JA3 Fingerprints
You can find further information about the JA3 fingerprint 96eba628dcb2b47607192ba74a3b55ba, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 96eba628dcb2b47607192ba74a3b55ba |
|---|---|
| First seen: | 2017-07-19 18:53:48 UTC |
| Last seen: | 2021-07-31 01:48:32 UTC |
| Status: | Blacklisted |
| Malware samples: | 1'586 |
| Destination IPs: | 458 |
| Malware: | Tofsee  |
| Listing date: | 2018-11-14 11:49:02 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2025-03-11 07:57:51 | bd36c419b578d4edc24589b8c3b2b486 | n/a | 173.231.206.214:443 |
| 2024-08-30 17:23:40 | d695d65659c02974011711eb6cc51853 | n/a | 168.235.193.123:443 |
| 2024-02-13 13:42:59 | c5bf875a0a9794719e1d2b5230ddfcad | n/a | 69.167.169.250:443 |
| 2023-07-13 16:44:30 | 292cef558d882d9f8a1bc59f21b1ee92 | n/a | 166.78.85.190:443 |
| 2023-07-13 16:44:30 | 292cef558d882d9f8a1bc59f21b1ee92 | n/a | 34.196.253.255:443 |
| 2023-07-03 15:35:40 | bb1d489eb833e8ea9c35ae9ab043e619 | n/a | 166.78.85.190:443 |
| 2023-07-03 15:35:40 | bb1d489eb833e8ea9c35ae9ab043e619 | n/a | 100.24.78.229:443 |
| 2023-05-19 06:51:57 | bd81941222ec7013cd598b50f55be66c | n/a | 69.167.169.250:443 |
| 2023-04-23 23:03:26 | 2a33f110c73c892c3ba7e935ff9a4473 | n/a | 66.226.70.78:25 |
| 2023-04-23 23:03:26 | 2a33f110c73c892c3ba7e935ff9a4473 | n/a | 142.250.153.27:25 |
| 2023-04-23 23:03:25 | 2a33f110c73c892c3ba7e935ff9a4473 | n/a | 104.47.55.161:25 |
| 2023-04-23 23:03:22 | 2a33f110c73c892c3ba7e935ff9a4473 | n/a | 142.250.27.27:25 |
| 2023-04-20 21:45:14 | 22e406f2ba493bab561d39cc7bc483df | n/a | 64.233.184.27:25 |
| 2023-04-18 08:21:11 | 9f95df4831aaa8dc6bd0cd4584f59e9b | n/a | 207.54.84.45:25 |
| 2023-04-18 08:21:11 | 9f95df4831aaa8dc6bd0cd4584f59e9b | n/a | 64.233.177.26:25 |
| 2023-04-18 08:21:11 | 9f95df4831aaa8dc6bd0cd4584f59e9b | n/a | 104.47.13.33:25 |
| 2023-04-18 08:21:10 | 9f95df4831aaa8dc6bd0cd4584f59e9b | n/a | 108.177.12.27:25 |
| 2023-04-17 05:27:59 | cbaedfd5aa2891e9203681b4cc5e5b99 |  33 / 70 (47.14%)
| 172.217.197.27:25 |
| 2023-04-16 07:13:35 | 0c1708ed3939df691fcc921eeca929e8 | 30 / 69 (43.48%)
| 64.78.32.67:25 |
| 2023-04-16 07:13:35 | 0c1708ed3939df691fcc921eeca929e8 | 30 / 69 (43.48%)
| 64.233.186.26:25 |
| 2023-04-16 07:13:34 | 0c1708ed3939df691fcc921eeca929e8 | 30 / 69 (43.48%)
| 188.125.72.74:25 |
| 2023-04-16 07:13:34 | 0c1708ed3939df691fcc921eeca929e8 | 30 / 69 (43.48%)
| 209.222.82.253:25 |
| 2023-04-15 16:15:19 | 4d94ed910f3a0ad8d7f419f1a50374a8 | n/a | 142.251.15.26:25 |
| 2023-04-15 16:15:19 | 4d94ed910f3a0ad8d7f419f1a50374a8 | n/a | 17.57.154.33:25 |
| 2023-04-15 16:15:19 | 4d94ed910f3a0ad8d7f419f1a50374a8 | n/a | 172.217.197.26:25 |
| 2023-04-15 09:38:28 | 5eae8b0617269981964db90a2bc5e0af | n/a | 108.177.12.27:25 |
| 2023-04-15 08:06:14 | b958d0c5995b41611ebde6e038293e40 | n/a | 172.217.197.27:25 |
| 2023-04-15 08:06:14 | b958d0c5995b41611ebde6e038293e40 | n/a | 108.177.12.27:25 |
| 2023-04-15 08:06:14 | b958d0c5995b41611ebde6e038293e40 | n/a | 172.253.62.26:25 |
| 2023-04-15 07:48:12 | 40e731a2e5ee26ba9f1a1cb26041e949 | n/a | 98.136.96.76:25 |
