JA3 Fingerprints

You can find further information about the JA3 fingerprint d81d654effb94714a4086734fa0adad9, including the corresponding malware samples as well as the associated botnet C&Cs.

Database Entry


JA3 Fingerprint:d81d654effb94714a4086734fa0adad9
First seen:2019-07-16 23:29:02 UTC
Last seen:2020-04-05 05:48:25 UTC
Status:Blacklisted
Malware samples:353
Destination IPs:102
Malware:Tofsee -
Listing date:2020-01-09 14:27:02

Malware Samples


The table below documents all malware samples associated with this JA3 Fingerprint.

Timestamp (UTC)Malware Sample (MD5 hash)VTBotnet C&C (IP:port)
2020-04-05 05:48:26b4356e66d34b310f0e007d80d7244081Virustotal results 40 / 71 (56.34%) 173.194.68.188:5228
2020-04-05 05:48:25b4356e66d34b310f0e007d80d7244081Virustotal results 40 / 71 (56.34%) 64.233.162.188:5228
2020-04-05 05:48:25b4356e66d34b310f0e007d80d7244081Virustotal results 40 / 71 (56.34%) 108.177.97.188:443
2020-04-05 05:48:25b4356e66d34b310f0e007d80d7244081Virustotal results 40 / 71 (56.34%) 64.233.165.95:443
2020-04-05 05:48:25b4356e66d34b310f0e007d80d7244081Virustotal results 40 / 71 (56.34%) 108.177.9.188:443
2020-04-05 05:48:25b4356e66d34b310f0e007d80d7244081Virustotal results 40 / 71 (56.34%) 64.233.165.156:443
2020-04-05 05:48:24b4356e66d34b310f0e007d80d7244081Virustotal results 40 / 71 (56.34%) 64.233.165.154:443
2020-04-03 22:01:303f8474528ca3cb2887e4686ee403906en/a64.233.164.188:5228
2020-04-03 22:01:293f8474528ca3cb2887e4686ee403906en/a209.85.233.155:443
2020-04-03 22:01:283f8474528ca3cb2887e4686ee403906en/a209.85.146.188:443
2020-04-03 22:01:283f8474528ca3cb2887e4686ee403906en/a64.233.165.95:443
2020-04-03 21:24:573dc79f9ef9b3020de8df734864f9648fn/a173.194.221.154:443
2020-04-03 21:24:563dc79f9ef9b3020de8df734864f9648fn/a173.194.73.95:443
2020-04-03 21:24:563dc79f9ef9b3020de8df734864f9648fn/a142.250.11.188:5228
2020-04-03 21:24:553dc79f9ef9b3020de8df734864f9648fn/a64.233.161.188:5228
2020-04-03 21:24:543dc79f9ef9b3020de8df734864f9648fn/a209.85.146.188:443
2020-04-03 21:03:09114473afba7b60488dd1f3e141fbd888n/a173.194.73.188:5228
2020-04-03 21:03:09114473afba7b60488dd1f3e141fbd888n/a173.194.220.95:443
2020-04-03 21:03:08114473afba7b60488dd1f3e141fbd888n/a74.125.28.188:443
2020-04-03 21:03:08114473afba7b60488dd1f3e141fbd888n/a108.177.9.188:443
2020-04-03 21:03:08114473afba7b60488dd1f3e141fbd888n/a209.85.233.188:5228
2020-04-03 21:03:08114473afba7b60488dd1f3e141fbd888n/a64.233.177.188:5228
2020-04-03 21:03:08114473afba7b60488dd1f3e141fbd888n/a64.233.165.157:443
2020-04-03 21:03:08114473afba7b60488dd1f3e141fbd888n/a142.250.11.188:5228
2020-04-03 20:43:303a15b1b438705989319a063b5c265989n/a64.233.161.95:443
2020-04-03 20:43:293a15b1b438705989319a063b5c265989n/a64.233.162.188:5228
2020-04-03 19:34:38eb834b42b7493884ac06f148f51fde0bn/a74.125.28.188:443
2020-04-03 19:34:38eb834b42b7493884ac06f148f51fde0bn/a173.194.220.188:5228
