JA3 Fingerprints
You can find further information about the JA3 fingerprint c0220cd64849a629397a9cb68f78a0ea, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | c0220cd64849a629397a9cb68f78a0ea |
|---|---|
| First seen: | 2019-03-24 00:12:32 UTC |
| Last seen: | 2021-07-31 00:26:06 UTC |
| Status: | Blacklisted |
| Malware samples: | 2'848 |
| Destination IPs: | 858 |
| Malware: | Tofsee  |
| Listing date: | 2020-01-09 14:28:36 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2023-07-06 03:18:10 | b0134a0a8f3c072b7f386c546cbc87b5 | n/a | 18.165.180.80:443 |
| 2023-07-06 03:18:09 | b0134a0a8f3c072b7f386c546cbc87b5 | n/a | 162.219.224.231:443 |
| 2023-07-06 03:18:09 | b0134a0a8f3c072b7f386c546cbc87b5 | n/a | 162.219.226.231:443 |
| 2023-07-05 08:03:51 | 13312131f49a2f1451a87f794a1f65e9 | n/a | 18.164.166.80:443 |
| 2023-07-05 03:10:56 | a3cae3f983eb87ad409aaa58fb7e8f3a | n/a | 99.84.202.21:443 |
| 2023-07-01 22:21:50 | 4624dddbe1a794e78d2b0c9014007c2e | n/a | 99.84.202.21:443 |
| 2023-07-01 22:21:50 | 4624dddbe1a794e78d2b0c9014007c2e | n/a | 13.225.139.89:443 |
| 2023-07-01 22:16:50 | f18c94e7d8c0eb55ca27f0389b48027b |  31 / 71 (43.66%)
| 18.165.180.80:443 |
| 2023-07-01 22:14:26 | 308062bf3087c15b63186e366d8eb119 | 30 / 71 (42.25%)
| 18.66.104.83:443 |
| 2023-07-01 22:14:26 | 308062bf3087c15b63186e366d8eb119 | 30 / 71 (42.25%)
| 23.206.209.146:443 |
| 2023-07-01 22:14:25 | 308062bf3087c15b63186e366d8eb119 | 30 / 71 (42.25%)
| 13.225.73.180:443 |
| 2023-07-01 16:29:38 | 723603e88a90618acddbd638ed615202 | n/a | 18.66.104.83:443 |
| 2023-07-01 07:43:14 | daa9c6765a7c7fa643a8e374087c97b2 | n/a | 65.9.75.85:443 |
| 2023-07-01 07:36:53 | d7131bd86850054713dffe84e76930b2 | n/a | 13.225.139.89:443 |
| 2023-07-01 07:36:52 | d7131bd86850054713dffe84e76930b2 | n/a | 99.84.202.21:443 |
| 2023-07-01 07:36:51 | d7131bd86850054713dffe84e76930b2 | n/a | 13.225.149.74:443 |
| 2023-06-30 23:59:29 | 2ab3a0b70137c4cda8e9617ea0b24f36 | n/a | 18.66.104.83:443 |
| 2023-06-30 23:59:29 | 2ab3a0b70137c4cda8e9617ea0b24f36 | n/a | 18.65.36.211:443 |
| 2023-06-30 23:59:29 | 2ab3a0b70137c4cda8e9617ea0b24f36 | n/a | 65.9.75.85:443 |
| 2023-06-30 23:59:29 | 2ab3a0b70137c4cda8e9617ea0b24f36 | n/a | 52.222.140.89:443 |
| 2023-06-30 23:59:28 | 2ab3a0b70137c4cda8e9617ea0b24f36 | n/a | 23.206.209.146:443 |
| 2023-06-30 23:16:11 | d47d9b44ed788a66ccf1d5957182a0d9 | n/a | 173.223.117.155:443 |
| 2023-06-30 23:16:10 | d47d9b44ed788a66ccf1d5957182a0d9 | n/a | 104.85.5.189:443 |
| 2023-06-30 19:37:33 | a2cf6d0e5025f5b6f043be9d66b5d110 | n/a | 18.165.186.118:443 |
| 2023-06-30 18:47:36 | bf607ed7b7bab920a82f470820e28015 | n/a | 184.86.82.223:443 |
| 2023-06-30 18:47:36 | bf607ed7b7bab920a82f470820e28015 | n/a | 18.165.180.80:443 |
| 2023-06-30 15:41:44 | ea7be9cc7b5d1a2056de07aafdf3ca77 | n/a | 13.224.92.89:443 |
| 2023-06-30 15:41:44 | ea7be9cc7b5d1a2056de07aafdf3ca77 | n/a | 18.165.180.80:443 |
| 2023-06-30 15:41:44 | ea7be9cc7b5d1a2056de07aafdf3ca77 | n/a | 13.224.103.189:443 |
| 2023-06-30 15:41:43 | ea7be9cc7b5d1a2056de07aafdf3ca77 | n/a | 18.165.186.118:443 |
