JA3 Fingerprints
You can find further information about the JA3 fingerprint c2b4710c6888a5d47befe865c8e6fb19, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | c2b4710c6888a5d47befe865c8e6fb19 |
|---|---|
| First seen: | 2018-11-29 20:46:04 UTC |
| Last seen: | 2020-06-06 08:20:40 UTC |
| Status: | Blacklisted |
| Malware samples: | 191 |
| Destination IPs: | 37 |
| Malware: | Tofsee  |
| Listing date: | 2020-01-09 14:32:01 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2020-06-06 08:20:40 | 291500fd2bd96429e39d3aaee59f7a3f |  37 / 72 (51.39%)
| 94.100.180.61:443 |
| 2020-06-06 07:00:30 | 11cf5b6aa18edb0740097e3eddd976fe | 54 / 71 (76.06%)
| 94.100.180.61:443 |
| 2020-06-06 07:00:29 | 11cf5b6aa18edb0740097e3eddd976fe | 54 / 71 (76.06%)
| 217.69.139.61:443 |
| 2020-06-04 17:13:43 | 89977105987000082f42424f45a64457 | 45 / 71 (63.38%)
| 94.100.180.61:443 |
| 2020-06-04 10:44:37 | 72dbe5bc1cc3d9bb9b4518d9e7af9c78 | 22 / 73 (30.14%)
| 217.69.139.61:443 |
| 2020-06-03 06:41:37 | 260b8cb8f0cbf915c6c0e57f0bc20fff | 29 / 73 (39.73%)
| 217.74.64.236:443 |
| 2020-06-02 13:08:21 | ad1f2ae02d419748f888a0bc333a1ffb | n/a | 217.69.139.61:443 |
| 2020-06-02 13:08:21 | ad1f2ae02d419748f888a0bc333a1ffb | n/a | 217.69.142.141:443 |
| 2020-06-01 17:51:16 | 4bc4ef96c190b0aa4bd871133ecb6534 | 55 / 72 (76.39%)
| 94.100.184.68:443 |
| 2020-06-01 17:51:16 | 4bc4ef96c190b0aa4bd871133ecb6534 | 55 / 72 (76.39%)
| 94.100.180.61:443 |
| 2020-06-01 17:51:15 | 4bc4ef96c190b0aa4bd871133ecb6534 | 55 / 72 (76.39%)
| 94.100.184.66:443 |
| 2020-05-31 07:16:58 | 3f8bc6e5d69ab563a3be263a1688cfb8 | 38 / 73 (52.05%)
| 74.208.232.8:443 |
| 2020-05-31 07:16:58 | 3f8bc6e5d69ab563a3be263a1688cfb8 | 38 / 73 (52.05%)
| 74.208.232.61:443 |
| 2020-05-31 07:16:57 | 3f8bc6e5d69ab563a3be263a1688cfb8 | 38 / 73 (52.05%)
| 74.208.232.36:443 |
| 2020-05-30 20:20:17 | 905e801af6d84772c2b961a0e1032840 | 46 / 72 (63.89%)
| 94.100.180.61:443 |
| 2020-05-30 05:21:31 | 7a3f4ff5f17743604dbcbf9b0fa69626 | 24 / 73 (32.88%)
| 152.195.54.65:443 |
| 2020-05-25 21:42:31 | 190d30fc7491a3b21d68ab728c6cdb3a | 45 / 72 (62.50%)
| 217.69.139.61:443 |
| 2020-05-25 20:44:14 | 03ae7c60c9afc5d8c7f78d66cde6c3cf | 46 / 73 (63.01%)
| 217.69.139.61:443 |
| 2020-05-25 20:44:13 | 03ae7c60c9afc5d8c7f78d66cde6c3cf | 46 / 73 (63.01%)
| 94.100.180.61:443 |
| 2020-05-25 18:58:09 | 186c95da68793cb3a44f0a0f2345058a | 43 / 71 (60.56%)
