JA3 Fingerprints

You can find further information about the JA3 fingerprint d81d654effb94714a4086734fa0adad9, including the corresponding malware samples as well as the associated botnet C&Cs.

Database Entry


JA3 Fingerprint:d81d654effb94714a4086734fa0adad9
First seen:2019-07-16 23:29:02 UTC
Last seen:2020-07-10 06:46:50 UTC
Status:Blacklisted
Malware samples:641
Destination IPs:110
Malware:Tofsee -
Listing date:2020-01-09 14:27:02

Malware Samples


The table below documents all malware samples associated with this JA3 Fingerprint.

Timestamp (UTC)Malware Sample (MD5 hash)VTBotnet C&C (IP:port)
2020-07-10 06:46:50e490e200f63a3b268e36058482b5b6b2Virustotal results 37 / 73 (50.68%) 108.177.14.188:5228
2020-07-10 06:24:33cb035105ca6e1c44577d8c84848686a4Virustotal results 49 / 73 (67.12%) 74.125.205.95:443
2020-07-10 06:24:32cb035105ca6e1c44577d8c84848686a4Virustotal results 49 / 73 (67.12%) 142.250.101.188:443
2020-07-10 06:24:32cb035105ca6e1c44577d8c84848686a4Virustotal results 49 / 73 (67.12%) 142.250.96.188:5228
2020-07-10 06:24:32cb035105ca6e1c44577d8c84848686a4Virustotal results 49 / 73 (67.12%) 64.233.164.188:5228
2020-07-10 06:24:31cb035105ca6e1c44577d8c84848686a4Virustotal results 49 / 73 (67.12%) 108.177.14.188:5228
2020-07-08 00:50:56bca139b1af6d1cfa893f95d61a6fb0e1Virustotal results 47 / 73 (64.38%) 173.194.73.188:5228
2020-07-07 22:46:23bad478511513703647f97fd823d9711fVirustotal results 43 / 73 (58.90%) 142.250.96.188:5228
2020-07-07 22:46:22bad478511513703647f97fd823d9711fVirustotal results 43 / 73 (58.90%) 64.233.161.188:5228
2020-07-07 06:39:21a85fc964618438fcf78952f64608358eVirustotal results 50 / 73 (68.49%) 142.250.96.188:5228
2020-07-07 06:39:20a85fc964618438fcf78952f64608358eVirustotal results 50 / 73 (68.49%) 64.233.162.188:5228
2020-07-05 14:45:11bc82008785e4f059b0a71fddf764dcc7Virustotal results 42 / 73 (57.53%) 209.85.233.95:443
2020-07-05 14:45:11bc82008785e4f059b0a71fddf764dcc7Virustotal results 42 / 73 (57.53%) 142.250.10.188:5228
2020-07-05 14:45:11bc82008785e4f059b0a71fddf764dcc7Virustotal results 42 / 73 (57.53%) 74.125.28.188:443
2020-07-05 14:45:11bc82008785e4f059b0a71fddf764dcc7Virustotal results 42 / 73 (57.53%) 209.85.146.188:5228
2020-07-05 14:45:10bc82008785e4f059b0a71fddf764dcc7Virustotal results 42 / 73 (57.53%) 64.233.164.188:5228
2020-07-05 14:45:10bc82008785e4f059b0a71fddf764dcc7Virustotal results 42 / 73 (57.53%) 64.233.189.188:443
2020-07-05 14:45:09bc82008785e4f059b0a71fddf764dcc7Virustotal results 42 / 73 (57.53%) 173.194.220.188:5228
2020-07-05 14:45:09bc82008785e4f059b0a71fddf764dcc7Virustotal results 42 / 73 (57.53%) 142.250.96.188:5228
2020-07-05 14:45:09bc82008785e4f059b0a71fddf764dcc7Virustotal results 42 / 73 (57.53%) 142.250.101.188:443
