JA3 Fingerprints

You can find further information about the JA3 fingerprint d7150af4514b868defb854db0f62a441, including the corresponding malware samples as well as the associated botnet C&Cs.

Database Entry


JA3 Fingerprint:d7150af4514b868defb854db0f62a441
First seen:2017-07-23 09:39:24 UTC
Last seen:2018-07-24 01:04:58 UTC
Status:Blacklisted
Malware samples:82
Destination IPs:10
Malware:Tofsee -
Listing date:2018-11-14 12:42:02

Malware Samples


The table below documents all malware samples associated with this JA3 Fingerprint.

Timestamp (UTC)Malware Sample (MD5 hash)VTBotnet C&C (IP:port)
2018-07-24 01:04:58bb1ef3cfc6ed06a5467abb5ab0543566Virustotal results 29/67 (43.28%) 104.23.128.76:443
2018-04-17 11:20:5888832aed6a9f830b742d219b2d986a67Virustotal results 57/67 (85.07%) 104.23.129.76:443
2018-04-16 00:30:58fe16931fc9a7c3a9c5fdcabd1d8f5f4bVirustotal results 47/67 (70.15%) 104.23.129.76:443
2018-04-15 18:42:37e594c61c57f65f42a2b9499741fcd1e2Virustotal results 46/66 (69.70%) 104.23.129.76:443
2018-04-14 18:05:56700c43f9e41e479dc1a29405a9ac81dbVirustotal results 58/67 (86.57%) 104.23.128.76:443
2018-04-14 14:30:5625e8f37cc18bc29ebb44146863807f48Virustotal results 52/65 (80.00%) 104.23.128.76:443
2018-04-14 05:53:245bdfecf6149389541b4fdf7df04fd51bVirustotal results 46/66 (69.70%) 104.23.129.76:443
2018-04-14 02:50:02825b3fcc446ae58e72f4dbd8920464cbVirustotal results 46/67 (68.66%) 104.23.128.76:443
2018-04-13 23:35:37a9af0834a4f77c8c11f875913292ec96Virustotal results 44/68 (64.71%) 104.23.129.76:443
2018-04-13 11:01:187c06a85fbdf33477ac2458c957e056afVirustotal results 37/66 (56.06%) 104.23.128.76:443
2018-04-13 10:43:56ef0ebbb6e7b32dbff9e7f2ed5d1015e0n/a104.23.128.76:443
2018-04-13 09:57:385c6c0ca99075b3f53bae22b965d6682bVirustotal results 55/67 (82.09%) 104.23.128.76:443
2018-04-13 08:25:43348574c4f47fcb0398b6dffd229da6ceVirustotal results 47/67 (70.15%) 104.23.129.76:443
2018-04-13 05:28:2214587f387748738734bea6b4eb73e829Virustotal results 22/66 (33.33%) 104.23.129.76:443
2018-04-13 05:06:09c11f880793ec7e81e9a37c4527eceb36Virustotal results 48/67 (71.64%) 104.23.129.76:443
2018-04-13 04:28:138af56a3108bc25a74ffc632a52668295Virustotal results 40/66 (60.61%) 104.23.129.76:443
2018-04-13 04:28:138af56a3108bc25a74ffc632a52668295Virustotal results 40/66 (60.61%) 104.23.128.76:443
2018-04-12 15:25:222d5f05136ee3a2e439aa0001a5229df6Virustotal results 55/66 (83.33%) 104.23.128.76:443
2018-04-12 13:12:37b86ac124469b5440dcb9f39effb92fe3Virustotal results 51/68 (75.00%) 104.23.128.76:443
2018-04-12 10:52:25d45b565e966b1af01c5b6a1941d5f221Virustotal results 47/68 (69.12%) 104.23.128.76:443
2018-04-12 10:38:198a744de2f3f06242f7d46169070674c3Virustotal results 45/67 (67.16%) 104.23.129.76:443
2018-04-12 09:07:37b4e92556b01e5f6375ef2df611fe1035Virustotal results 40/67 (59.70%) 104.23.129.76:443
2018-04-12 07:54:26b98d69200efc7e25d9ac374d784eabf3Virustotal results 49/68 (72.06%) 104.23.129.76:443
2018-04-12 02:40:201a46aefe7c52e3ec254e483d7fcd1a87Virustotal results 43/67 (64.18%) 104.23.129.76:443