2020-04-03 19:34:38eb834b42b7493884ac06f148f51fde0bn/a173.194.66.188:5228
2020-04-03 19:34:37eb834b42b7493884ac06f148f51fde0bn/a64.233.165.156:443
2020-04-03 19:34:37eb834b42b7493884ac06f148f51fde0bn/a64.233.164.95:443
2020-04-03 19:29:00768a4e253da69ffa972dc1b0b9728993n/a108.177.97.188:443
2020-04-03 19:28:59768a4e253da69ffa972dc1b0b9728993n/a108.177.9.188:443
2020-04-03 19:28:59768a4e253da69ffa972dc1b0b9728993n/a173.194.222.95:443
2020-04-03 19:28:59768a4e253da69ffa972dc1b0b9728993n/a209.85.233.188:5228
2020-04-03 07:31:006b33274e91e72a4b716cfc807baedd14n/a64.233.165.95:443
2020-04-03 07:31:006b33274e91e72a4b716cfc807baedd14n/a173.194.73.156:443
2020-04-03 07:31:006b33274e91e72a4b716cfc807baedd14n/a173.194.73.155:443
2020-04-01 23:08:0304bf1c2794a8e0ea112dfa93f3374644n/a108.177.14.156:443
2020-04-01 23:08:0304bf1c2794a8e0ea112dfa93f3374644n/a64.233.165.188:5228
2020-04-01 23:08:0304bf1c2794a8e0ea112dfa93f3374644n/a173.194.66.188:5228
2020-04-01 23:08:0204bf1c2794a8e0ea112dfa93f3374644n/a108.177.9.188:443
2020-04-01 23:08:0204bf1c2794a8e0ea112dfa93f3374644n/a108.177.14.154:443
2020-04-01 23:08:0104bf1c2794a8e0ea112dfa93f3374644n/a74.125.28.188:443
2020-04-01 23:08:0104bf1c2794a8e0ea112dfa93f3374644n/a173.194.73.95:443
2020-04-01 10:08:28903ab15f54e124fca2aa46a615d58905n/a74.125.28.188:443
2020-04-01 10:08:28903ab15f54e124fca2aa46a615d58905n/a64.233.162.188:5228
2020-04-01 10:08:27903ab15f54e124fca2aa46a615d58905n/a64.233.162.95:443
2020-04-01 10:08:27903ab15f54e124fca2aa46a615d58905n/a173.194.73.154:443
2020-04-01 10:08:27903ab15f54e124fca2aa46a615d58905n/a173.194.73.188:5228
2020-03-31 08:38:35142e93b0e744a05d54382eb5675beeean/a108.177.14.188:5228
2020-03-31 08:38:35142e93b0e744a05d54382eb5675beeean/a173.194.73.154:443
2020-03-31 08:38:35142e93b0e744a05d54382eb5675beeean/a74.125.205.95:443
2020-03-31 08:38:34142e93b0e744a05d54382eb5675beeean/a108.177.9.188:443
2020-03-31 08:38:34142e93b0e744a05d54382eb5675beeean/a74.125.28.188:443
2020-03-31 08:38:34142e93b0e744a05d54382eb5675beeean/a173.194.73.155:443
2020-03-31 07:05:5713567cdcf5c49887a0aef719a8a6357en/a173.194.73.155:443
2020-03-31 07:05:5713567cdcf5c49887a0aef719a8a6357en/a74.125.205.188:5228
2020-03-29 20:02:23326f2c90f50530e51ae7dc5458fe5d1en/a108.177.97.188:443
2020-03-29 20:02:23326f2c90f50530e51ae7dc5458fe5d1en/a64.233.162.95:443
2020-03-29 20:02:23326f2c90f50530e51ae7dc5458fe5d1en/a64.233.164.157:443
2020-03-29 20:02:22326f2c90f50530e51ae7dc5458fe5d1en/a64.233.177.188:5228
2020-03-29 20:02:22326f2c90f50530e51ae7dc5458fe5d1en/a173.194.66.188:5228
2020-03-29 20:02:22326f2c90f50530e51ae7dc5458fe5d1en/a173.194.222.188:5228
2020-03-29 20:02:22326f2c90f50530e51ae7dc5458fe5d1en/a173.194.221.188:5228
2020-03-29 19:59:503fbdd253b9cf04880b507036cf4f7006n/a173.194.222.155:443
2020-03-29 19:59:503fbdd253b9cf04880b507036cf4f7006n/a64.233.165.95:443