| 2023-04-15 07:48:11 | 40e731a2e5ee26ba9f1a1cb26041e949 | n/a | 64.233.177.27:25 |
| 2023-04-15 06:07:11 | b9f0858195acd75ed6c513512ae839df | n/a | 67.195.228.106:25 |
| 2023-04-15 06:07:10 | b9f0858195acd75ed6c513512ae839df | n/a | 64.233.186.26:25 |
| 2023-04-13 10:01:34 | 9eb6815fcc63ea63a8d1b80eb57572d1 | n/a | 67.195.228.86:25 |
| 2023-04-13 10:01:34 | 9eb6815fcc63ea63a8d1b80eb57572d1 | n/a | 172.217.197.27:25 |
| 2023-04-13 10:01:34 | 9eb6815fcc63ea63a8d1b80eb57572d1 | n/a | 108.177.12.27:25 |
| 2023-04-13 10:01:34 | 9eb6815fcc63ea63a8d1b80eb57572d1 | n/a | 64.233.186.27:25 |
| 2023-04-11 00:37:42 | b392988225f6d006fa2db9680bd51cc0 | n/a | 142.250.27.27:25 |
| 2023-04-10 12:51:34 | 834af2d95f666b612d5ca6e2a673bb7b | 57 / 69 (82.61%)
| 172.253.63.27:25 |
| 2023-04-09 07:01:36 | 98f17302b4e156486845c83ad422c6aa | n/a | 17.57.155.34:25 |
| 2023-04-09 07:01:35 | 98f17302b4e156486845c83ad422c6aa | n/a | 142.251.163.26:25 |
| 2023-04-08 22:42:47 | a846c9ececdda95c0459c696319e66b6 | n/a | 17.57.152.5:25 |
| 2023-04-08 22:42:47 | a846c9ececdda95c0459c696319e66b6 | n/a | 17.57.152.5:25 |
| 2023-04-08 15:01:52 | 042bfffae1e7d8e7066008b1ab3493e1 | 62 / 69 (89.86%)
| 104.47.56.138:25 |
| 2023-04-08 15:01:52 | 042bfffae1e7d8e7066008b1ab3493e1 | 62 / 69 (89.86%)
| 64.233.184.26:25 |
| 2023-04-08 15:01:52 | 042bfffae1e7d8e7066008b1ab3493e1 | 62 / 69 (89.86%)
| 104.47.18.225:25 |
| 2023-04-08 15:01:51 | 042bfffae1e7d8e7066008b1ab3493e1 | 62 / 69 (89.86%)
| 98.136.96.91:25 |
| 2023-04-06 05:12:18 | c059148f37c0c636e06de59e0e8a4646 | n/a | 64.233.186.26:25 |
| 2023-04-06 05:12:17 | c059148f37c0c636e06de59e0e8a4646 | n/a | 98.136.96.76:25 |
| 2023-04-06 05:12:17 | c059148f37c0c636e06de59e0e8a4646 | n/a | 205.220.166.177:25 |
| 2023-04-04 04:11:55 | 2a22bc81619c02b1dbd4775f0f3c2d18 | n/a | 192.185.216.123:587 |
| 2023-03-15 21:41:32 | 56dc5ab72d04cc0508a0182deb01cf3a | n/a | 76.12.236.182:465 |
| 2023-03-15 21:41:32 | 56dc5ab72d04cc0508a0182deb01cf3a | n/a | 76.12.236.182:587 |
| 2023-03-15 21:41:31 | 56dc5ab72d04cc0508a0182deb01cf3a | n/a | 130.117.53.188:587 |
| 2023-03-01 11:00:11 | 0b60db7e888d08cc9c4365810a69a576 | n/a | 15.235.50.116:465 |
| 2023-03-01 11:00:11 | 0b60db7e888d08cc9c4365810a69a576 | n/a | 15.235.50.116:587 |
| 2023-02-11 18:31:14 | 3b0e155e583e63893282f809d0bb4ca0 | n/a | 54.165.75.101:443 |
| 2023-02-11 18:31:14 | 3b0e155e583e63893282f809d0bb4ca0 | n/a | 166.78.85.190:443 |
| 2023-02-11 18:31:13 | 3b0e155e583e63893282f809d0bb4ca0 | n/a | 34.205.107.99:443 |
| 2023-01-19 03:02:57 | 37d6cc933b12fd250829c4b7e5c898b6 | n/a | 34.205.107.99:443 |
| 2023-01-19 03:02:57 | 37d6cc933b12fd250829c4b7e5c898b6 | n/a | 166.78.85.190:443 |
| 2022-12-31 13:26:56 | bd51d4ecd238827f5ad102dafba08c18 | n/a | 163.171.132.115:443 |
| 2022-10-12 10:10:45 | 3331b727d5298d92cb145751a51cfa30 | n/a | 52.4.238.128:443 |
| 2022-10-12 10:10:45 | 3331b727d5298d92cb145751a51cfa30 | n/a | 166.78.85.190:443 |
| 2022-08-27 17:10:12 | a26be35e9d3b414c3c586bc63e327735 | n/a | 169.61.73.165:443 |
| 2022-08-21 22:23:52 | b3a0078d92baa6227a147bbed7b8082e | n/a | 163.171.160.195:443 |
