JA3 Fingerprints
You can find further information about the JA3 fingerprint c0220cd64849a629397a9cb68f78a0ea, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | c0220cd64849a629397a9cb68f78a0ea |
|---|---|
| First seen: | 2019-03-24 00:12:32 UTC |
| Last seen: | 2021-03-10 04:06:08 UTC |
| Status: | Blacklisted |
| Malware samples: | 2'604 |
| Destination IPs: | 744 |
| Malware: | Tofsee  |
| Listing date: | 2020-01-09 14:28:36 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2021-03-10 04:06:08 | a857d003e475d574d4e5d8678a6dde99 |  17 / 69 (24.64%)
| 10.0.1.77:50148 |
| 2021-03-10 04:06:08 | a857d003e475d574d4e5d8678a6dde99 | 17 / 69 (24.64%)
| 157.240.17.174:443 |
| 2021-03-10 04:06:08 | a857d003e475d574d4e5d8678a6dde99 | 17 / 69 (24.64%)
| 10.0.1.77:50180 |
| 2021-03-10 04:06:08 | a857d003e475d574d4e5d8678a6dde99 | 17 / 69 (24.64%)
| 10.0.1.77:50220 |
| 2021-03-10 04:06:08 | a857d003e475d574d4e5d8678a6dde99 | 17 / 69 (24.64%)
| 10.0.1.77:50205 |
| 2021-03-10 04:06:08 | a857d003e475d574d4e5d8678a6dde99 | 17 / 69 (24.64%)
| 10.0.1.77:50260 |
| 2021-03-10 04:06:07 | a857d003e475d574d4e5d8678a6dde99 | 17 / 69 (24.64%)
| 10.0.1.77:50146 |
| 2021-03-10 04:06:07 | a857d003e475d574d4e5d8678a6dde99 | 17 / 69 (24.64%)
| 10.0.1.77:50143 |
| 2021-03-10 04:06:06 | a857d003e475d574d4e5d8678a6dde99 | 17 / 69 (24.64%)
| 10.0.1.77:50339 |
| 2021-03-10 04:06:06 | a857d003e475d574d4e5d8678a6dde99 | 17 / 69 (24.64%)
| 10.0.1.77:50156 |
| 2021-03-10 04:06:06 | a857d003e475d574d4e5d8678a6dde99 | 17 / 69 (24.64%)
| 157.240.17.63:443 |
| 2021-03-10 04:06:05 | a857d003e475d574d4e5d8678a6dde99 | 17 / 69 (24.64%)
| 10.0.1.77:50147 |
| 2021-03-10 04:06:04 | a857d003e475d574d4e5d8678a6dde99 | 17 / 69 (24.64%)
| 10.0.1.77:50141 |
| 2021-03-10 04:06:03 | a857d003e475d574d4e5d8678a6dde99 | 17 / 69 (24.64%)
| 10.0.1.77:50157 |
| 2021-03-10 04:06:03 | a857d003e475d574d4e5d8678a6dde99 | 17 / 69 (24.64%)
| 10.0.1.77:50325 |
| 2021-03-10 04:06:02 | a857d003e475d574d4e5d8678a6dde99 | 17 / 69 (24.64%)
| 10.0.1.77:50232 |
| 2021-03-10 04:06:02 | a857d003e475d574d4e5d8678a6dde99 | 17 / 69 (24.64%)
| 10.0.1.77:50159 |
| 2021-03-10 04:06:02 | a857d003e475d574d4e5d8678a6dde99 | 17 / 69 (24.64%)
| 10.0.1.77:50140 |
| 2021-03-10 04:06:01 | a857d003e475d574d4e5d8678a6dde99 | 17 / 69 (24.64%)
| 10.0.1.77:50331 |
| 2021-03-10 04:06:01 | a857d003e475d574d4e5d8678a6dde99 | 17 / 69 (24.64%)
| 10.0.1.77:50145 |
| 2021-03-10 04:06:01 | a857d003e475d574d4e5d8678a6dde99 | 17 / 69 (24.64%)
