | 49 / 70 (70.00%)
| 199.116.78.84:465 |
| 2021-03-18 07:32:55 | 1bf9fcfb55e364f90fbe96c4443a359a | 49 / 70 (70.00%)
| 101.0.119.44:465 |
| 2021-03-18 07:32:54 | 1bf9fcfb55e364f90fbe96c4443a359a | 49 / 70 (70.00%)
| 199.116.78.84:587 |
| 2021-03-18 07:32:54 | 1bf9fcfb55e364f90fbe96c4443a359a | 49 / 70 (70.00%)
| 202.130.44.227:465 |
| 2021-03-18 07:32:54 | 1bf9fcfb55e364f90fbe96c4443a359a | 49 / 70 (70.00%)
| 101.0.119.44:587 |
| 2021-03-18 05:32:16 | 513862ca3e9510726553a72041cf6d6f | n/a | 62.149.128.201:587 |
| 2021-03-18 04:30:49 | 42dca70cdfbab407d0442eefbbd53970 | 43 / 67 (64.18%)
| 64.90.62.162:465 |
| 2021-03-18 01:08:52 | 4607dbb458ab7d3e426c42715110f7a7 | n/a | 195.78.66.144:587 |
| 2021-03-18 01:08:52 | 4607dbb458ab7d3e426c42715110f7a7 | n/a | 195.78.66.144:465 |
| 2021-03-17 22:45:15 | 45ad05dce8a6eea0ae48bb414e22df24 | n/a | 213.46.255.43:465 |
| 2021-03-17 22:45:15 | 45ad05dce8a6eea0ae48bb414e22df24 | n/a | 213.46.255.43:587 |
| 2021-03-17 22:21:43 | 1b426410a31129fd9b157011772ecccf | 38 / 71 (53.52%)
| 12.36.103.152:465 |
| 2021-03-17 16:21:21 | d57aef4745e93af8759a953131b8e20b | 50 / 70 (71.43%)
| 62.149.128.202:587 |
| 2021-03-16 23:12:20 | 3d6aac7d9fc07f993f21acb525db68b5 | 39 / 68 (57.35%)
| 66.96.144.190:587 |
| 2021-03-16 23:12:20 | 3d6aac7d9fc07f993f21acb525db68b5 | 39 / 68 (57.35%)
| 198.11.204.73:465 |
| 2021-03-16 23:12:19 | 3d6aac7d9fc07f993f21acb525db68b5 | 39 / 68 (57.35%)
| 185.36.169.26:587 |
| 2021-03-16 23:12:19 | 3d6aac7d9fc07f993f21acb525db68b5 | 39 / 68 (57.35%)
| 103.243.174.107:587 |
| 2021-03-16 23:12:19 | 3d6aac7d9fc07f993f21acb525db68b5 | 39 / 68 (57.35%)
| 192.185.46.67:465 |
| 2021-03-16 23:12:19 | 3d6aac7d9fc07f993f21acb525db68b5 | 39 / 68 (57.35%)
| 66.96.144.190:465 |
| 2021-03-16 23:12:19 | 3d6aac7d9fc07f993f21acb525db68b5 | 39 / 68 (57.35%)
| 103.243.174.107:465 |
| 2021-03-16 23:12:19 | 3d6aac7d9fc07f993f21acb525db68b5 | 39 / 68 (57.35%)
| 198.11.204.73:587 |
| 2021-03-16 23:12:18 | 3d6aac7d9fc07f993f21acb525db68b5 | 39 / 68 (57.35%)
| 157.193.189.5:465 |
| 2021-03-16 23:12:18 | 3d6aac7d9fc07f993f21acb525db68b5 | 39 / 68 (57.35%)
| 185.36.169.26:465 |
| 2021-03-13 11:48:29 | 19211c179c36eb437b893ef8fd108e80 | n/a | 85.95.237.163:587 |
| 2021-03-13 11:48:29 | 19211c179c36eb437b893ef8fd108e80 | n/a | 85.95.237.163:465 |
| 2021-03-12 19:47:22 | a9fdaecf90b4bd244e03fab5a49927de | 44 / 69 (63.77%)
| 94.102.153.18:587 |
| 2021-03-12 19:47:22 | a9fdaecf90b4bd244e03fab5a49927de | 44 / 69 (63.77%)
| 90.155.62.30:587 |
| 2021-03-12 19:47:22 | a9fdaecf90b4bd244e03fab5a49927de | 44 / 69 (63.77%)
| 85.92.81.218:587 |
| 2021-03-12 19:47:22 | a9fdaecf90b4bd244e03fab5a49927de | 44 / 69 (63.77%)
| 85.92.81.218:465 |
| 2021-03-12 19:47:22 | a9fdaecf90b4bd244e03fab5a49927de | 44 / 69 (63.77%)
| 90.155.62.30:465 |
| 2021-03-12 19:47:22 | a9fdaecf90b4bd244e03fab5a49927de | 44 / 69 (63.77%)
| 94.102.153.18:465 |
| 2021-03-12 18:03:41 | a97b064ad3004c755ce902ceed3f8e77 | 39 / 70 (55.71%)
| 35.214.61.25:465 |
| 2021-03-12 18:03:41 | a97b064ad3004c755ce902ceed3f8e77 | 39 / 70 (55.71%)
| 146.66.121.211:587 |
| 2021-03-12 18:03:41 | a97b064ad3004c755ce902ceed3f8e77 | 39 / 70 (55.71%)
| 146.66.121.211:465 |
| 2021-03-12 18:03:40 | a97b064ad3004c755ce902ceed3f8e77 | 39 / 70 (55.71%)
| 35.214.61.25:587 |
| 2021-03-12 04:05:31 | a115ebc90c36f3d3a6495b665245f1d7 | 48 / 70 (68.57%)
| 89.238.188.193:587 |
| 2021-03-12 04:05:31 | a115ebc90c36f3d3a6495b665245f1d7 | 48 / 70 (68.57%)
| 193.189.75.25:465 |
| 2021-03-12 04:05:31 | a115ebc90c36f3d3a6495b665245f1d7 | 48 / 70 (68.57%)
| 213.171.216.50:587 |
# of entries: 100 (max: 100)