| 2023-06-30 13:06:19 | d00eecc78e3945fc9e60d391030ead38 | n/a | 18.165.180.80:443 |
| 2023-06-30 13:06:18 | d00eecc78e3945fc9e60d391030ead38 | n/a | 184.86.82.223:443 |
| 2023-06-30 10:17:13 | c5491856b9d83ee28f923b8db8ee88a2 | n/a | 18.65.36.211:443 |
| 2023-06-30 10:17:12 | c5491856b9d83ee28f923b8db8ee88a2 | n/a | 52.222.140.89:443 |
| 2023-06-30 10:17:12 | c5491856b9d83ee28f923b8db8ee88a2 | n/a | 65.9.75.85:443 |
| 2023-06-30 06:32:54 | 17fc098775873adf824bec5368cd8ef9 | n/a | 173.223.117.155:443 |
| 2023-06-30 06:06:31 | 0b63d87eb6469de1edf3d56bd907b163 | 30 / 71 (42.25%)
| 52.222.140.89:443 |
| 2023-06-30 06:06:29 | 0b63d87eb6469de1edf3d56bd907b163 | 30 / 71 (42.25%)
| 65.9.75.85:443 |
| 2023-06-29 22:41:36 | d3671f6e25a30d3a9866318d1c825e47 | n/a | 108.138.0.98:443 |
| 2023-06-29 22:41:36 | d3671f6e25a30d3a9866318d1c825e47 | n/a | 108.138.0.98:443 |
| 2023-06-29 14:33:52 | 33e590a61265ac87d076a29a2af57d61 | 56 / 70 (80.00%)
| 18.65.36.211:443 |
| 2023-06-29 14:33:52 | 33e590a61265ac87d076a29a2af57d61 | 56 / 70 (80.00%)
| 104.85.6.102:443 |
| 2023-06-29 12:58:39 | 4b2c803278cb2fab303d8e28825bf804 | n/a | 23.219.42.142:443 |
| 2023-06-29 12:58:39 | 4b2c803278cb2fab303d8e28825bf804 | n/a | 23.219.42.59:443 |
| 2023-06-29 12:58:37 | 4b2c803278cb2fab303d8e28825bf804 | n/a | 13.225.147.148:443 |
| 2023-06-29 12:58:37 | 4b2c803278cb2fab303d8e28825bf804 | n/a | 13.225.139.89:443 |
| 2023-06-29 10:15:54 | c94a39e1a3b10185ca0d771ee8284e03 | n/a | 65.9.77.56:443 |
| 2023-06-29 08:18:26 | 827f3c05a8c702c0be70d8e156b72f72 | n/a | 23.206.209.144:443 |
| 2023-06-29 08:18:26 | 827f3c05a8c702c0be70d8e156b72f72 | n/a | 18.66.104.83:443 |
| 2023-06-28 13:13:59 | cb8b000a21d921af4bd884f452c3b0bb | n/a | 18.65.36.211:443 |
| 2023-06-28 13:13:58 | cb8b000a21d921af4bd884f452c3b0bb | n/a | 65.9.77.56:443 |
| 2023-06-28 09:57:14 | 8d9e9ac0c793d993be29100a95178e8c | n/a | 13.225.147.148:443 |
| 2023-06-28 07:58:26 | 9efe30d143d886dc9bb1cc46069ad68d | n/a | 13.225.147.148:443 |
| 2023-06-28 07:58:26 | 9efe30d143d886dc9bb1cc46069ad68d | n/a | 13.225.149.74:443 |
| 2023-05-14 15:29:17 | c2b784bc5cbebacede96947bc1baaeb8 | n/a | 13.227.219.218:443 |
| 2023-05-09 16:08:08 | 4597cfda9793f195963fcceeb3a9b45f | 53 / 70 (75.71%)
| 18.165.189.38:443 |
| 2023-05-04 10:19:33 | 767d9d7c389206caf5c8d1398ca23c60 | n/a | 184.86.82.220:443 |
| 2023-04-28 14:43:18 | 2cabafbae6aee44309dab1a40063686b | n/a | 13.227.219.218:443 |
| 2023-04-21 14:13:16 | b90744dbb7414e3965c47699877d82ee | n/a | 35.244.217.13:443 |
| 2023-04-21 14:13:16 | b90744dbb7414e3965c47699877d82ee | n/a | 172.66.40.82:443 |
| 2023-04-21 14:13:16 | b90744dbb7414e3965c47699877d82ee | n/a | 34.160.120.42:443 |
| 2023-04-11 03:55:10 | b7ca2a44de27a758e7da7b6f6f8b6638 | n/a | 34.160.120.42:443 |
| 2023-04-11 03:55:09 | b7ca2a44de27a758e7da7b6f6f8b6638 | n/a | 172.66.40.82:443 |
| 2023-04-10 00:37:56 | c8a5092609dc6f3cf1209b1c042272ea | n/a | 172.66.43.174:443 |
| 2023-04-10 00:37:56 | c8a5092609dc6f3cf1209b1c042272ea | n/a | 35.244.217.13:443 |
