JA3 Fingerprints
You can find further information about the JA3 fingerprint bffa4501966196d3d6e90cee1f88fc89, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | bffa4501966196d3d6e90cee1f88fc89 |
|---|---|
| First seen: | 2018-06-07 15:08:04 UTC |
| Last seen: | 2020-03-16 00:03:44 UTC |
| Status: | Blacklisted |
| Malware samples: | 173 |
| Destination IPs: | 28 |
| Malware: | Tofsee  |
| Listing date: | 2020-01-09 14:29:30 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2020-03-16 00:03:44 | 1c8e4241015b839da870436ee4f15795 | n/a | 162.210.102.230:21 |
| 2020-03-16 00:03:44 | 1c8e4241015b839da870436ee4f15795 | n/a | 162.210.102.230:2901 |
| 2020-03-16 00:03:44 | 1c8e4241015b839da870436ee4f15795 | n/a | 162.210.102.230:21 |
| 2020-03-16 00:03:44 | 1c8e4241015b839da870436ee4f15795 | n/a | 162.210.102.230:2901 |
| 2020-03-12 12:29:53 | 0d9f5420fd2781e1c123905bc68d8f5a | n/a | 217.69.139.90:993 |
| 2020-03-12 12:29:53 | 0d9f5420fd2781e1c123905bc68d8f5a | n/a | 217.69.139.90:993 |
| 2020-03-08 12:30:45 | 046607bba932850fdd26867b61126208 | n/a | 94.100.180.90:993 |
| 2020-03-08 12:30:45 | 046607bba932850fdd26867b61126208 | n/a | 94.100.180.90:993 |
| 2020-03-08 03:03:19 | 27fa25d9b6af7689e195d39ab676f406 | n/a | 217.69.139.90:993 |
| 2020-03-08 03:03:19 | 27fa25d9b6af7689e195d39ab676f406 | n/a | 94.100.180.90:993 |
| 2020-03-08 03:03:19 | 27fa25d9b6af7689e195d39ab676f406 | n/a | 217.69.139.90:993 |
| 2020-03-08 03:03:19 | 27fa25d9b6af7689e195d39ab676f406 | n/a | 94.100.180.90:993 |
| 2019-11-06 09:17:41 | 130a8e075d127ed47f49ab3c97823ac9 | n/a | 217.69.139.90:993 |
| 2019-11-06 09:17:41 | 130a8e075d127ed47f49ab3c97823ac9 | n/a | 217.69.139.90:993 |
| 2019-10-30 05:38:40 | 70be66d0eaea71b16f11a0733b829020 |  43 / 71 (60.56%)
| 217.69.139.90:993 |
| 2019-10-30 05:38:40 | 70be66d0eaea71b16f11a0733b829020 | 43 / 71 (60.56%)
| 217.69.139.90:993 |
| 2019-10-22 12:16:43 | 702130462b0749531db1a6f0d959b212 | n/a | 217.69.139.90:993 |
| 2019-10-22 12:16:43 | 702130462b0749531db1a6f0d959b212 | n/a | 217.69.139.90:993 |
| 2019-10-16 07:25:39 | ba90a250ae5d996e174c212470d28bbb | 29/69 (42.03%)
| 94.100.180.90:993 |
| 2019-10-16 07:25:39 | ba90a250ae5d996e174c212470d28bbb | 29/69 (42.03%)
| 94.100.180.90:993 |
| 2019-10-01 09:36:47 | f25186e3a79b468878a7debd365f51bd | n/a | 217.69.139.90:993 |
| 2019-10-01 09:36:47 | f25186e3a79b468878a7debd365f51bd | n/a | 217.69.139.90:993 |
