JA3 Fingerprints
You can find further information about the JA3 fingerprint 9f62c4f26b90d3d757bea609e82f2eaf, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | 9f62c4f26b90d3d757bea609e82f2eaf |
|---|---|
| First seen: | 2018-03-13 06:23:41 UTC |
| Last seen: | 2021-05-20 23:01:06 UTC |
| Status: | Blacklisted |
| Malware samples: | 1'090 |
| Destination IPs: | 230 |
| Malware: | Tofsee  |
| Listing date: | 2018-11-14 00:00:00 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2023-08-30 05:08:23 | 33ae4175a4dd7df12c620a20c585354f | n/a | 129.226.103.162:443 |
| 2023-08-27 20:42:18 | 2e295bc573c5921052ec14eb19bb2d77 | n/a | 129.226.107.134:443 |
| 2023-07-23 19:47:51 | 2ccbe816e7ca00323d2957d5adb008fb |  27 / 71 (38.03%)
| 129.226.103.162:443 |
| 2023-07-20 14:21:51 | 009c5f26c8f412de47dc2aba49d16220 | 30 / 70 (42.86%)
| 129.226.107.134:443 |
| 2023-06-14 16:52:22 | 01aa33028d8523d7bfff295cece44bdc | 2 / 71 (2.82%)
| 89.58.63.57:443 |
| 2022-12-06 18:28:43 | d150efdb64a5ffa1c894d30790ce9a86 | n/a | 122.228.1.223:443 |
| 2022-12-06 18:28:43 | d150efdb64a5ffa1c894d30790ce9a86 | n/a | 47.99.155.188:443 |
| 2022-12-06 18:28:42 | d150efdb64a5ffa1c894d30790ce9a86 | n/a | 103.235.46.191:443 |
| 2022-12-06 18:28:42 | d150efdb64a5ffa1c894d30790ce9a86 | n/a | 47.114.89.19:443 |
| 2022-09-12 22:41:08 | 47dc40a8ddaf84fa3f88212c8b20cf6a | n/a | 47.99.155.188:443 |
| 2022-09-12 22:41:08 | 47dc40a8ddaf84fa3f88212c8b20cf6a | n/a | 103.235.46.191:443 |
| 2022-09-12 22:41:08 | 47dc40a8ddaf84fa3f88212c8b20cf6a | n/a | 47.114.89.19:443 |
| 2022-09-12 22:41:08 | 47dc40a8ddaf84fa3f88212c8b20cf6a | n/a | 60.170.11.73:443 |
| 2022-09-12 22:41:08 | 47dc40a8ddaf84fa3f88212c8b20cf6a | n/a | 47.114.89.19:443 |
| 2022-09-12 22:41:08 | 47dc40a8ddaf84fa3f88212c8b20cf6a | n/a | 103.235.46.191:443 |
| 2022-09-12 22:41:08 | 47dc40a8ddaf84fa3f88212c8b20cf6a | n/a | 60.170.11.73:443 |
| 2022-09-12 22:41:08 | 47dc40a8ddaf84fa3f88212c8b20cf6a | n/a | 47.99.155.188:443 |
| 2021-12-09 21:01:00 | 0d6d3eb3be9978a8313a30587027ab08 | n/a | 64.32.8.67:443 |
| 2021-10-14 20:27:04 | 46bc0891ed385e4486325a509dccd008 | n/a | 64.32.8.68:443 |
| 2021-09-28 20:59:07 | 9ee2cdd766e189868648fb5bac9d4d93 | n/a | 172.65.251.78:443 |
| 2021-09-28 20:59:07 | 9ee2cdd766e189868648fb5bac9d4d93 | n/a | 167.99.148.217:443 |
| 2021-05-20 23:01:06 | e3eff52c17247b4bacfd405b253762e1 | 16 / 68 (23.53%)
| 172.67.198.144:443 |
| 2021-05-20 23:01:06 | e3eff52c17247b4bacfd405b253762e1 | 16 / 68 (23.53%)