| 10.0.1.77:50273 |
| 2021-03-10 04:06:01 | a857d003e475d574d4e5d8678a6dde99 | 17 / 69 (24.64%)
| 10.0.1.77:50152 |
| 2021-03-08 20:09:58 | f6f5ae5b8b96feb22c8b3d6446e1811b | 44 / 70 (62.86%)
| 51.77.64.70:443 |
| 2021-03-08 12:46:57 | 6cacfeec1d7c33b4a3e7957f8a3c03cc | 59 / 70 (84.29%)
| 51.77.64.70:443 |
| 2021-03-04 16:51:59 | a9b55a1987f0dd22df221361044c180b | 55 / 70 (78.57%)
| 208.95.112.2:443 |
| 2021-02-13 05:13:33 | a34a611005a301cc98c10586943bef2c | 18 / 70 (25.71%)
| 10.0.7.142:49947 |
| 2021-02-13 05:13:33 | a34a611005a301cc98c10586943bef2c | 18 / 70 (25.71%)
| 5.226.180.26:443 |
| 2021-02-10 13:22:52 | d461864be77fe979aab745d3ccead05a | 44 / 71 (61.97%)
| 13.224.90.101:443 |
| 2021-02-10 13:18:15 | d3bb71f9e94600c268f649938884b9bf | 44 / 70 (62.86%)
| 13.224.90.101:443 |
| 2021-02-10 13:18:15 | d3bb71f9e94600c268f649938884b9bf | 44 / 70 (62.86%)
| 23.211.5.61:443 |
| 2021-02-10 13:18:15 | d3bb71f9e94600c268f649938884b9bf | 44 / 70 (62.86%)
| 184.86.82.25:443 |
| 2021-02-10 13:18:08 | d44c46e3e1dd213af37d048ad791d0d7 | 40 / 66 (60.61%)
| 176.32.103.205:443 |
| 2021-02-10 13:18:08 | d44c46e3e1dd213af37d048ad791d0d7 | 40 / 66 (60.61%)
| 13.224.90.101:443 |
| 2021-02-10 11:25:36 | d15c093b08ce4d9b1def12f7713d7ec2 | 47 / 70 (67.14%)
| 99.86.2.4:443 |
| 2021-02-10 11:01:16 | d075c6ace08647ce7090a3752073ba2d | 50 / 71 (70.42%)
| 99.86.2.4:443 |
| 2021-02-10 11:01:15 | d075c6ace08647ce7090a3752073ba2d | 50 / 71 (70.42%)
| 23.37.56.24:443 |
| 2021-02-10 10:59:42 | ce80b09334042727f0df1badb757bf87 | 43 / 70 (61.43%)
| 23.211.5.61:443 |
| 2021-02-10 10:59:42 | ce80b09334042727f0df1badb757bf87 | 43 / 70 (61.43%)
| 54.239.28.85:443 |
| 2021-02-10 10:59:41 | ce80b09334042727f0df1badb757bf87 | 43 / 70 (61.43%)
| 13.224.90.101:443 |
| 2021-02-10 10:55:34 | cf010469a9b5f3234c5e4d4181b9a772 | n/a | 13.224.90.101:443 |
| 2021-02-10 10:55:34 | cf010469a9b5f3234c5e4d4181b9a772 | n/a | 23.211.5.61:443 |
| 2021-02-10 10:55:33 | cf010469a9b5f3234c5e4d4181b9a772 | n/a | 54.239.28.85:443 |
| 2021-02-10 10:39:40 | cc802d35f51a3fde42f19bc515682032 | n/a | 23.67.137.78:443 |
| 2021-02-10 10:39:39 | cc802d35f51a3fde42f19bc515682032 | n/a | 176.32.103.205:443 |
| 2021-02-10 10:39:37 | cc802d35f51a3fde42f19bc515682032 | n/a | 99.86.2.4:443 |
| 2021-02-10 10:02:13 | caa0ff40ab630898d984159908dc83c3 | 43 / 71 (60.56%)
| 13.224.90.101:443 |
| 2021-02-10 10:02:13 | caa0ff40ab630898d984159908dc83c3 | 43 / 71 (60.56%)
| 13.224.90.206:443 |
