JA3 Fingerprints
You can find further information about the JA3 fingerprint c2b4710c6888a5d47befe865c8e6fb19, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | c2b4710c6888a5d47befe865c8e6fb19 |
|---|---|
| First seen: | 2018-11-29 20:46:04 UTC |
| Last seen: | 2020-07-28 02:20:25 UTC |
| Status: | Blacklisted |
| Malware samples: | 588 |
| Destination IPs: | 80 |
| Malware: | Tofsee  |
| Listing date: | 2020-01-09 14:32:01 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2020-07-28 02:20:25 | c03207b87ef0aa6cf76a18e87c70310d |  39 / 71 (54.93%)
| 173.201.192.5:443 |
| 2020-07-28 02:20:25 | c03207b87ef0aa6cf76a18e87c70310d | 39 / 71 (54.93%)
| 173.201.192.133:443 |
| 2020-07-28 02:20:25 | c03207b87ef0aa6cf76a18e87c70310d | 39 / 71 (54.93%)
| 104.31.67.68:443 |
| 2020-07-28 02:20:24 | c03207b87ef0aa6cf76a18e87c70310d | 39 / 71 (54.93%)
| 68.178.252.148:443 |
| 2020-07-28 02:20:24 | c03207b87ef0aa6cf76a18e87c70310d | 39 / 71 (54.93%)
| 2.20.222.31:443 |
| 2020-07-28 02:20:23 | c03207b87ef0aa6cf76a18e87c70310d | 39 / 71 (54.93%)
| 68.178.252.133:443 |
| 2020-07-05 16:20:52 | be8fac2f0790e0ec594723afac182f93 | 55 / 72 (76.39%)
| 94.100.180.61:443 |
| 2020-07-05 14:45:10 | bc82008785e4f059b0a71fddf764dcc7 | 42 / 73 (57.53%)
| 94.100.180.61:443 |
| 2020-07-05 10:53:31 | b7f7a94d634f51c44b0de48e4efd6659 | 45 / 73 (61.64%)
| 217.69.139.61:443 |
| 2020-07-05 00:07:52 | ac83e1839fe2e72f3ec5de6a68fde542 | 57 / 72 (79.17%)
| 217.69.139.61:443 |
| 2020-07-04 22:25:34 | aa85739ecb1af7b6d36a5c45ecac7f1f | 45 / 73 (61.64%)
| 94.100.180.61:443 |
| 2020-07-04 16:30:59 | a5e6ac8b10808305730d186a73ee2686 | 47 / 73 (64.38%)
| 94.100.180.61:443 |
| 2020-07-04 10:17:03 | 78d1c03dc95ea6a922f337ac26cf038b | n/a | 217.69.139.61:443 |
| 2020-07-03 18:09:33 | 40fcaca8a1e5f811daa69ee8b410ff0c | 34 / 73 (46.58%)
| 94.100.180.61:443 |
| 2020-07-03 15:26:07 | d8bc0f68619b40058337bc2208a529a7 | 41 / 72 (56.94%)
| 217.69.139.61:443 |
| 2020-07-03 15:11:02 | d7333fc36b17b96a0a09b5b616466604 | 48 / 73 (65.75%)
| 94.100.180.61:443 |
| 2020-07-03 12:38:26 | c27f104e6575d1b551ded5e88d93cb30 | 46 / 73 (63.01%)
| 217.69.139.61:443 |
| 2020-07-03 12:24:56 | c252698643c12ba4c4d7324e730806cd | 50 / 73 (68.49%)
| 94.100.180.61:443 |
| 2020-07-03 07:07:53 | bbaef49ef5bb882ae792fc493d857610 | 48 / 71 (67.61%)
| 217.69.139.61:443 |
| 2020-07-03 06:50:02 | bbcfc2e81282b25760d33f889199a9e7 | 55 / 73 (75.34%)
| 217.69.139.61:443 |
| 2020-07-03 01:28:16 | b51185a488c963747eb4f3c78b798c5f | 38 / 73 (52.05%)
| 94.100.180.61:443 |