| 2023-04-10 00:37:56 | c8a5092609dc6f3cf1209b1c042272ea | n/a | 34.160.120.42:443 |
| 2023-03-16 02:52:54 | 74c871eadb2971aa86a86981c00b35c8 | n/a | 172.66.43.174:443 |
| 2023-03-16 02:52:53 | 74c871eadb2971aa86a86981c00b35c8 | n/a | 34.160.120.42:443 |
| 2023-03-03 07:56:15 | d43c7f90f039b92f0907a8bb3704e021 | n/a | 18.165.189.188:443 |
| 2023-03-03 07:50:27 | a87fa5c009d828d666aac49e83c22021 | n/a | 184.86.82.222:443 |
| 2023-03-03 04:07:03 | 82cc8985e0a923ca79e73caf9bd1531d | n/a | 18.165.189.188:443 |
| 2023-03-02 23:10:17 | 6b3380253ac866dc06c43311aad23f96 | n/a | 184.86.82.222:443 |
| 2023-03-02 23:10:17 | 6b3380253ac866dc06c43311aad23f96 | n/a | 13.224.95.78:443 |
| 2023-03-02 20:03:49 | 5f97764565d39cdd7b5704d4c60e56f4 | n/a | 162.219.225.118:443 |
| 2023-03-02 20:03:48 | 5f97764565d39cdd7b5704d4c60e56f4 | n/a | 18.65.37.117:443 |
| 2023-03-02 19:40:40 | 131babee5094c2d86ad8f5ee396511e3 | n/a | 18.165.189.188:443 |
| 2023-03-02 14:31:14 | 167a025cd7926eb41df8593d4a70cc1a | n/a | 52.85.202.189:443 |
| 2023-03-02 14:31:12 | 167a025cd7926eb41df8593d4a70cc1a | n/a | 184.24.197.196:443 |
| 2023-03-01 14:41:22 | e6633af95778725d06d9adc558c55040 | n/a | 162.219.225.118:443 |
| 2023-03-01 13:34:07 | e4925f827f21fc13975d1f8ebee99dba | n/a | 162.219.225.118:443 |
| 2023-03-01 13:34:07 | e4925f827f21fc13975d1f8ebee99dba | n/a | 18.66.120.232:443 |
| 2023-03-01 08:48:07 | dac632e30c775cd386be67711d05ffe1 | n/a | 18.165.189.188:443 |
| 2023-03-01 08:36:30 | e909024bc528d1a17e52079ca5276821 | n/a | 18.66.120.232:443 |
| 2023-03-01 08:08:27 | daa1f997980424cf83e529727e2bdab1 | n/a | 18.154.128.218:443 |
| 2023-03-01 08:08:27 | daa1f997980424cf83e529727e2bdab1 | n/a | 104.85.241.139:443 |
| 2023-02-28 19:01:39 | cefb18d7fe4fbd36bcf83b46930298cc | n/a | 18.65.37.117:443 |
| 2023-02-28 17:03:06 | c9999ae0f8054781664e451a06a9ff0a | n/a | 18.165.189.188:443 |
| 2023-02-28 01:30:51 | 84e5943122064af35a51830b607f617c | n/a | 104.85.6.101:443 |
| 2023-02-28 00:00:34 | 7de86d8af2610d799f181ac80b1df56f | n/a | 13.225.150.222:443 |
| 2023-02-27 11:41:05 | 0330015950b98193edd7e38b7ec0db58 | n/a | 18.65.37.117:443 |
| 2023-02-27 02:39:25 | 49e86c62091f5ff98636d931f2f4d3c7 | n/a | 52.85.202.189:443 |
| 2023-02-27 01:36:48 | 392708029b28148218fda3a741636930 | n/a | 23.211.5.61:443 |
| 2023-02-26 23:50:35 | 0e353d44db53ca1f8c85ded699547fbb | 54 / 70 (77.14%)
| 108.138.5.166:443 |
| 2023-02-26 17:19:04 | badfd765f7f9e022f71d789279f7c405 | n/a | 104.75.90.57:443 |
| 2023-02-26 17:19:03 | badfd765f7f9e022f71d789279f7c405 | n/a | 18.66.142.157:443 |
| 2023-02-26 17:19:03 | badfd765f7f9e022f71d789279f7c405 | n/a | 52.222.229.16:443 |
| 2023-02-26 16:40:28 | f8ecb8190be62e2572cba4528eb4494c | n/a | 184.86.82.222:443 |
| 2023-02-26 09:51:32 | 5723c5899d8a686628745b447a0d75c0 | n/a | 162.219.225.118:443 |
| 2023-02-26 07:19:35 | 29012c70af6c75f6d97d2e057e3e08f0 | n/a | 104.85.6.101:443 |
| 2023-02-26 02:33:41 | 657775b68eaf08f7bbe9fa0db56bab1d | n/a | 23.211.5.61:443 |
# of entries: 100 (max: 100)