| 94.100.180.61:443 |
| 2020-05-25 18:58:09 | 186c95da68793cb3a44f0a0f2345058a | 43 / 71 (60.56%)
| 217.69.139.61:443 |
| 2020-05-25 06:01:08 | 02086354ea4199b454d601dcc7d988a6 | 55 / 73 (75.34%)
| 94.100.180.61:443 |
| 2020-05-24 21:02:37 | 45bcd8b2887e4c7c7f6c3594c98c9bda | n/a | 217.69.139.61:443 |
| 2020-04-08 19:07:42 | 64973f901d651b517042992215d0f9ef | 42 / 73 (57.53%)
| 172.217.168.4:443 |
| 2020-04-08 19:07:41 | 64973f901d651b517042992215d0f9ef | 42 / 73 (57.53%)
| 172.217.168.68:443 |
| 2020-03-28 08:13:19 | 7d0d77195b18f47e203629bbd0044018 | n/a | 31.13.72.174:443 |
| 2020-03-27 15:13:40 | 926941535345db23a2f45b3995939b80 | 22 / 72 (30.56%)
| 31.13.72.174:443 |
| 2020-03-27 11:18:52 | 0bb2b03883d61987cda2ca662ba0db60 | n/a | 31.13.72.174:443 |
| 2020-03-27 11:18:51 | 0bb2b03883d61987cda2ca662ba0db60 | n/a | 157.240.194.174:443 |
| 2020-03-27 08:00:19 | 9fbcc892773395183458ab838eacb662 | 24 / 73 (32.88%)
| 31.13.72.174:443 |
| 2020-03-26 19:49:32 | cdf6c5b37844378a0f1dfd0fcb89cda1 | 33 / 72 (45.83%)
| 31.13.72.174:443 |
| 2020-03-26 19:49:29 | cdf6c5b37844378a0f1dfd0fcb89cda1 | 33 / 72 (45.83%)
| 185.60.216.174:443 |
| 2020-03-26 19:16:04 | 0619175efa50887152aa01e9b06b96dc | 21 / 72 (29.17%)
| 31.13.72.174:443 |
| 2020-03-26 13:57:59 | d86b5aad90c5c2928fdff9718cb8ef24 | 21 / 71 (29.58%)
| 157.240.194.174:443 |
| 2020-03-26 12:27:21 | 5a372fae95b828405954a558e723fd26 | n/a | 31.13.72.174:443 |
| 2020-03-26 12:27:20 | 5a372fae95b828405954a558e723fd26 | n/a | 157.240.194.174:443 |
| 2020-03-26 10:07:47 | 0c923ba0498d2052f64b1fc4f7b2cfce | 18 / 73 (24.66%)
| 157.240.194.174:443 |
| 2020-03-25 21:42:49 | a00af9729eff3c313db18914f9db4be4 | 23 / 73 (31.51%)
| 31.13.92.174:443 |
| 2020-03-25 16:19:46 | 39b961c13850e7910d07c9d1993b47a7 | 20 / 72 (27.78%)
| 31.13.92.174:443 |
| 2020-03-25 16:19:40 | 39b961c13850e7910d07c9d1993b47a7 | 20 / 72 (27.78%)
| 157.240.194.174:443 |
| 2020-03-25 16:19:40 | 39b961c13850e7910d07c9d1993b47a7 | 20 / 72 (27.78%)
| 31.13.72.174:443 |
| 2020-03-25 14:18:49 | c0d90be5de2fbba760a3ae94c4cdbf85 | 22 / 72 (30.56%)
| 31.13.72.174:443 |
| 2020-03-18 03:16:52 | b15e6a487b49c90239046db3f2629340 | 51 / 70 (72.86%)
| 193.17.41.99:443 |
| 2020-03-13 04:42:01 | 2e3249d404e1785a1bfa1914a75effcf | 24 / 73 (32.88%)
| 31.13.92.174:443 |
| 2020-03-13 04:41:47 | 2e3249d404e1785a1bfa1914a75effcf | 24 / 73 (32.88%)
| 31.13.72.174:443 |