| 2020-07-02 23:55:04 | b3ad65faeafacea5d2731c09f4f2f4ce | 39 / 72 (54.17%)
| 217.69.139.61:443 |
| 2020-07-02 23:55:04 | b3ad65faeafacea5d2731c09f4f2f4ce | 39 / 72 (54.17%)
| 94.100.180.61:443 |
| 2020-07-02 18:41:33 | 99d883d5f2b6cddfa4c94ed20c02c46b | 37 / 73 (50.68%)
| 217.69.139.61:443 |
| 2020-07-02 17:56:52 | 69d7d8d95af2dedeb98d2434b0eb6e44 | n/a | 173.201.192.148:443 |
| 2020-07-02 17:56:51 | 69d7d8d95af2dedeb98d2434b0eb6e44 | n/a | 97.74.135.148:443 |
| 2020-07-02 17:56:51 | 69d7d8d95af2dedeb98d2434b0eb6e44 | n/a | 68.178.252.148:443 |
| 2020-07-02 17:56:50 | 69d7d8d95af2dedeb98d2434b0eb6e44 | n/a | 173.201.193.148:443 |
| 2020-07-02 17:56:50 | 69d7d8d95af2dedeb98d2434b0eb6e44 | n/a | 2.20.17.144:443 |
| 2020-07-02 08:39:23 | a9e82ac62abdee20541ef64b24f7c5c1 | 49 / 72 (68.06%)
| 94.100.180.61:443 |
| 2020-07-01 21:05:01 | 870d3c832ff4490f357041c6058b9475 | 42 / 72 (58.33%)
| 94.100.180.61:443 |
| 2020-07-01 20:11:32 | 63f8f3829f9c9063f5f3f08f0cf11c7a | 39 / 73 (53.42%)
| 94.100.180.61:443 |
| 2020-07-01 20:04:14 | 620b4af32712e4e6df2ad2246e5b14dd | n/a | 94.100.180.61:443 |
| 2020-07-01 17:38:57 | 8f495a4e18c762b17b88c90a26dd390d | 40 / 72 (55.56%)
| 94.100.180.61:443 |
| 2020-07-01 15:00:32 | 1dd0ae802490c0c4d07ee0a62eb32221 | 42 / 72 (58.33%)
| 94.100.180.61:443 |
| 2020-06-30 20:42:40 | 50c1f1bfcc4edb0f54594210d5650ba6 | 39 / 73 (53.42%)
| 217.69.139.61:443 |
| 2020-06-30 20:30:15 | 4e89dbf6f90e9e7119aa4c11aeee984f | 43 / 72 (59.72%)
| 217.69.139.61:443 |
| 2020-06-30 20:29:41 | 4e227065c847e73e87a2d34e51f1ab82 | 38 / 72 (52.78%)
| 217.69.139.61:443 |
| 2020-06-30 19:06:16 | 12c76bbac3769a15e601d801babcfe5c | 40 / 72 (55.56%)
| 94.100.180.61:443 |
| 2020-06-30 17:01:40 | d6399ae215e01923cf737eb121923981 | n/a | 94.100.180.61:443 |
| 2020-06-30 13:00:08 | c47e32a43d15b6e0801a60fd3a44f3ab | 44 / 73 (60.27%)
| 217.69.139.61:443 |
| 2020-06-30 10:09:58 | bdd8d050e1cc87099914ccf2c4a5a9fa | 32 / 73 (43.84%)
| 217.69.139.61:443 |
| 2020-06-30 09:16:24 | bbcf6d4602000ed9e6d5afc85ad356f0 | 48 / 74 (64.86%)
| 94.100.180.61:443 |
| 2020-06-30 09:05:16 | bb5e9bb822ecf4ff386450c0221814a9 | 47 / 74 (63.51%)
| 217.69.139.61:443 |
| 2020-06-30 07:28:31 | b9d1d4d6aa9d3f1a5cc0795646a0f9c6 | 46 / 73 (63.01%)
| 94.100.180.61:443 |
| 2020-06-30 07:28:31 | b9d1d4d6aa9d3f1a5cc0795646a0f9c6 | 46 / 73 (63.01%)
| 217.69.139.61:443 |
| 2020-06-30 06:48:54 | b4747870cf4bdcf69b8e103d6bac0e99 | 48 / 72 (66.67%)
| 217.69.139.61:443 |
| 2020-06-30 06:37:11 | b9ac79a15f547ce484a881d0dd130ba6 | 30 / 73 (41.10%)