| 2019-09-06 04:10:12 | 78167d3435af8a9533e9f7e6b0dd0b71 | n/a | 94.100.180.90:993 |
| 2019-09-06 04:10:12 | 78167d3435af8a9533e9f7e6b0dd0b71 | n/a | 94.100.180.90:993 |
| 2019-09-06 01:49:49 | 778573b0d1e09856e30044d12dade408 | n/a | 94.100.180.90:993 |
| 2019-09-06 01:49:49 | 778573b0d1e09856e30044d12dade408 | n/a | 217.69.139.90:993 |
| 2019-09-06 01:49:49 | 778573b0d1e09856e30044d12dade408 | n/a | 94.100.180.90:993 |
| 2019-09-06 01:49:49 | 778573b0d1e09856e30044d12dade408 | n/a | 217.69.139.90:993 |
| 2019-09-05 16:52:25 | e2d426bc0ff6e3e80723c42cef561d1f | n/a | 94.100.180.90:993 |
| 2019-09-05 16:52:25 | e2d426bc0ff6e3e80723c42cef561d1f | n/a | 94.100.180.90:993 |
| 2019-09-05 13:56:24 | 3650a48ec7c5dcb63047c60b8e3d0f83 | 40 / 71 (56.34%)
| 217.69.139.90:993 |
| 2019-09-05 13:56:24 | 3650a48ec7c5dcb63047c60b8e3d0f83 | 40 / 71 (56.34%)
| 217.69.139.90:993 |
| 2019-09-05 13:36:24 | 4073e676c0e60a452423a574c27c2cd0 | n/a | 217.69.139.90:993 |
| 2019-09-05 13:36:24 | 4073e676c0e60a452423a574c27c2cd0 | n/a | 217.69.139.90:993 |
| 2019-09-05 13:27:29 | ae643c0f0084eec630d9368043fb3407 | 54/71 (76.06%)
| 94.100.180.90:993 |
| 2019-09-05 13:27:29 | ae643c0f0084eec630d9368043fb3407 | 54/71 (76.06%)
| 94.100.180.90:993 |
| 2019-09-05 10:18:51 | 724e89c270af7f1e5a1052c9bfc3f002 | n/a | 94.100.180.90:993 |
| 2019-09-05 10:18:51 | 724e89c270af7f1e5a1052c9bfc3f002 | n/a | 94.100.180.90:993 |
| 2019-09-05 09:56:46 | 71edb62981757165054fa172127239a7 | 52/68 (76.47%)
| 94.100.180.90:993 |
| 2019-09-05 09:56:46 | 71edb62981757165054fa172127239a7 | 52/68 (76.47%)
| 94.100.180.90:993 |
| 2019-09-05 08:31:04 | e4f5fb14e20baeb987ce2d458690e72d | n/a | 217.69.139.90:993 |
| 2019-09-05 08:31:04 | e4f5fb14e20baeb987ce2d458690e72d | n/a | 94.100.180.90:993 |
| 2019-09-05 08:31:04 | e4f5fb14e20baeb987ce2d458690e72d | n/a | 217.69.139.90:993 |
| 2019-09-05 08:31:04 | e4f5fb14e20baeb987ce2d458690e72d | n/a | 94.100.180.90:993 |
| 2019-09-05 07:51:34 | 11bcd4327258f52459afe5fa71aaadd4 | n/a | 94.100.180.90:993 |
| 2019-09-05 07:51:34 | 11bcd4327258f52459afe5fa71aaadd4 | n/a | 94.100.180.90:993 |
| 2019-09-05 06:31:54 | fcb9e86957131bb0a4b3ace45e0c2bcf | 48 / 71 (67.61%)
| 94.100.180.90:993 |
| 2019-09-05 06:31:54 | fcb9e86957131bb0a4b3ace45e0c2bcf | 48 / 71 (67.61%)
| 94.100.180.90:993 |
| 2019-09-05 06:31:53 | fcb9e86957131bb0a4b3ace45e0c2bcf | 48 / 71 (67.61%)
| 217.69.139.90:993 |