| 2022-07-25 12:17:37 | 3613a634154063aa3c14f6e9e62610e1 | n/a | 89.184.64.120:587 |
| 2022-05-28 12:41:15 | 79a211a58e9228afd4a46f7e02335ff6 | n/a | 169.61.73.165:443 |
| 2022-05-08 20:04:44 | 929d8284d08fc4479935107485e146a5 | n/a | 70.35.198.84:443 |
| 2021-11-25 19:47:52 | 19d5fb573bfc7428ab4c1a6f7d80ddf6 | 4 / 67 (5.97%)
| 157.185.160.88:443 |
| 2021-11-23 18:11:56 | f680fe0d45177edced48df69dfe6091c | n/a | 78.46.98.23:587 |
| 2021-11-23 18:11:56 | f680fe0d45177edced48df69dfe6091c | n/a | 78.46.98.23:465 |
| 2021-11-22 22:25:32 | 672e852bcf79e3eb3c44ebff092d34f8 | n/a | 191.252.112.194:465 |
| 2021-11-22 22:25:32 | 672e852bcf79e3eb3c44ebff092d34f8 | n/a | 191.252.112.194:587 |
| 2021-11-22 21:58:09 | 5bf8cbde945501a7057445d26c1c06b0 | n/a | 66.96.146.89:465 |
| 2021-11-22 21:58:09 | 5bf8cbde945501a7057445d26c1c06b0 | n/a | 66.96.146.89:587 |
| 2021-11-22 19:52:39 | 2bb01bf19d31cf95bd1308ecec167d5d | 50 / 68 (73.53%)
| 94.199.183.24:465 |
| 2021-11-22 15:42:56 | e1971ba5ca1082d58de64958e0bf30d5 | n/a | 88.198.36.249:465 |
| 2021-11-19 00:28:00 | 771797bc958b2b41549b1cb9a1fa2109 | n/a | 92.43.200.131:465 |
| 2021-11-18 23:57:00 | 69f78fa1405fe5ef48cc238efe961072 | n/a | 64.98.36.162:587 |
| 2021-11-18 22:23:08 | 0d9f1b23f7206c3063456bf653148f8a | 49 / 67 (73.13%)
| 62.201.172.21:587 |
| 2021-11-18 22:23:07 | 0d9f1b23f7206c3063456bf653148f8a | 49 / 67 (73.13%)
| 103.229.73.118:587 |
| 2021-11-18 22:23:07 | 0d9f1b23f7206c3063456bf653148f8a | 49 / 67 (73.13%)
| 203.190.36.4:587 |
| 2021-11-18 22:23:07 | 0d9f1b23f7206c3063456bf653148f8a | 49 / 67 (73.13%)
| 103.229.73.118:465 |
| 2021-11-18 22:23:07 | 0d9f1b23f7206c3063456bf653148f8a | 49 / 67 (73.13%)
| 62.149.128.201:587 |
| 2021-11-18 20:57:52 | 08616e2f5b23af1bbb37cd5d9dbb627b | 54 / 68 (79.41%)
| 62.149.128.202:587 |
| 2021-11-05 13:59:36 | abac49de11a2913556ff9909dc01cb49 | n/a | 193.70.18.144:587 |
| 2021-11-05 13:59:36 | abac49de11a2913556ff9909dc01cb49 | n/a | 85.128.242.31:465 |
| 2021-11-05 13:59:36 | abac49de11a2913556ff9909dc01cb49 | n/a | 64.251.188.88:465 |
| 2021-11-04 23:51:20 | 6baf8dbacb08865e8bf3b645c9122041 | n/a | 74.81.68.235:587 |
| 2021-11-04 23:51:20 | 6baf8dbacb08865e8bf3b645c9122041 | n/a | 74.81.68.235:465 |
| 2021-10-27 21:30:15 | abe2cba3c54694fece4304dce27c934a | n/a | 85.93.19.85:465 |
| 2021-10-27 21:30:15 | abe2cba3c54694fece4304dce27c934a | n/a | 85.93.19.85:587 |
| 2021-10-23 06:37:24 | 083b1df804061b0368d21b6987903de3 | n/a | 208.84.244.140:587 |
| 2021-10-19 15:57:49 | 0cdadcc95738dd2694cbcac01ce3f3c8 | 0 / 68 (0.00%)
| 166.78.85.190:443 |
| 2021-10-19 15:57:49 | 0cdadcc95738dd2694cbcac01ce3f3c8 | 0 / 68 (0.00%)
| 54.205.238.163:443 |
| 2021-10-18 21:18:19 | d5ba8ec389724fb5bcfdee83394b9f37 | n/a | 88.99.1.130:587 |
| 2021-10-11 05:33:41 | a9bf0bbb7cb7e1171fc6d3efd5d588c4 | n/a | 173.199.132.62:587 |
| 2021-10-10 07:02:56 | 1f095180682f14091ad5055be758247c | n/a | 195.121.65.26:587 |
| 2021-10-09 23:22:28 | 5bec1166ffd2277f2dff94e4bcac5003 | n/a | 176.100.7.136:465 |
# of entries: 100 (max: 100)