| 217.69.139.61:443 |
| 2020-06-30 06:37:10 | b9ac79a15f547ce484a881d0dd130ba6 | 30 / 73 (41.10%)
| 94.100.180.61:443 |
| 2020-06-30 06:32:21 | b462a83b72424315d14ec10c31952140 | 35 / 71 (49.30%)
| 94.100.180.61:443 |
| 2020-06-30 06:27:09 | b301cd05d728bfad9a6d19ad922fe943 | 49 / 74 (66.22%)
| 94.100.180.61:443 |
| 2020-06-30 06:27:09 | b301cd05d728bfad9a6d19ad922fe943 | 49 / 74 (66.22%)
| 217.69.139.61:443 |
| 2020-06-30 06:26:36 | b6245283211edeed6af449cafc61bdf0 | 37 / 71 (52.11%)
| 217.69.139.61:443 |
| 2020-06-30 06:18:16 | b3868cf1e0ec979f0ae5d4da8f2db47a | 46 / 72 (63.89%)
| 217.69.139.61:443 |
| 2020-06-30 06:09:11 | b7c414dbbd6b80b5b830331ab1c7d21d | 40 / 72 (55.56%)
| 94.100.180.61:443 |
| 2020-06-30 06:03:48 | b5defeac9fcdb4fd94da250ea440c396 | 42 / 73 (57.53%)
| 217.69.139.61:443 |
| 2020-06-30 06:03:43 | b03a1af8a85068822a5ed79f5d692fef | 46 / 73 (63.01%)
| 217.69.139.61:443 |
| 2020-06-30 06:00:37 | b270ad2b02ff74bae969a00c2e27bb1e | 47 / 73 (64.38%)
| 94.100.180.61:443 |
| 2020-06-30 05:49:04 | b1d5981a594e2cb0b23e3e0149d870f0 | 47 / 71 (66.20%)
| 94.100.180.61:443 |
| 2020-06-30 05:46:40 | b2d213e51e1aeb3a001f0c8e70d41a8b | 45 / 73 (61.64%)
| 217.69.139.61:443 |
| 2020-06-30 05:30:14 | b906f4a2291810a3a82bbb8f3e7af609 | 42 / 74 (56.76%)
| 217.69.139.61:443 |
| 2020-06-30 05:17:03 | b58a2605ccde36bdfb442cc72ee120af | 46 / 72 (63.89%)
| 217.69.139.61:443 |
| 2020-06-30 05:12:05 | b50b841c96c2c4a8ae232d93c4216d83 | 49 / 74 (66.22%)
| 94.100.180.61:443 |
| 2020-06-29 21:26:43 | a7b09133ecb60b0bf50fddfd189689e4 | n/a | 94.100.180.61:443 |
| 2020-06-29 05:37:29 | adf8a18cffeaac880ed98f5816e813c9 | 45 / 73 (61.64%)
| 217.69.139.61:443 |
| 2020-06-29 04:05:33 | ad3b5acadd0fef32b22e3ab6e7023643 | 47 / 73 (64.38%)
| 217.69.139.61:443 |
| 2020-06-29 03:49:31 | ad0897f1da1b116f6a8885d13c717e13 | 50 / 73 (68.49%)
| 94.100.180.61:443 |
| 2020-06-29 00:27:56 | a9393c9670854f80c664263e9aa5c307 | 48 / 72 (66.67%)
| 217.69.139.61:443 |
| 2020-06-28 23:57:43 | a83933ec31b7222ae33a469c45b4da9d | 44 / 72 (61.11%)
| 94.100.180.61:443 |
| 2020-06-28 23:51:27 | a82dc66addf8a41d8ab6e539a2fe7fa6 | 43 / 73 (58.90%)
| 94.100.180.61:443 |
| 2020-06-28 23:50:20 | a78f713c3af88e5a8a9804e7f9e26a7a | 46 / 72 (63.89%)
| 217.69.139.61:443 |
| 2020-06-28 23:00:33 | a5d6c8f5059defec4d2066fe52823b14 | 37 / 72 (51.39%)
| 94.100.180.61:443 |
| 2020-06-28 21:41:49 | a2fa9719e7360b92020071de01a4ead6 | n/a | 94.100.180.61:443 |
| 2020-06-28 20:32:54 | a0831aba384a644e8e013f95789259b6 | 38 / 73 (52.05%)