| 2021-02-10 10:02:13 | caa0ff40ab630898d984159908dc83c3 | 43 / 71 (60.56%)
| 184.86.82.25:443 |
| 2021-02-10 09:48:28 | c8f81cf203fc7ecdd7fe8e4235a4ba15 | 45 / 69 (65.22%)
| 176.32.103.205:443 |
| 2021-02-10 09:48:27 | c8f81cf203fc7ecdd7fe8e4235a4ba15 | 45 / 69 (65.22%)
| 13.32.240.64:443 |
| 2021-02-10 09:48:27 | c8f81cf203fc7ecdd7fe8e4235a4ba15 | 45 / 69 (65.22%)
| 23.62.133.214:443 |
| 2021-02-10 09:22:28 | c62a0927c96c7982a9102226cc122738 | 45 / 68 (66.18%)
| 23.62.133.214:443 |
| 2021-02-10 09:22:28 | c62a0927c96c7982a9102226cc122738 | 45 / 68 (66.18%)
| 13.32.240.64:443 |
| 2021-02-10 09:14:37 | c6fc2b3bbc7b6702ccdd8e6750bf7be3 | n/a | 13.226.255.145:443 |
| 2021-02-10 08:50:52 | c4e7570fa7f6c3ed5b878c9b36e2cb7f | 38 / 68 (55.88%)
| 13.226.227.151:443 |
| 2021-02-10 08:50:51 | c4e7570fa7f6c3ed5b878c9b36e2cb7f | 38 / 68 (55.88%)
| 13.226.236.158:443 |
| 2021-02-10 08:50:51 | c4e7570fa7f6c3ed5b878c9b36e2cb7f | 38 / 68 (55.88%)
| 13.225.148.15:443 |
| 2021-02-10 08:50:51 | c4e7570fa7f6c3ed5b878c9b36e2cb7f | 38 / 68 (55.88%)
| 99.84.201.32:443 |
| 2021-02-10 08:50:50 | c4e7570fa7f6c3ed5b878c9b36e2cb7f | 38 / 68 (55.88%)
| 13.226.221.111:443 |
| 2021-02-10 08:49:02 | c4e0e9d4cb4c9e32362210b36d1d3ac1 | n/a | 205.251.242.103:443 |
| 2021-02-10 08:49:01 | c4e0e9d4cb4c9e32362210b36d1d3ac1 | n/a | 99.86.2.4:443 |
| 2021-02-10 08:49:01 | c4e0e9d4cb4c9e32362210b36d1d3ac1 | n/a | 54.239.28.85:443 |
| 2021-02-10 07:54:39 | bdefd5fc4433ecbff624cda2e3e45260 | 43 / 71 (60.56%)
| 13.224.90.101:443 |
| 2021-02-10 07:43:49 | b931aace5a4a169f64ef49eae721cab7 | 45 / 69 (65.22%)
| 99.86.2.4:443 |
| 2021-02-10 07:43:49 | b931aace5a4a169f64ef49eae721cab7 | 45 / 69 (65.22%)
| 184.30.215.82:443 |
| 2021-02-10 07:43:49 | b931aace5a4a169f64ef49eae721cab7 | 45 / 69 (65.22%)
| 23.37.58.198:443 |
| 2021-02-10 07:43:49 | b931aace5a4a169f64ef49eae721cab7 | 45 / 69 (65.22%)
| 99.86.3.42:443 |
| 2021-02-10 07:43:49 | b931aace5a4a169f64ef49eae721cab7 | 45 / 69 (65.22%)
| 23.67.137.78:443 |
| 2021-02-10 07:43:49 | b931aace5a4a169f64ef49eae721cab7 | 45 / 69 (65.22%)
| 99.86.3.62:443 |
| 2021-02-10 07:43:49 | b931aace5a4a169f64ef49eae721cab7 | 45 / 69 (65.22%)
| 72.246.168.100:443 |
| 2021-02-10 07:40:17 | bd02bca54cfc4abf3b70d0d919b915a2 | 52 / 70 (74.29%)
| 54.239.28.85:443 |
| 2021-02-10 07:40:17 | bd02bca54cfc4abf3b70d0d919b915a2 | 52 / 70 (74.29%)
| 104.75.145.182:443 |
| 2021-02-10 07:40:17 | bd02bca54cfc4abf3b70d0d919b915a2 | 52 / 70 (74.29%)
| 13.226.255.145:443 |
