JA3 Fingerprints
You can find further information about the JA3 fingerprint c2b4710c6888a5d47befe865c8e6fb19, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | c2b4710c6888a5d47befe865c8e6fb19 |
|---|---|
| First seen: | 2018-11-29 20:46:04 UTC |
| Last seen: | 2021-08-03 23:37:22 UTC |
| Status: | Blacklisted |
| Malware samples: | 813 |
| Destination IPs: | 133 |
| Malware: | Tofsee  |
| Listing date: | 2020-01-09 14:32:01 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2023-05-05 11:33:52 | 4914301715ed9fabd39abab24e5b0238 | n/a | 157.240.253.174:443 |
| 2023-02-13 08:52:40 | 68781bf7827d4eed38bde544125320ca | n/a | 157.240.247.63:443 |
| 2023-02-13 08:52:40 | 68781bf7827d4eed38bde544125320ca | n/a | 157.240.247.174:443 |
| 2023-02-12 23:34:56 | 4e2e7d87fa9f5a3e5028feffd1e722d4 | n/a | 157.240.17.63:443 |
| 2023-02-12 16:37:55 | 174ecd0a7af5c102da794675f96bc099 | n/a | 157.240.247.63:443 |
| 2023-02-12 16:37:54 | 174ecd0a7af5c102da794675f96bc099 | n/a | 157.240.201.63:443 |
| 2023-02-11 06:23:19 | 99ec86a55cf68a3918eb2753f7c0fb8a | n/a | 157.240.17.174:443 |
| 2023-02-11 06:23:18 | 99ec86a55cf68a3918eb2753f7c0fb8a | n/a | 157.240.17.63:443 |
| 2023-01-23 22:49:41 | aa78a35499fbe10334dcbd371f4b288f |  45 / 70 (64.29%)
| 157.240.17.63:443 |
| 2023-01-23 07:44:05 | 5d258bff39eca5c6dc8a5c173546bd9d | n/a | 157.240.11.52:443 |
| 2023-01-23 07:44:04 | 5d258bff39eca5c6dc8a5c173546bd9d | n/a | 157.240.11.174:443 |
| 2023-01-09 10:20:24 | 8c6360af7f35502f8bfc3318a87c45a8 | n/a | 157.240.17.174:443 |
| 2023-01-09 07:19:59 | 2e40b706f95e6b545a19a7cb3b7f4e35 | 39 / 70 (55.71%)
| 157.240.17.63:443 |
| 2023-01-08 20:33:08 | e0636552609050d1ac2aa6aaaed44b22 | n/a | 157.240.17.174:443 |
| 2023-01-08 12:22:54 | fd6a2a7f0012647c1f7bc7ac7b89ce47 | 38 / 71 (53.52%)
| 157.240.17.63:443 |
| 2023-01-07 09:06:34 | 12fcb597175811b0479808913f2f6bcf | n/a | 157.240.17.63:443 |
| 2023-01-06 16:14:51 | 74f8a1cdabfa14dcd06ca2d7d65d5d8c | n/a | 185.60.216.52:443 |
| 2023-01-06 16:14:50 | 74f8a1cdabfa14dcd06ca2d7d65d5d8c | n/a | 157.240.20.174:443 |
| 2023-01-06 14:10:36 | 5cfa722238eb5bb8856cec294d882f48 | n/a | 157.240.17.174:443 |
| 2023-01-06 03:06:57 | 05875193989334d02e3da24da28cfdff | 53 / 71 (74.65%)
| 157.240.17.63:443 |
| 2023-01-02 17:58:49 | 178ec5c69487d901011930bc9275af1f | 56 / 71 (78.87%)
| 157.240.17.63:443 |