2020-07-04 22:25:34aa85739ecb1af7b6d36a5c45ecac7f1fVirustotal results 45 / 73 (61.64%) 209.85.146.188:5228
2020-07-04 22:25:34aa85739ecb1af7b6d36a5c45ecac7f1fVirustotal results 45 / 73 (61.64%) 74.125.205.188:5228
2020-07-04 22:25:34aa85739ecb1af7b6d36a5c45ecac7f1fVirustotal results 45 / 73 (61.64%) 64.233.189.188:443
2020-07-04 22:25:34aa85739ecb1af7b6d36a5c45ecac7f1fVirustotal results 45 / 73 (61.64%) 64.233.177.188:5228
2020-07-04 22:25:32aa85739ecb1af7b6d36a5c45ecac7f1fVirustotal results 45 / 73 (61.64%) 64.233.164.188:5228
2020-07-04 10:17:0278d1c03dc95ea6a922f337ac26cf038bn/a74.125.205.188:5228
2020-07-04 10:17:0278d1c03dc95ea6a922f337ac26cf038bn/a142.250.10.188:5228
2020-07-04 10:17:0278d1c03dc95ea6a922f337ac26cf038bn/a173.194.73.95:443
2020-07-04 10:17:0278d1c03dc95ea6a922f337ac26cf038bn/a173.194.222.188:5228
2020-07-04 10:17:0278d1c03dc95ea6a922f337ac26cf038bn/a74.125.28.188:443
2020-07-04 10:08:0172442ec5821cdba9b1532da8737cf266Virustotal results 43 / 69 (62.32%) 108.177.14.188:5228
2020-07-04 10:08:0172442ec5821cdba9b1532da8737cf266Virustotal results 43 / 69 (62.32%) 64.233.162.188:5228
2020-07-04 10:08:0172442ec5821cdba9b1532da8737cf266Virustotal results 43 / 69 (62.32%) 173.194.73.95:443
2020-07-04 10:08:0072442ec5821cdba9b1532da8737cf266Virustotal results 43 / 69 (62.32%) 74.125.28.188:443
2020-07-04 10:08:0072442ec5821cdba9b1532da8737cf266Virustotal results 43 / 69 (62.32%) 142.250.101.188:443
2020-07-03 15:11:03d7333fc36b17b96a0a09b5b616466604Virustotal results 48 / 73 (65.75%) 74.125.28.188:443
2020-07-03 15:11:03d7333fc36b17b96a0a09b5b616466604Virustotal results 48 / 73 (65.75%) 64.233.162.188:5228
2020-07-03 15:11:03d7333fc36b17b96a0a09b5b616466604Virustotal results 48 / 73 (65.75%) 64.233.165.95:443
2020-07-03 12:38:27c27f104e6575d1b551ded5e88d93cb30Virustotal results 46 / 73 (63.01%) 173.194.73.188:5228
2020-07-03 12:38:26c27f104e6575d1b551ded5e88d93cb30Virustotal results 46 / 73 (63.01%) 142.250.10.188:5228
2020-07-03 12:38:26c27f104e6575d1b551ded5e88d93cb30Virustotal results 46 / 73 (63.01%) 173.194.222.188:5228
2020-07-03 12:38:26c27f104e6575d1b551ded5e88d93cb30Virustotal results 46 / 73 (63.01%) 173.194.73.95:443
2020-07-03 12:24:57c252698643c12ba4c4d7324e730806cdVirustotal results 50 / 73 (68.49%) 173.194.220.95:443
2020-07-03 12:24:56c252698643c12ba4c4d7324e730806cdVirustotal results 50 / 73 (68.49%) 74.125.28.188:443
2020-07-03 12:24:56c252698643c12ba4c4d7324e730806cdVirustotal results 50 / 73 (68.49%) 108.177.14.188:5228
2020-07-03 12:24:55c252698643c12ba4c4d7324e730806cdVirustotal results 50 / 73 (68.49%) 142.250.10.188:5228
2020-07-03 12:24:55c252698643c12ba4c4d7324e730806cdVirustotal results 50 / 73 (68.49%) 64.233.189.188:443
2020-07-03 07:07:53bbaef49ef5bb882ae792fc493d857610Virustotal results 48 / 71 (67.61%) 142.250.10.188:5228