| 2020-03-13 04:41:45 | 2e3249d404e1785a1bfa1914a75effcf | 24 / 73 (32.88%)
| 157.240.194.174:443 |
| 2020-03-13 04:41:41 | 2e3249d404e1785a1bfa1914a75effcf | 24 / 73 (32.88%)
| 157.240.203.174:443 |
| 2020-03-09 18:10:16 | 568dc5960385c0f5c552243725d8149f | n/a | 193.17.41.99:443 |
| 2020-03-09 17:35:38 | 893e272d0e38bcb48d7ce7437b36565f | n/a | 193.17.41.99:443 |
| 2020-03-09 17:03:06 | 839449d8f24be1405bb9a7359e28233f | n/a | 193.17.41.99:443 |
| 2020-03-09 16:46:59 | 980322fcc4ba63d32948f64dfffd3d0b | n/a | 193.17.41.99:443 |
| 2020-03-05 13:59:24 | d61df703814d13c53a0907b267b6d169 | 51 / 71 (71.83%)
| 157.240.20.63:443 |
| 2020-03-01 11:29:33 | b8b9ad8b6caff7d8f362aae15f874a1d | n/a | 193.17.41.99:443 |
| 2020-02-29 21:21:32 | b480b7991a57cba5c4461baad95bfdd6 | n/a | 193.17.41.99:443 |
| 2020-02-29 13:54:16 | c418e1ab14e56f3095e0e56df688dd96 | n/a | 193.17.41.99:443 |
| 2020-02-29 11:30:43 | b0638dd093b2c82a9f9cccf870fbe130 | n/a | 193.17.41.99:443 |
| 2020-02-29 09:44:25 | 0c46e30d2a28d6afc57abfe795480c8d | n/a | 193.17.41.99:443 |
| 2020-02-29 05:48:07 | 15817f74ccc3d6a9e222b1ae904c25a9 | n/a | 193.17.41.99:443 |
| 2020-02-29 05:36:52 | 81f79ce05d962b7d8b0d4977aead32df | n/a | 193.17.41.99:443 |
| 2020-02-21 07:48:38 | a781ddb65721b7e174f807ad24930174 | 41 / 73 (56.16%)
| 193.17.41.99:443 |
| 2020-02-20 17:27:10 | bfad7e7985de77b64baf55ac96803707 | n/a | 193.17.41.99:443 |
| 2020-02-20 16:14:55 | b6b405aa01ab1bd2c7861196ffc28115 | n/a | 193.17.41.99:443 |
| 2020-02-19 01:23:40 | a5c41b91e9da697120422edcb601193f | n/a | 193.17.41.99:443 |
| 2020-02-18 21:32:49 | bece9e8453c1829fa803355b4d1eacd3 | n/a | 193.17.41.99:443 |
| 2020-02-18 19:10:31 | c1a1815366c76d7b94f61a412417467c | n/a | 193.17.41.99:443 |
| 2020-02-18 18:53:39 | ad0f8b926ac0b2a9d84dee20d83f2388 | n/a | 193.17.41.99:443 |
| 2020-02-18 16:27:04 | a006922447e14473c0510dfd5f3c0e4f | n/a | 193.17.41.99:443 |
| 2020-02-18 15:31:04 | b64b624311349b1f7de4431ad6299183 | n/a | 193.17.41.99:443 |
| 2020-02-18 10:38:39 | eca495e2fe4293db3f92f3c574b541e1 | n/a | 193.17.41.99:443 |
| 2020-02-18 10:31:41 | fe7659ff24955e195962af7535dfecca | n/a | 193.17.41.99:443 |
| 2020-02-18 10:29:42 | f1c127d900080c0f4c6e5675f928bf0d | 53 / 71 (74.65%)
| 193.17.41.99:443 |
| 2020-02-18 10:29:22 | 541178dddc25cf74edef8eccd847ca5a | n/a | 193.17.41.99:443 |
| 2020-02-18 10:26:42 | b10fe3f0ca2cc15c74356bb0976deaa1 | n/a | 193.17.41.99:443 |