| 2023-01-01 15:34:13 | b8f175055e1c4bb1e5dbfed26fffb3fd | n/a | 157.240.247.174:443 |
| 2022-12-24 20:29:14 | a81e5141ccf1c7bd6ba7646047b8a1f9 | 34 / 68 (50.00%)
| 157.240.17.63:443 |
| 2022-12-20 15:15:12 | 6af09adb9d9276847a4d623f0223d092 | n/a | 157.240.22.63:443 |
| 2022-12-03 06:45:28 | 65c2af524c0d9304509187a25c1e3b02 | n/a | 157.240.11.52:443 |
| 2022-11-26 14:36:19 | 6823a108f80b535231ed71f4ff7cb3c7 | n/a | 157.240.17.174:443 |
| 2022-11-23 01:41:24 | 1d6f14f7ac1d5995c088a1fa9f8566cd | 49 / 70 (70.00%)
| 157.240.17.63:443 |
| 2022-11-23 01:41:24 | 1d6f14f7ac1d5995c088a1fa9f8566cd | 49 / 70 (70.00%)
| 157.240.17.174:443 |
| 2022-11-22 21:31:14 | 776285cfda8920255128c6977b3ddc91 | n/a | 157.240.17.174:443 |
| 2022-11-21 04:24:50 | 65020c8c80c54153ce386ff5e5e5c734 | n/a | 157.240.247.63:443 |
| 2022-11-17 07:00:05 | 4722a4ec1cb83ee2bc7aa46667a93e5b | 26 / 71 (36.62%)
| 157.240.17.174:443 |
| 2022-11-16 06:50:03 | ba22945c63f35174ae8ac4615b8f6cfd | n/a | 157.240.201.63:443 |
| 2022-11-12 00:47:46 | 9522f6a6968f9505bf75617ca5adb28e | n/a | 157.240.20.63:443 |
| 2022-11-03 20:51:43 | 3705386cd7326733384d5fd6e8f3fcda | n/a | 157.240.17.174:443 |
| 2022-11-03 06:00:18 | 6269c18fc29b70fa742d48e7c38283e7 | n/a | 157.240.17.63:443 |
| 2022-11-03 03:39:45 | 55ea6bbf837a447ba4f99bc2087f84d5 | n/a | 157.240.17.63:443 |
| 2022-11-02 23:41:13 | 000fccc5a331ddd85e58a3b8f6fdd871 | n/a | 157.240.17.63:443 |
| 2022-11-02 19:51:44 | 3950d84bcd3c4ed6b96a41d46737fd4e | n/a | 157.240.17.174:443 |
| 2022-10-29 00:16:04 | 3427a69e05fbe98e36b2eafc9a48a90c | 36 / 71 (50.70%)
| 10.0.7.101:53765 |
| 2022-10-29 00:14:22 | 3427a69e05fbe98e36b2eafc9a48a90c | 36 / 71 (50.70%)
| 193.246.8.82:443 |
| 2022-10-29 00:14:01 | 3427a69e05fbe98e36b2eafc9a48a90c | 36 / 71 (50.70%)
| 10.0.7.101:53733 |
| 2022-10-29 00:13:37 | 3427a69e05fbe98e36b2eafc9a48a90c | 36 / 71 (50.70%)
| 10.0.7.101:53691 |
| 2022-10-27 10:26:24 | 6a4a18a6bc3f69d765f3f858c275c4b8 | n/a | 157.240.17.63:443 |
| 2022-10-23 07:13:27 | 997c68d58288f380989c37b68ee81074 | 27 / 72 (37.50%)
| 157.240.11.174:443 |
| 2022-10-22 03:59:27 | b47be847e2687e674c9eb8037b84a03f | n/a | 157.240.201.63:443 |
| 2022-10-21 19:34:57 | f823c3617733486da4d4b770aef17367 | n/a | 157.240.247.174:443 |
| 2022-10-21 19:34:57 | f823c3617733486da4d4b770aef17367 | n/a | 157.240.247.63:443 |