| 2021-02-10 07:40:17 | bd02bca54cfc4abf3b70d0d919b915a2 | 52 / 70 (74.29%)
| 99.84.201.32:443 |
| 2021-02-10 07:40:16 | bd02bca54cfc4abf3b70d0d919b915a2 | 52 / 70 (74.29%)
| 13.35.97.87:443 |
| 2021-02-10 07:40:16 | bd02bca54cfc4abf3b70d0d919b915a2 | 52 / 70 (74.29%)
| 13.226.236.158:443 |
| 2021-02-10 07:36:04 | b338af0fb5b80e960de3afd05555de16 | n/a | 205.251.242.103:443 |
| 2021-02-10 07:36:04 | b338af0fb5b80e960de3afd05555de16 | n/a | 23.211.5.61:443 |
| 2021-02-10 07:36:04 | b338af0fb5b80e960de3afd05555de16 | n/a | 13.224.90.101:443 |
| 2021-02-10 07:31:24 | ba5bdebb5ce66cc5c4598b323ec85c83 | 43 / 54 (79.63%)
| 23.66.24.237:443 |
| 2021-02-10 07:31:24 | ba5bdebb5ce66cc5c4598b323ec85c83 | 43 / 54 (79.63%)
| 13.227.198.143:443 |
| 2021-02-10 07:31:24 | ba5bdebb5ce66cc5c4598b323ec85c83 | 43 / 54 (79.63%)
| 13.32.240.64:443 |
| 2021-02-10 07:31:24 | ba5bdebb5ce66cc5c4598b323ec85c83 | 43 / 54 (79.63%)
| 65.9.85.10:443 |
| 2021-02-10 07:24:13 | b3d7b805cd011d53501db4d447b32201 | n/a | 99.86.2.4:443 |
| 2021-02-10 07:24:13 | b3d7b805cd011d53501db4d447b32201 | n/a | 23.37.56.24:443 |
| 2021-02-10 06:58:18 | b7e4a7297b3991e7527f57c403f31d3f | 48 / 71 (67.61%)
| 13.225.78.79:443 |
| 2021-02-10 06:58:18 | b7e4a7297b3991e7527f57c403f31d3f | 48 / 71 (67.61%)
| 23.211.5.8:443 |
| 2021-02-10 06:58:18 | b7e4a7297b3991e7527f57c403f31d3f | 48 / 71 (67.61%)
| 13.224.90.101:443 |
| 2021-02-10 06:58:18 | b7e4a7297b3991e7527f57c403f31d3f | 48 / 71 (67.61%)
| 23.211.5.61:443 |
| 2021-02-10 05:39:36 | af76f9aaa5c8bae9f460b26fcb9d7832 | 45 / 71 (63.38%)
| 13.224.90.101:443 |
| 2021-02-10 04:01:01 | 2db9962471c4e166f12eeaf253d74ec2 | n/a | 13.32.240.64:443 |
| 2021-02-10 04:01:01 | 2db9962471c4e166f12eeaf253d74ec2 | n/a | 65.9.86.22:443 |
| 2021-02-10 04:01:01 | 2db9962471c4e166f12eeaf253d74ec2 | n/a | 65.9.85.10:443 |
| 2021-02-10 04:01:01 | 2db9962471c4e166f12eeaf253d74ec2 | n/a | 13.227.219.64:443 |
| 2021-02-10 04:01:01 | 2db9962471c4e166f12eeaf253d74ec2 | n/a | 23.66.24.237:443 |
| 2021-02-10 04:01:00 | 2db9962471c4e166f12eeaf253d74ec2 | n/a | 23.62.119.128:443 |
| 2021-02-10 04:00:59 | 2db9962471c4e166f12eeaf253d74ec2 | n/a | 23.62.133.214:443 |
| 2021-02-10 04:00:58 | 2db9962471c4e166f12eeaf253d74ec2 | n/a | 65.9.73.30:443 |
| 2021-02-10 03:31:49 | 3fbf1e37cc71de093889f29cd509a761 | 50 / 70 (71.43%)
| 99.84.198.79:443 |
| 2021-02-10 03:31:49 | 3fbf1e37cc71de093889f29cd509a761 | 50 / 70 (71.43%)
| 104.75.145.182:443 |
# of entries: 100 (max: 100)