| 172.67.198.144:443 |
| 2020-12-18 16:07:31 | d89ef902434ea9060ec5b38ee323ec3b | 4 / 70 (5.71%)
| 185.30.165.36:443 |
| 2020-12-18 16:07:31 | d89ef902434ea9060ec5b38ee323ec3b | 4 / 70 (5.71%)
| 104.16.249.249:443 |
| 2020-12-18 16:07:31 | d89ef902434ea9060ec5b38ee323ec3b | 4 / 70 (5.71%)
| 185.30.165.36:443 |
| 2020-12-18 16:07:31 | d89ef902434ea9060ec5b38ee323ec3b | 4 / 70 (5.71%)
| 104.16.249.249:443 |
| 2020-12-14 21:39:29 | 4f28a9f7d2a77de25b173f1d7e3aa2ce | 42 / 69 (60.87%)
| 151.101.240.133:443 |
| 2020-12-14 21:39:29 | 4f28a9f7d2a77de25b173f1d7e3aa2ce | 42 / 69 (60.87%)
| 151.101.240.133:443 |
| 2020-11-15 11:42:42 | 7a5558c76e8d4c8e9e084a7952f74d65 | 41 / 72 (56.94%)
| 172.65.251.78:443 |
| 2020-11-15 11:42:42 | 7a5558c76e8d4c8e9e084a7952f74d65 | 41 / 72 (56.94%)
| 167.99.148.217:443 |
| 2020-11-15 11:42:42 | 7a5558c76e8d4c8e9e084a7952f74d65 | 41 / 72 (56.94%)
| 167.99.148.217:443 |
| 2020-11-15 11:42:42 | 7a5558c76e8d4c8e9e084a7952f74d65 | 41 / 72 (56.94%)
| 172.65.251.78:443 |
| 2020-03-27 15:13:40 | 926941535345db23a2f45b3995939b80 | 22 / 72 (30.56%)
| 173.194.76.94:443 |
| 2020-03-27 15:13:40 | 926941535345db23a2f45b3995939b80 | 22 / 72 (30.56%)
| 173.194.76.94:443 |
| 2020-03-27 15:13:39 | 926941535345db23a2f45b3995939b80 | 22 / 72 (30.56%)
| 74.125.140.105:443 |
| 2020-03-27 15:13:39 | 926941535345db23a2f45b3995939b80 | 22 / 72 (30.56%)
| 74.125.140.105:443 |
| 2020-03-26 03:27:47 | dc8f87f15cb39c308e162ca55a41d32f | 22 / 71 (30.99%)
| 74.125.140.104:443 |
| 2020-03-26 03:27:47 | dc8f87f15cb39c308e162ca55a41d32f | 22 / 71 (30.99%)
| 74.125.140.104:443 |
| 2020-03-26 03:27:46 | dc8f87f15cb39c308e162ca55a41d32f | 22 / 71 (30.99%)
| 66.102.1.94:443 |
| 2020-03-26 03:27:46 | dc8f87f15cb39c308e162ca55a41d32f | 22 / 71 (30.99%)
| 66.102.1.94:443 |
| 2020-03-26 03:27:45 | dc8f87f15cb39c308e162ca55a41d32f | 22 / 71 (30.99%)
| 74.125.133.94:443 |
| 2020-03-26 03:27:45 | dc8f87f15cb39c308e162ca55a41d32f | 22 / 71 (30.99%)
| 74.125.133.94:443 |
| 2020-03-25 14:18:52 | c0d90be5de2fbba760a3ae94c4cdbf85 | 22 / 72 (30.56%)
| 172.253.120.94:443 |
| 2020-03-25 14:18:52 | c0d90be5de2fbba760a3ae94c4cdbf85 | 22 / 72 (30.56%)
| 172.253.120.94:443 |
| 2020-03-13 04:41:50 | 2e3249d404e1785a1bfa1914a75effcf | 24 / 73 (32.88%)
| 64.233.184.147:443 |
| 2020-03-13 04:41:50 | 2e3249d404e1785a1bfa1914a75effcf | 24 / 73 (32.88%)
| 64.233.184.147:443 |