| 2022-10-21 12:31:40 | 0b00b0081a2473a74c7d74642add9797 | n/a | 157.240.17.63:443 |
| 2022-10-16 09:29:17 | 4327af18e0c857a3a2db124fb68cf4ba | n/a | 157.240.201.63:443 |
| 2022-10-16 09:29:16 | 4327af18e0c857a3a2db124fb68cf4ba | n/a | 157.240.201.174:443 |
| 2022-10-16 00:29:05 | 2f74526c9362e0d006ad9f7d1da6d79c | 53 / 72 (73.61%)
| 157.240.17.63:443 |
| 2022-10-15 01:04:40 | 1c886466ca3ca9c60539af6f8e201158 | 48 / 72 (66.67%)
| 157.240.17.63:443 |
| 2022-10-10 18:02:10 | 1db2442a2b7e287e358759433dd68616 | 52 / 72 (72.22%)
| 157.240.201.63:443 |
| 2022-10-10 18:02:09 | 1db2442a2b7e287e358759433dd68616 | 52 / 72 (72.22%)
| 157.240.247.174:443 |
| 2022-10-10 18:02:09 | 1db2442a2b7e287e358759433dd68616 | 52 / 72 (72.22%)
| 157.240.247.63:443 |
| 2022-10-05 23:44:08 | 214d700e020f936d92c6f90cf3afc456 | n/a | 157.240.17.63:443 |
| 2022-10-05 23:44:08 | 214d700e020f936d92c6f90cf3afc456 | n/a | 157.240.17.174:443 |
| 2022-10-01 08:38:14 | bacd72506ebc8f36e8b15853321f9c97 | n/a | 157.240.247.174:443 |
| 2022-10-01 08:38:13 | bacd72506ebc8f36e8b15853321f9c97 | n/a | 157.240.247.63:443 |
| 2022-10-01 08:38:13 | bacd72506ebc8f36e8b15853321f9c97 | n/a | 157.240.201.63:443 |
| 2022-10-01 07:04:47 | a08fdde20f364ecd233811de34f10743 | n/a | 157.240.11.52:443 |
| 2022-10-01 07:04:47 | a08fdde20f364ecd233811de34f10743 | n/a | 157.240.22.63:443 |
| 2022-10-01 07:04:47 | a08fdde20f364ecd233811de34f10743 | n/a | 157.240.11.174:443 |
| 2022-09-30 21:12:18 | 6178806000823df68fc03b6dd53acce4 | n/a | 157.240.247.174:443 |
| 2022-09-30 21:12:18 | 6178806000823df68fc03b6dd53acce4 | n/a | 157.240.247.63:443 |
| 2022-09-30 21:12:17 | 6178806000823df68fc03b6dd53acce4 | n/a | 157.240.201.63:443 |
| 2022-09-28 19:09:44 | 0c3cdcf59c019f52e50f1b66b79e24e4 | 46 / 72 (63.89%)
| 157.240.20.63:443 |
| 2022-09-28 12:06:08 | d9607a714fc963c22caf53d3f9e85399 | n/a | 157.240.17.174:443 |
| 2022-09-28 12:06:07 | d9607a714fc963c22caf53d3f9e85399 | n/a | 157.240.17.63:443 |
| 2022-09-28 07:47:56 | 9b2ee55e8a6131b0d8a846f858aa59a2 | n/a | 157.240.20.63:443 |
| 2022-09-25 08:34:36 | c1e908ebf1f56a413ab4fdc29cbb8a89 | n/a | 157.240.17.174:443 |
| 2022-09-25 08:34:36 | c1e908ebf1f56a413ab4fdc29cbb8a89 | n/a | 157.240.17.63:443 |
| 2022-09-25 06:37:14 | 2e636c990dc2d04cc549d783da6f462e | n/a | 157.240.247.63:443 |
| 2022-09-25 06:37:14 | 2e636c990dc2d04cc549d783da6f462e | n/a | 157.240.247.63:443 |