2020-03-29 19:59:493fbdd253b9cf04880b507036cf4f7006n/a173.194.222.156:443
2020-03-29 19:45:25ff913329af3b334debcebc2e85adc713n/a64.233.164.188:5228
2020-03-29 19:45:25ff913329af3b334debcebc2e85adc713n/a209.85.146.188:443
2020-03-29 19:45:25ff913329af3b334debcebc2e85adc713n/a173.194.221.188:5228
2020-03-29 19:45:25ff913329af3b334debcebc2e85adc713n/a64.233.165.154:443
2020-03-29 19:45:24ff913329af3b334debcebc2e85adc713n/a64.233.177.188:5228
2020-03-29 19:45:24ff913329af3b334debcebc2e85adc713n/a108.177.9.188:443
2020-03-29 19:45:24ff913329af3b334debcebc2e85adc713n/a64.233.163.95:443
2020-03-29 19:27:463ae4a12da6f384387c665e4459b4edc4n/a173.194.222.188:5228
2020-03-29 19:27:4483c6fa49c906279907c4d1a8096acd10n/a64.233.162.156:443
2020-03-29 19:27:4383c6fa49c906279907c4d1a8096acd10n/a173.194.73.95:443
2020-03-29 19:27:4383c6fa49c906279907c4d1a8096acd10n/a209.85.146.188:443
2020-03-29 19:27:4283c6fa49c906279907c4d1a8096acd10n/a173.194.222.188:5228
2020-03-29 19:27:4283c6fa49c906279907c4d1a8096acd10n/a64.233.177.188:5228
2020-03-29 19:22:59ada0c02090b54a98136b7c5caee43380Virustotal results 55 / 73 (75.34%) 74.125.28.188:443
2020-03-29 19:22:58ada0c02090b54a98136b7c5caee43380Virustotal results 55 / 73 (75.34%) 108.177.97.188:443
2020-03-29 19:22:58ada0c02090b54a98136b7c5caee43380Virustotal results 55 / 73 (75.34%) 173.194.222.95:443
2020-03-29 19:22:58ada0c02090b54a98136b7c5caee43380Virustotal results 55 / 73 (75.34%) 173.194.222.188:5228
2020-03-29 19:22:58ada0c02090b54a98136b7c5caee43380Virustotal results 55 / 73 (75.34%) 173.194.222.157:443
2020-03-29 19:13:394f49bd76e941bfda0f2f44d06df8c855n/a64.233.161.95:443
2020-03-29 19:13:394f49bd76e941bfda0f2f44d06df8c855n/a173.194.222.154:443
2020-03-29 08:34:05c260b388b3a0a6a42d1dc18f67eb1b5eVirustotal results 31 / 72 (43.06%) 64.233.164.188:5228
2020-03-29 08:34:05c260b388b3a0a6a42d1dc18f67eb1b5eVirustotal results 31 / 72 (43.06%) 172.253.112.188:5228
2020-03-29 08:34:04c260b388b3a0a6a42d1dc18f67eb1b5eVirustotal results 31 / 72 (43.06%) 64.233.163.154:443
2020-03-29 00:54:11aabf7a7dfd185f1e3969712068f359a8Virustotal results 38 / 73 (52.05%) 209.85.146.188:443
2020-03-29 00:54:11aabf7a7dfd185f1e3969712068f359a8Virustotal results 38 / 73 (52.05%) 64.233.164.188:5228
2020-03-29 00:54:10aabf7a7dfd185f1e3969712068f359a8Virustotal results 38 / 73 (52.05%) 108.177.97.188:443
2020-03-29 00:54:10aabf7a7dfd185f1e3969712068f359a8Virustotal results 38 / 73 (52.05%) 173.194.73.95:443
2020-03-29 00:54:10aabf7a7dfd185f1e3969712068f359a8Virustotal results 38 / 73 (52.05%) 64.233.165.155:443
2020-03-28 18:48:281f5a136b42a01c263022e9b7288080d5n/a64.233.161.157:443
2020-03-28 18:48:271f5a136b42a01c263022e9b7288080d5n/a173.194.73.95:443
2020-03-28 18:48:271f5a136b42a01c263022e9b7288080d5n/a173.194.220.188:5228
2020-03-28 18:27:4029bab3886add948bb6983c0a74ddde81n/a173.194.222.95:443

# of entries: 100 (max: 100)