| 2020-03-13 04:41:43 | 2e3249d404e1785a1bfa1914a75effcf | 24 / 73 (32.88%)
| 64.233.184.103:443 |
| 2020-03-13 04:41:43 | 2e3249d404e1785a1bfa1914a75effcf | 24 / 73 (32.88%)
| 64.233.184.103:443 |
| 2020-01-14 08:21:00 | 623d176dfe7902bb3266fef1ed8dbb72 | n/a | 172.217.218.105:443 |
| 2020-01-14 08:21:00 | 623d176dfe7902bb3266fef1ed8dbb72 | n/a | 172.217.218.105:443 |
| 2020-01-12 17:19:04 | c12772934cd5e6ffcb0a6b527c723fee | 55 / 73 (75.34%)
| 108.177.127.94:443 |
| 2020-01-12 17:19:04 | c12772934cd5e6ffcb0a6b527c723fee | 55 / 73 (75.34%)
| 108.177.127.94:443 |
| 2020-01-06 09:25:41 | abbec4fd51260b9d8308a4c865a02481 | 56 / 73 (76.71%)
| 172.217.218.105:443 |
| 2020-01-06 09:25:41 | abbec4fd51260b9d8308a4c865a02481 | 56 / 73 (76.71%)
| 172.217.218.105:443 |
| 2020-01-06 02:50:53 | a4879f7c0309197bc2f65b9066a129d8 | 56 / 73 (76.71%)
| 108.177.119.94:443 |
| 2020-01-06 02:50:53 | a4879f7c0309197bc2f65b9066a129d8 | 56 / 73 (76.71%)
| 108.177.119.94:443 |
| 2020-01-05 21:02:34 | a9f00889009fbb4ca5328642a46567f0 | n/a | 108.177.127.94:443 |
| 2020-01-05 21:02:34 | a9f00889009fbb4ca5328642a46567f0 | n/a | 108.177.127.94:443 |
| 2020-01-04 21:32:00 | 1640c7824f875d32ac6532f41a7b4780 | n/a | 172.217.218.147:443 |
| 2020-01-04 21:32:00 | 1640c7824f875d32ac6532f41a7b4780 | n/a | 172.217.218.147:443 |
| 2020-01-02 06:35:53 | 4225b37d141afd0e9eb572a427f42c62 | n/a | 172.217.218.103:443 |
| 2020-01-02 06:35:53 | 4225b37d141afd0e9eb572a427f42c62 | n/a | 172.217.218.103:443 |
| 2020-01-02 05:46:01 | 2e87df2d6de0dc91b89e0c8abfb27d3a | n/a | 108.177.127.94:443 |
| 2020-01-02 05:46:01 | 2e87df2d6de0dc91b89e0c8abfb27d3a | n/a | 108.177.127.94:443 |
| 2020-01-01 05:19:02 | a40ba0bcd7a2c8cb0eefd96c6cedc891 | 54 / 72 (75.00%)
| 172.217.218.103:443 |
| 2020-01-01 05:19:02 | a40ba0bcd7a2c8cb0eefd96c6cedc891 | 54 / 72 (75.00%)
| 172.217.218.103:443 |
| 2020-01-01 05:05:53 | 15a8d0958542f3d43b538ecf4fb1f91b | n/a | 108.177.127.94:443 |
| 2020-01-01 05:05:53 | 15a8d0958542f3d43b538ecf4fb1f91b | n/a | 108.177.127.94:443 |
| 2019-12-29 12:25:53 | c4376e4524ae31a25876cffeaf65df95 | n/a | 172.217.218.105:443 |
| 2019-12-29 12:25:53 | c4376e4524ae31a25876cffeaf65df95 | n/a | 108.177.127.94:443 |
| 2019-12-29 12:25:53 | c4376e4524ae31a25876cffeaf65df95 | n/a | 108.177.127.94:443 |
| 2019-12-29 12:25:53 | c4376e4524ae31a25876cffeaf65df95 | n/a | 172.217.218.105:443 |
| 2019-12-29 12:19:03 | f1e74ee0601ba179ebc73c9936a1facb | n/a | 172.217.218.94:443 |