| 97.74.135.45:443 |
| 2020-06-28 20:32:54 | a0831aba384a644e8e013f95789259b6 | 38 / 73 (52.05%)
| 45.40.130.40:443 |
| 2020-06-28 20:32:54 | a0831aba384a644e8e013f95789259b6 | 38 / 73 (52.05%)
| 94.100.180.61:443 |
| 2020-06-28 20:32:52 | a0831aba384a644e8e013f95789259b6 | 38 / 73 (52.05%)
| 23.198.17.162:443 |
| 2020-06-28 19:43:05 | 904f2390d3a4d10eeb19447b2e9e485c | 37 / 72 (51.39%)
| 72.167.218.183:443 |
| 2020-06-28 19:43:05 | 904f2390d3a4d10eeb19447b2e9e485c | 37 / 72 (51.39%)
| 104.66.191.131:443 |
| 2020-06-28 19:43:05 | 904f2390d3a4d10eeb19447b2e9e485c | 37 / 72 (51.39%)
| 217.69.139.61:443 |
| 2020-06-28 19:43:05 | 904f2390d3a4d10eeb19447b2e9e485c | 37 / 72 (51.39%)
| 173.201.192.133:443 |
| 2020-06-28 19:28:19 | 8cbeb2d8998bee4d27e9d753e1e583fd | n/a | 94.100.180.61:443 |
| 2020-06-28 19:07:34 | 83c5a1cfa385c474593795875a0d13c5 | 54 / 73 (73.97%)
| 217.69.139.61:443 |
| 2020-06-28 17:20:26 | 1cc2b1a3b86e8a2f3470e1eee9cb6f77 | n/a | 23.198.17.162:443 |
| 2020-06-28 17:20:25 | 1cc2b1a3b86e8a2f3470e1eee9cb6f77 | n/a | 72.167.218.183:443 |
| 2020-06-28 17:20:25 | 1cc2b1a3b86e8a2f3470e1eee9cb6f77 | n/a | 217.69.139.61:443 |
| 2020-06-28 17:20:25 | 1cc2b1a3b86e8a2f3470e1eee9cb6f77 | n/a | 72.167.218.45:443 |
| 2020-06-28 17:20:25 | 1cc2b1a3b86e8a2f3470e1eee9cb6f77 | n/a | 173.201.192.133:443 |
| 2020-06-28 15:04:34 | 35ed0a18b5330325b39ee342c125046c | 48 / 74 (64.86%)
| 217.69.139.61:443 |
| 2020-06-28 14:48:20 | 2f9d49672caecf4678107dd141929d32 | 48 / 71 (67.61%)
| 94.100.180.61:443 |
| 2020-06-28 14:25:49 | 2e4f9a841ba39bfe8f179d5a51f1763e | 45 / 71 (63.38%)
| 217.69.139.61:443 |
| 2020-06-28 13:27:15 | 2aa5bc7048319d8ff1c715604092d866 | 45 / 74 (60.81%)
| 217.69.139.61:443 |
| 2020-06-28 12:02:24 | 25c6518c27bddeb20d75722a5cd7478e | 40 / 73 (54.79%)
| 94.100.180.61:443 |
| 2020-06-28 11:28:02 | 23f5b8965247227ae4123d2ef1a714c3 | 46 / 73 (63.01%)
| 217.69.139.61:443 |
| 2020-06-28 11:23:48 | 2368f02acd5c55d9965c11d3222c7c87 | 49 / 73 (67.12%)
| 94.100.180.61:443 |
| 2020-06-28 10:04:14 | 1f2fac30b06a9b1cce27b442463f653c | 41 / 72 (56.94%)
| 94.100.180.61:443 |
| 2020-06-28 09:20:55 | 1d52c78c55e79394792d67acb028d86a | 49 / 72 (68.06%)
| 94.100.180.61:443 |
| 2020-06-28 07:58:37 | 19d6b8d093f46feb12eac7d094c011ed | 51 / 72 (70.83%)
| 94.100.180.61:443 |
| 2020-06-27 19:50:21 | ac35d5b788dedd16fff326530258674a | 48 / 73 (65.75%)
| 173.201.192.5:443 |
| 2020-06-27 19:50:21 | ac35d5b788dedd16fff326530258674a | 48 / 73 (65.75%)
| 97.74.135.148:443 |
# of entries: 100 (max: 100)