| 2019-09-05 06:31:53 | fcb9e86957131bb0a4b3ace45e0c2bcf | 48 / 71 (67.61%)
| 217.69.139.90:993 |
| 2019-09-05 05:28:52 | 2f0d64993fdc08369f45dfe5a4254407 | 28 / 70 (40.00%)
| 94.100.180.90:993 |
| 2019-09-05 05:28:52 | 2f0d64993fdc08369f45dfe5a4254407 | 28 / 70 (40.00%)
| 217.69.139.90:993 |
| 2019-09-05 05:28:52 | 2f0d64993fdc08369f45dfe5a4254407 | 28 / 70 (40.00%)
| 94.100.180.90:993 |
| 2019-09-05 05:28:52 | 2f0d64993fdc08369f45dfe5a4254407 | 28 / 70 (40.00%)
| 217.69.139.90:993 |
| 2019-09-05 03:23:56 | d37b9c1dc74c4bebf4705e105475a856 | 50/70 (71.43%)
| 217.69.139.90:993 |
| 2019-09-05 03:23:56 | d37b9c1dc74c4bebf4705e105475a856 | 50/70 (71.43%)
| 217.69.139.90:993 |
| 2019-09-05 03:15:30 | d532ef6a2bba526ff618dc4efe628b7a | n/a | 94.100.180.90:993 |
| 2019-09-05 03:15:30 | d532ef6a2bba526ff618dc4efe628b7a | n/a | 94.100.180.90:993 |
| 2019-09-05 03:15:28 | d532ef6a2bba526ff618dc4efe628b7a | n/a | 217.69.139.90:993 |
| 2019-09-05 03:15:28 | d532ef6a2bba526ff618dc4efe628b7a | n/a | 217.69.139.90:993 |
| 2019-09-05 00:36:43 | 76f8d06791f5119050e85ad404741275 | 38 / 71 (53.52%)
| 94.100.180.90:993 |
| 2019-09-05 00:36:43 | 76f8d06791f5119050e85ad404741275 | 38 / 71 (53.52%)
| 94.100.180.90:993 |
| 2019-09-04 23:48:55 | b3fc25cfb8d243450fbd1deef8ff1a97 | n/a | 94.100.180.90:993 |
| 2019-09-04 23:48:55 | b3fc25cfb8d243450fbd1deef8ff1a97 | n/a | 94.100.180.90:993 |
| 2019-09-04 23:10:06 | 6412c36774052b8d2a954b4c3c7f796b | 51 / 70 (72.86%)
| 217.69.139.90:993 |
| 2019-09-04 23:10:06 | 6412c36774052b8d2a954b4c3c7f796b | 51 / 70 (72.86%)
| 217.69.139.90:993 |
| 2019-09-04 23:10:04 | 6412c36774052b8d2a954b4c3c7f796b | 51 / 70 (72.86%)
| 94.100.180.90:993 |
| 2019-09-04 23:10:04 | 6412c36774052b8d2a954b4c3c7f796b | 51 / 70 (72.86%)
| 94.100.180.90:993 |
| 2019-09-04 19:01:34 | 8780d82c810e42dd917aca598eb20017 | 46 / 66 (69.70%)
| 217.69.139.90:993 |
| 2019-09-04 19:01:34 | 8780d82c810e42dd917aca598eb20017 | 46 / 66 (69.70%)
| 217.69.139.90:993 |
| 2019-09-04 18:41:43 | e0f936b7cb5998e79ca1e3802c38ced8 | 52 / 71 (73.24%)
| 94.100.180.90:993 |
| 2019-09-04 18:41:43 | e0f936b7cb5998e79ca1e3802c38ced8 | 52 / 71 (73.24%)
| 94.100.180.90:993 |
| 2019-09-03 12:41:31 | be8a9af9f3bea0700928db10ee219547 | 48 / 71 (67.61%)
| 217.69.139.90:993 |
| 2019-09-03 12:41:31 | be8a9af9f3bea0700928db10ee219547 | 48 / 71 (67.61%)
| 217.69.139.90:993 |