| 2019-12-29 12:19:03 | f1e74ee0601ba179ebc73c9936a1facb | n/a | 108.177.119.94:443 |
| 2019-12-29 12:19:03 | f1e74ee0601ba179ebc73c9936a1facb | n/a | 172.217.218.94:443 |
| 2019-12-29 12:19:03 | f1e74ee0601ba179ebc73c9936a1facb | n/a | 108.177.119.94:443 |
| 2019-12-21 12:41:32 | dcc2d57e2051374ceccf38cfee1b2177 | n/a | 66.102.1.94:443 |
| 2019-12-21 12:41:32 | dcc2d57e2051374ceccf38cfee1b2177 | n/a | 66.102.1.94:443 |
| 2019-12-21 11:12:50 | a36a7f1fadad0c9a2cc55c6244e8b9fd | 54 / 73 (73.97%)
| 64.233.184.99:443 |
| 2019-12-21 11:12:50 | a36a7f1fadad0c9a2cc55c6244e8b9fd | 54 / 73 (73.97%)
| 64.233.184.99:443 |
| 2019-12-21 11:12:49 | a36a7f1fadad0c9a2cc55c6244e8b9fd | 54 / 73 (73.97%)
| 64.233.167.94:443 |
| 2019-12-21 11:12:49 | a36a7f1fadad0c9a2cc55c6244e8b9fd | 54 / 73 (73.97%)
| 64.233.167.94:443 |
| 2019-12-17 19:40:06 | 106a994acc30417e2a96a42738c38068 | n/a | 172.217.169.4:443 |
| 2019-12-17 19:40:06 | 106a994acc30417e2a96a42738c38068 | n/a | 172.217.169.4:443 |
| 2019-12-13 06:06:01 | 1bf15eac4e692769a03649584de4cd32 | n/a | 108.177.127.94:443 |
| 2019-12-13 06:06:01 | 1bf15eac4e692769a03649584de4cd32 | n/a | 108.177.127.94:443 |
| 2019-12-11 16:53:22 | 246426abc4c393625af25ddb802253a0 | 56 / 72 (77.78%)
| 172.217.218.106:443 |
| 2019-12-11 16:53:22 | 246426abc4c393625af25ddb802253a0 | 56 / 72 (77.78%)
| 74.125.143.94:443 |
| 2019-12-11 16:53:22 | 246426abc4c393625af25ddb802253a0 | 56 / 72 (77.78%)
| 172.217.218.106:443 |
| 2019-12-11 16:53:22 | 246426abc4c393625af25ddb802253a0 | 56 / 72 (77.78%)
| 74.125.143.94:443 |
| 2019-12-09 11:48:17 | 481d71aed93eab747a96f5d335c119d9 | 54 / 69 (78.26%)
| 172.217.218.105:443 |
| 2019-12-09 11:48:17 | 481d71aed93eab747a96f5d335c119d9 | 54 / 69 (78.26%)
| 172.217.218.105:443 |
| 2019-12-09 11:35:30 | 7929badc5e569610c187892a5f2b07f8 | 56 / 71 (78.87%)
| 108.177.126.94:443 |
| 2019-12-09 11:35:30 | 7929badc5e569610c187892a5f2b07f8 | 56 / 71 (78.87%)
| 108.177.126.94:443 |
| 2019-12-09 11:35:14 | 7929badc5e569610c187892a5f2b07f8 | 56 / 71 (78.87%)
| 172.217.218.94:443 |
| 2019-12-09 11:35:14 | 7929badc5e569610c187892a5f2b07f8 | 56 / 71 (78.87%)
| 172.217.218.94:443 |
| 2019-12-09 04:15:04 | a2fb434588ebde780f4d56cd28b61c5a | 52 / 72 (72.22%)
| 172.217.218.147:443 |
| 2019-12-09 04:15:04 | a2fb434588ebde780f4d56cd28b61c5a | 52 / 72 (72.22%)
| 172.217.218.147:443 |
| 2019-12-09 03:26:37 | 4ce88cb986c91e667d1aa535173091b6 | n/a | 172.217.218.103:443 |
# of entries: 100 (max: 100)