2020-07-03 07:07:52bbaef49ef5bb882ae792fc493d857610Virustotal results 48 / 71 (67.61%) 108.177.14.188:5228
2020-07-03 07:07:52bbaef49ef5bb882ae792fc493d857610Virustotal results 48 / 71 (67.61%) 173.194.223.188:443
2020-07-03 07:07:52bbaef49ef5bb882ae792fc493d857610Virustotal results 48 / 71 (67.61%) 173.194.73.95:443
2020-07-03 06:50:03bbcfc2e81282b25760d33f889199a9e7Virustotal results 55 / 73 (75.34%) 108.177.14.188:5228
2020-07-03 01:28:16b51185a488c963747eb4f3c78b798c5fVirustotal results 38 / 73 (52.05%) 142.250.101.188:443
2020-07-03 01:28:15b51185a488c963747eb4f3c78b798c5fVirustotal results 38 / 73 (52.05%) 64.233.164.188:5228
2020-07-02 23:55:05b3ad65faeafacea5d2731c09f4f2f4ceVirustotal results 39 / 72 (54.17%) 108.177.14.188:5228
2020-07-02 23:55:05b3ad65faeafacea5d2731c09f4f2f4ceVirustotal results 39 / 72 (54.17%) 209.85.233.95:443
2020-07-02 23:55:05b3ad65faeafacea5d2731c09f4f2f4ceVirustotal results 39 / 72 (54.17%) 64.233.189.188:443
2020-07-02 23:55:04b3ad65faeafacea5d2731c09f4f2f4ceVirustotal results 39 / 72 (54.17%) 173.194.223.188:443
2020-07-02 18:41:3499d883d5f2b6cddfa4c94ed20c02c46bVirustotal results 37 / 73 (50.68%) 173.194.73.188:5228
2020-07-02 18:41:3499d883d5f2b6cddfa4c94ed20c02c46bVirustotal results 37 / 73 (50.68%) 173.194.220.188:5228
2020-07-02 18:41:3399d883d5f2b6cddfa4c94ed20c02c46bVirustotal results 37 / 73 (50.68%) 142.250.96.188:5228
2020-07-02 18:41:3399d883d5f2b6cddfa4c94ed20c02c46bVirustotal results 37 / 73 (50.68%) 142.250.10.188:5228
2020-07-02 06:53:07a8ceedc4e7e79da06fdb4e7ba8d62140n/a209.85.146.188:5228
2020-07-02 06:53:07a8ceedc4e7e79da06fdb4e7ba8d62140n/a64.233.162.188:5228
2020-07-02 06:53:07a8ceedc4e7e79da06fdb4e7ba8d62140n/a64.233.164.188:5228
2020-07-02 04:19:38a76d9276d0ef9c84efc00cb6d9f7d718Virustotal results 46 / 73 (63.01%) 64.233.161.188:5228
2020-07-01 21:05:01870d3c832ff4490f357041c6058b9475Virustotal results 42 / 72 (58.33%) 173.194.222.95:443
2020-07-01 21:05:01870d3c832ff4490f357041c6058b9475Virustotal results 42 / 72 (58.33%) 142.250.96.188:5228
2020-07-01 21:05:01870d3c832ff4490f357041c6058b9475Virustotal results 42 / 72 (58.33%) 64.233.177.188:5228
2020-07-01 21:05:01870d3c832ff4490f357041c6058b9475Virustotal results 42 / 72 (58.33%) 173.194.223.188:443
2020-07-01 21:05:01870d3c832ff4490f357041c6058b9475Virustotal results 42 / 72 (58.33%) 64.233.162.188:5228
2020-07-01 21:05:00870d3c832ff4490f357041c6058b9475Virustotal results 42 / 72 (58.33%) 142.250.101.188:443
2020-07-01 17:38:588f495a4e18c762b17b88c90a26dd390dVirustotal results 40 / 72 (55.56%) 142.250.10.188:5228
2020-07-01 17:38:578f495a4e18c762b17b88c90a26dd390dVirustotal results 40 / 72 (55.56%) 209.85.146.188:5228