| 2019-08-30 00:44:21 | 9ae5bd15c39630e475b0deeeae6fddff | 21 / 70 (30.00%)
| 217.69.139.90:993 |
| 2019-08-30 00:44:21 | 9ae5bd15c39630e475b0deeeae6fddff | 21 / 70 (30.00%)
| 217.69.139.90:993 |
| 2019-08-29 05:01:37 | ab9e24d3cff1fcc746c6dbee4de75c27 | 51/71 (71.83%)
| 217.69.139.90:993 |
| 2019-08-29 05:01:37 | ab9e24d3cff1fcc746c6dbee4de75c27 | 51/71 (71.83%)
| 217.69.139.90:993 |
| 2019-08-29 03:31:56 | cdff886327b19fe640322edaaf384700 | 36 / 70 (51.43%)
| 94.100.180.90:993 |
| 2019-08-29 03:31:56 | cdff886327b19fe640322edaaf384700 | 36 / 70 (51.43%)
| 94.100.180.90:993 |
| 2019-08-29 02:35:23 | a44c963eb658ce4179cc97cdb09ceb59 | 55/68 (80.88%)
| 94.100.180.90:993 |
| 2019-08-29 02:35:23 | a44c963eb658ce4179cc97cdb09ceb59 | 55/68 (80.88%)
| 217.69.139.90:993 |
| 2019-08-29 02:35:23 | a44c963eb658ce4179cc97cdb09ceb59 | 55/68 (80.88%)
| 94.100.180.90:993 |
| 2019-08-29 02:35:23 | a44c963eb658ce4179cc97cdb09ceb59 | 55/68 (80.88%)
| 217.69.139.90:993 |
| 2019-08-29 02:08:55 | 1af078d2d219b8175e2c62116f3c3375 | 55/69 (79.71%)
| 217.69.139.90:993 |
| 2019-08-29 02:08:55 | 1af078d2d219b8175e2c62116f3c3375 | 55/69 (79.71%)
| 217.69.139.90:993 |
| 2019-08-29 01:51:20 | 8330bac9adf4a7de1a59ff71c98be58e | n/a | 217.69.139.90:993 |
| 2019-08-29 01:51:20 | 8330bac9adf4a7de1a59ff71c98be58e | n/a | 217.69.139.90:993 |
| 2019-08-29 01:21:56 | bc0405123b850edc50491576ac6dff28 | 51/69 (73.91%)
| 217.69.139.90:993 |
| 2019-08-29 01:21:56 | bc0405123b850edc50491576ac6dff28 | 51/69 (73.91%)
| 217.69.139.90:993 |
| 2019-08-28 19:13:46 | 2f531fe9a573edbfa78e1a5fed44d704 | n/a | 94.100.180.90:993 |
| 2019-08-28 19:13:46 | 2f531fe9a573edbfa78e1a5fed44d704 | n/a | 217.69.139.90:993 |
| 2019-08-28 19:13:46 | 2f531fe9a573edbfa78e1a5fed44d704 | n/a | 94.100.180.90:993 |
| 2019-08-28 19:13:46 | 2f531fe9a573edbfa78e1a5fed44d704 | n/a | 217.69.139.90:993 |
| 2019-08-28 05:34:46 | e81a8bc00c4d17a16a640b6f605cdb11 | n/a | 94.100.180.90:993 |
| 2019-08-28 05:34:46 | e81a8bc00c4d17a16a640b6f605cdb11 | n/a | 94.100.180.90:993 |
| 2019-08-26 13:58:56 | 04e6ac031a293afc201df37929cc3584 | 26 / 68 (38.24%)
| 94.100.180.90:993 |
| 2019-08-26 13:58:56 | 04e6ac031a293afc201df37929cc3584 | 26 / 68 (38.24%)
| 94.100.180.90:993 |
| 2019-08-26 03:07:19 | 279dfd72246eb32e414d0327c370151f | n/a | 217.69.139.90:993 |
| 2019-08-26 03:07:19 | 279dfd72246eb32e414d0327c370151f | n/a | 217.69.139.90:993 |
# of entries: 100 (max: 100)