| 2020-02-18 10:16:18 | feabcc4ec27833fb19d3dc546945884b | n/a | 193.17.41.99:443 |
| 2020-02-18 10:13:03 | d15095fa3a5cecafd2019c582a7b3735 | n/a | 193.17.41.99:443 |
| 2020-02-18 09:40:28 | e5c24f48a4ce4a4bc0f13b5ab243ec96 | n/a | 193.17.41.99:443 |
| 2020-02-18 09:36:14 | 7219855ad6ef3a36802fa494c7d76e14 | n/a | 193.17.41.99:443 |
| 2020-02-18 09:32:50 | 70c967a55a40be249e42cf6f01986d9f | n/a | 193.17.41.99:443 |
| 2020-02-18 09:27:12 | feb9676e0e9fedf7e5a925d51abdd577 | n/a | 193.17.41.99:443 |
| 2020-02-18 09:26:46 | 963672a7a271b334cbf2860607f5c115 | n/a | 193.17.41.99:443 |
| 2020-01-05 21:09:43 | 3fc5fadb9f5a4ef0431690c1f304f451 | n/a | 31.13.70.52:443 |
| 2020-01-05 21:02:34 | a9f00889009fbb4ca5328642a46567f0 | n/a | 31.13.70.52:443 |
| 2020-01-05 16:38:55 | 724fd37c4975d110c6ba882b29efefdb | n/a | 157.240.20.63:443 |
| 2020-01-05 13:03:55 | 2ca519f0763d2f4c7b3559bf9d589bb4 | n/a | 157.240.201.63:443 |
| 2019-12-29 12:27:51 | 71361ac1a45b262d0e9a7b9aa99bec50 | 51 / 70 (72.86%)
| 31.13.86.52:443 |
| 2019-12-28 13:47:11 | ac2b03d8bfb341c1853f449095b6fb83 | 39 / 73 (53.42%)
| 31.13.70.52:443 |
| 2019-12-24 09:02:58 | f4e8629452caf22cff8d5e770438ec2c | 44 / 73 (60.27%)
| 157.240.20.63:443 |
| 2019-12-24 09:02:58 | f4e8629452caf22cff8d5e770438ec2c | 44 / 73 (60.27%)
| 185.60.216.52:443 |
| 2019-11-27 11:56:54 | c35739765712c2b90c68d6f83859749a | n/a | 152.195.53.153:443 |
| 2019-11-13 06:43:41 | 733c8398a696d010d0c1ab5a978b6168 | n/a | 152.195.53.153:443 |
| 2019-11-09 06:35:39 | c0efa636e6d2e16d765b95712081ca2d | n/a | 24.75.29.69:443 |
| 2019-11-06 08:37:16 | 956b8117f35c4637aa0b2977d7a498c5 | 55 / 71 (77.46%)
| 152.195.53.153:443 |
| 2019-10-31 13:29:36 | 98270939f105dc0c664deb9895356c47 | 28 / 70 (40.00%)
| 152.195.53.153:443 |
| 2019-10-30 04:54:51 | fb09883fde25e4af13c952d53a4c0b03 | n/a | 152.195.53.153:443 |
| 2019-10-26 08:11:11 | 53f4aa821c2723ef9404113599a369db | n/a | 152.195.53.153:443 |
| 2019-10-25 15:56:26 | 66cf3577617b8a6f63e46e3a46abb551 | n/a | 152.195.53.153:443 |
| 2019-10-21 09:22:26 | 122a7b5983385b93180957e7de2f6ed0 | n/a | 152.195.53.153:443 |
| 2019-10-21 08:19:32 | cb96a13b6cc5f92a8470ec27dd52a217 | n/a | 152.195.53.153:443 |
| 2019-10-16 22:56:56 | 17178feafe64c71899323383659ae31c | n/a | 152.195.53.153:443 |
| 2019-10-16 22:47:19 | a36cdce7d0fcb665a7f3f3d87bcccd8d | n/a | 152.195.53.153:443 |
# of entries: 100 (max: 100)