2020-07-01 17:38:578f495a4e18c762b17b88c90a26dd390dVirustotal results 40 / 72 (55.56%) 173.194.73.95:443
2020-07-01 17:38:578f495a4e18c762b17b88c90a26dd390dVirustotal results 40 / 72 (55.56%) 64.233.162.188:5228
2020-07-01 17:29:2489ab196f26d3d0cd79b6b41824f404aaVirustotal results 44 / 72 (61.11%) 64.233.163.188:5228
2020-07-01 17:29:2489ab196f26d3d0cd79b6b41824f404aaVirustotal results 44 / 72 (61.11%) 74.125.28.188:443
2020-07-01 17:29:2489ab196f26d3d0cd79b6b41824f404aaVirustotal results 44 / 72 (61.11%) 142.250.96.188:5228
2020-07-01 13:10:5714b9da694542b86fc1eb9d058eb9e307Virustotal results 37 / 58 (63.79%) 74.125.28.188:443
2020-07-01 13:10:5614b9da694542b86fc1eb9d058eb9e307Virustotal results 37 / 58 (63.79%) 64.233.164.188:5228
2020-07-01 13:10:5614b9da694542b86fc1eb9d058eb9e307Virustotal results 37 / 58 (63.79%) 64.233.165.95:443
2020-07-01 13:10:5614b9da694542b86fc1eb9d058eb9e307Virustotal results 37 / 58 (63.79%) 64.233.177.188:5228
2020-07-01 04:13:0606711b56d5c57076ac2ecb990f0b6845Virustotal results 52 / 73 (71.23%) 64.233.189.188:443
2020-07-01 04:13:0506711b56d5c57076ac2ecb990f0b6845Virustotal results 52 / 73 (71.23%) 74.125.28.188:443
2020-07-01 04:13:0506711b56d5c57076ac2ecb990f0b6845Virustotal results 52 / 73 (71.23%) 142.250.101.188:443
2020-07-01 04:13:0506711b56d5c57076ac2ecb990f0b6845Virustotal results 52 / 73 (71.23%) 173.194.73.95:443
2020-07-01 04:13:0506711b56d5c57076ac2ecb990f0b6845Virustotal results 52 / 73 (71.23%) 173.194.223.188:443
2020-07-01 04:13:0506711b56d5c57076ac2ecb990f0b6845Virustotal results 52 / 73 (71.23%) 142.250.96.188:5228
2020-07-01 04:13:0506711b56d5c57076ac2ecb990f0b6845Virustotal results 52 / 73 (71.23%) 142.250.10.188:5228
2020-07-01 04:13:0406711b56d5c57076ac2ecb990f0b6845Virustotal results 52 / 73 (71.23%) 64.233.162.188:5228
2020-07-01 04:13:0406711b56d5c57076ac2ecb990f0b6845Virustotal results 52 / 73 (71.23%) 209.85.146.188:5228
2020-07-01 04:13:0406711b56d5c57076ac2ecb990f0b6845Virustotal results 52 / 73 (71.23%) 173.194.221.188:5228
2020-07-01 04:13:0406711b56d5c57076ac2ecb990f0b6845Virustotal results 52 / 73 (71.23%) 64.233.177.188:5228
2020-06-30 23:00:2700c8c5175eeb1048ab05f72796126818Virustotal results 54 / 71 (76.06%) 173.194.220.95:443
2020-06-30 23:00:2600c8c5175eeb1048ab05f72796126818Virustotal results 54 / 71 (76.06%) 64.233.177.188:5228
2020-06-30 23:00:2600c8c5175eeb1048ab05f72796126818Virustotal results 54 / 71 (76.06%) 64.233.162.188:5228
2020-06-30 23:00:2600c8c5175eeb1048ab05f72796126818Virustotal results 54 / 71 (76.06%) 142.250.96.188:5228
2020-06-30 20:42:4050c1f1bfcc4edb0f54594210d5650ba6Virustotal results 39 / 73 (53.42%) 64.233.164.188:5228
2020-06-30 20:42:3950c1f1bfcc4edb0f54594210d5650ba6Virustotal results 39 / 73 (53.42%) 209.85.146.188:5228

# of entries: 100 (max: 100)