| 2022-09-24 20:47:42 | 04ddb9f876b3fa3956748135b50d7a9d | 30 / 72 (41.67%)
| 157.240.247.63:443 |
| 2022-09-24 20:47:41 | 04ddb9f876b3fa3956748135b50d7a9d | 30 / 72 (41.67%)
| 157.240.247.174:443 |
| 2022-09-24 20:47:41 | 04ddb9f876b3fa3956748135b50d7a9d | 30 / 72 (41.67%)
| 157.240.201.63:443 |
| 2022-09-24 14:34:42 | 805daf89461f2abf32affa17c008e9fa | n/a | 157.240.247.63:443 |
| 2022-09-24 03:58:57 | 347244f6ce9649affe64f73867dc46f3 | n/a | 157.240.17.63:443 |
| 2022-09-24 00:42:41 | 7eb110930c7539343579fe9af633a5e9 | n/a | 157.240.17.63:443 |
| 2022-09-23 18:05:25 | 861443b288eb50cf2e48462bbec4ad7e | n/a | 31.13.70.52:443 |
| 2022-09-23 18:05:25 | 861443b288eb50cf2e48462bbec4ad7e | n/a | 157.240.11.52:443 |
| 2022-09-23 17:19:03 | 1ebb8f0fe31ce05c05069af0260a6772 | n/a | 157.240.17.63:443 |
| 2022-09-23 17:19:02 | 1ebb8f0fe31ce05c05069af0260a6772 | n/a | 157.240.17.174:443 |
| 2022-09-23 13:54:08 | d80f17936441b4f0cb24509fc8fe36c8 | n/a | 157.240.17.63:443 |
| 2022-09-23 06:13:22 | 32c17571000e5e62e6427e72f30ae903 | n/a | 157.240.247.174:443 |
| 2022-09-23 06:13:21 | 32c17571000e5e62e6427e72f30ae903 | n/a | 157.240.247.63:443 |
| 2022-09-23 06:13:21 | 32c17571000e5e62e6427e72f30ae903 | n/a | 157.240.201.63:443 |
| 2022-09-23 06:12:03 | 4ae34c82169c259eca08f15555283fcb | n/a | 157.240.17.63:443 |
| 2022-09-22 22:07:32 | a88fdfc984009f101e1c4989da66c8ff | n/a | 157.240.247.63:443 |
| 2022-09-22 01:39:28 | 59b0d588c8e25756c585842bf6e8343b | n/a | 188.114.97.7:443 |
| 2022-09-22 01:39:28 | 59b0d588c8e25756c585842bf6e8343b | n/a | 188.114.96.7:443 |
| 2022-09-20 20:48:48 | 23220a01161c3fb7ed5546994a8a8bbd | n/a | 157.240.17.63:443 |
| 2022-09-18 15:25:41 | 321172d51354b6b20517885ac5088f70 | 52 / 70 (74.29%)
| 157.240.17.63:443 |
| 2022-09-17 03:08:31 | 07a966ac3117981a77c82828bdb650e2 | 55 / 71 (77.46%)
| 157.240.234.63:443 |
| 2022-09-15 01:43:12 | fb7cb93ba80b72c5ec801c8acefc22f8 | n/a | 157.240.247.174:443 |
| 2022-09-15 01:43:11 | fb7cb93ba80b72c5ec801c8acefc22f8 | n/a | 157.240.201.63:443 |
| 2022-09-15 01:43:11 | fb7cb93ba80b72c5ec801c8acefc22f8 | n/a | 157.240.247.63:443 |
| 2022-09-13 12:05:28 | 63e8f08d6e633ab1d3442b896ccd428c | 29 / 69 (42.03%)
| 157.240.17.174:443 |
| 2022-09-13 12:05:27 | 63e8f08d6e633ab1d3442b896ccd428c | 29 / 69 (42.03%)
| 157.240.17.63:443 |
# of entries: 100 (max: 100)