2018-04-11 19:53:06fc9502e2ad515748fb3a5b6d563c4131Virustotal results 47/66 (71.21%) 104.23.128.76:443
2018-04-11 18:58:10029951d316f148f9505cfdd19521a001Virustotal results 40/67 (59.70%) 104.23.128.76:443
2018-04-11 15:49:58c58f378003b3fad4b6da5f9b661134e7Virustotal results 19/68 (27.94%) 104.23.129.76:443
2018-04-11 14:50:3651623a66de974b06cdde948f05dda67aVirustotal results 47/67 (70.15%) 104.23.128.76:443
2018-04-11 14:32:31794b4f33dd2096959ec0835288a08c55n/a104.23.129.76:443
2018-04-11 12:59:4499c2680935ca9d170cd88155d14f8962n/a104.23.128.76:443
2018-04-11 12:16:07577a1305616b251fa7561e07b50e2806n/a104.23.128.76:443
2018-04-11 07:01:41dacd8a1b58e5551f05977514ce9a2fe6n/a104.23.128.76:443
2018-04-11 06:55:453f6d6a78d9e3275529eb1141c97e1d41n/a104.23.129.76:443
2018-04-11 05:08:30704f823717c19c07666a464057d11a92Virustotal results 17/67 (25.37%) 104.23.129.76:443
2018-04-11 02:30:10b1f4e5d19906459c0dbc441c34b45d18Virustotal results 49/68 (72.06%) 104.23.129.76:443
2018-04-11 02:01:34ef3fa6848f894ab02664b43b1f6606beVirustotal results 49/68 (72.06%) 104.23.128.76:443
2018-04-10 15:47:15d024a52c3ecf5bf5fbecaefc15ecc946Virustotal results 47/66 (71.21%) 104.23.129.76:443
2018-04-10 12:48:03b107e700cf8e8a69e5975390efa3fe85Virustotal results 33/67 (49.25%) 104.23.128.76:443
2018-04-10 09:38:32d0c6826d2574f903451c2179ba991b19Virustotal results 44/67 (65.67%) 104.23.129.76:443
2018-04-10 04:46:430e8d0549c9226fe387887238aecd8901Virustotal results 39/66 (59.09%) 104.23.128.76:443
2018-04-10 02:00:235c3550574945d7427da9457aeb98d9acVirustotal results 36/66 (54.55%) 104.23.128.76:443
2018-04-09 22:06:049681eaddffd63b1361cf0e0710c977b0Virustotal results 55/67 (82.09%) 104.23.128.76:443
2018-04-09 21:04:1720f0a425d4dd52db90681cfa88eb2841Virustotal results 54/67 (80.60%) 104.23.129.76:443
2018-04-09 18:52:57f4f2c599528e6e5f3753aabd87724943Virustotal results 49/67 (73.13%) 104.23.129.76:443
2018-04-09 13:09:07fdc0cfc5c111ab955f45e40f7eb206f6n/a104.23.128.76:443
2018-04-09 11:00:1599b207f572f0ee4d56fa429d1eed49e9Virustotal results 48/67 (71.64%) 104.23.128.76:443
2018-04-08 07:35:3835483fcb8e866fb79ae85aadae158f1eVirustotal results 43/67 (64.18%) 104.23.128.76:443
2018-04-08 07:00:063d4f7c39621940eda0515979d17cc2e0Virustotal results 37/65 (56.92%) 104.23.129.76:443
2018-04-08 03:03:406e84f0904c7eade76a95311d2f7ecfe2Virustotal results 45/68 (66.18%) 104.23.129.76:443
2018-04-08 02:25:0138c2f3074be6b7e30580fed9fa3cd75eVirustotal results 47/68 (69.12%) 104.23.128.76:443
2018-04-07 15:42:321e3fe31671dfc1cd7ec37ab42ace773aVirustotal results 44/66 (66.67%) 104.23.129.76:443
2018-04-07 11:57:589bb68a96a9cba7e3a51fcc210ea1c5d2Virustotal results 48/68 (70.59%) 104.23.128.76:443
2018-04-07 05:08:1860a31ecfb2be30eec01befd09815f041Virustotal results 42/66 (63.64%) 104.23.128.76:443
2018-04-07 01:12:380597d2cb26d1ae68978054acb6042246Virustotal results 51/68 (75.00%) 104.23.129.76:443
2018-04-06 17:10:04945c8365439bbc8f5c1bee6b9ec4111bVirustotal results 18/68 (26.47%) 104.23.128.76:443
2018-04-06 05:07:51204bcb73be24432ca71ab296248095b7Virustotal results 44/66 (66.67%) 104.23.128.76:443
2018-04-06 03:12:53923a25c51793a57bd686ab7009083d21Virustotal results 46/68 (67.65%) 104.23.128.76:443
2018-04-04 08:43:0844abf80c1b3c18d1acc59db8131a4406Virustotal results 45/66 (68.18%) 104.23.129.76:443
2018-04-03 01:56:09299e1ac96857d8ebfa8673da118ae1a4Virustotal results 29/65 (44.62%) 104.23.129.76:443
2018-04-01 20:23:07fbf8c7c736c20a83ede4744e68f660c7Virustotal results 45/67 (67.16%) 104.23.128.76:443
2018-04-01 19:03:52aa026e3499463adb93e6262623c2cbb9Virustotal results 42/67 (62.69%) 104.23.129.76:443
2018-03-30 03:17:07c006f01b7808f24b63d36a7514ddb71cVirustotal results 39/66 (59.09%) 104.23.128.76:443
2018-03-30 00:15:33026a98309e4b73ac2cfa51d9e37bbd1eVirustotal results 43/66 (65.15%) 104.23.128.76:443
2018-03-29 04:08:4860f299d33e03b10b78f73dbc812a2f17Virustotal results 48/66 (72.73%) 104.23.129.76:443
2018-03-29 02:09:38a88e8d59a9a02f7b5daaf030a66d6e37Virustotal results 45/67 (67.16%) 104.23.128.76:443
2018-03-28 23:26:467aa5954f89e8d8944b98a001c6503e00Virustotal results 52/68 (76.47%) 104.23.129.76:443
2018-03-28 22:30:022d688be73c740afa5c983b706d5b8b9cVirustotal results 48/67 (71.64%) 104.23.129.76:443
2018-03-28 21:20:064273013a4814462defa215c8fb4e91f4Virustotal results 49/66 (74.24%) 104.23.128.76:443
2018-03-28 12:23:12106f37ff4d9f85b7da7fcbe356c07875Virustotal results 48/66 (72.73%) 104.23.128.76:443
2018-03-28 02:26:435247e800aa6c85bd9dd169c9567b5dc2Virustotal results 48/67 (71.64%) 104.23.128.76:443
2018-03-18 19:08:04ef5c5a4b42c56b65db6a92676f1059ceVirustotal results 44/65 (67.69%) 104.23.128.76:443
2018-03-18 01:13:58e6525c2ac5deb59f5b804f0f01fa3356Virustotal results 43/67 (64.18%) 104.23.129.76:443
2018-03-18 00:33:00d0b59a186c33a812059b4a29ef6683b1Virustotal results 46/66 (69.70%) 104.23.129.76:443
2018-03-16 11:21:20a4c3adce9333277ebc3de0557d861832Virustotal results 40/67 (59.70%) 104.23.129.76:443
2018-03-16 04:01:31389c79c4c05a9a579bb7e9c413355314Virustotal results 40/66 (60.61%) 104.23.128.76:443
2018-03-15 23:31:057989e69bb641dce6532d88e5f36ccc5an/a104.23.129.76:443
2018-03-15 18:19:0568b95f033e4f648dce8c971fc929b2b4Virustotal results 45/67 (67.16%) 104.23.129.76:443
2017-08-12 11:18:55bf412bcd61792ab1c9058b2f7f3a7e3eVirustotal results 24/64 (37.50%) 104.81.104.99:443
2017-08-05 09:12:42b0a6b3b0a9f8488688c4ea9eb3980ff2Virustotal results 34/64 (53.12%) 23.14.8.44:443
2017-08-05 09:04:190a14680c728eb054fbcaf8c72a8c3e14Virustotal results 12/65 (18.46%) 2.19.77.81:443
2017-07-25 10:43:58d9372a094625ceac980e212cead41afbVirustotal results 42/64 (65.62%) 23.203.64.191:443
2017-07-25 10:43:58d9372a094625ceac980e212cead41afbVirustotal results 42/64 (65.62%) 23.197.34.37:443
2017-07-25 10:43:58d9372a094625ceac980e212cead41afbVirustotal results 42/64 (65.62%) 172.229.212.195:443
2017-07-25 10:43:58d9372a094625ceac980e212cead41afbVirustotal results 42/64 (65.62%) 23.194.69.218:443
2017-07-23 13:40:43e1cb994758cbee5d3b46c829cd68763bVirustotal results 30/65 (46.15%) 104.109.107.107:443
2017-07-23 09:39:24ce9f6d0f38aa75b43eb02cd99d57e3b1Virustotal results 15/63 (23.81%) 2.19.77.81:443

# of entries: 86 (max: 100)