JA3 Fingerprints
You can find further information about the JA3 fingerprint dff8a0aa1c904aaea76c5bf624e88333, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | dff8a0aa1c904aaea76c5bf624e88333 |
|---|---|
| First seen: | 2018-03-18 09:41:15 UTC |
| Last seen: | 2020-10-27 09:50:24 UTC |
| Status: | Blacklisted |
| Malware samples: | 678 |
| Destination IPs: | 17 |
| Malware: | Tofsee  |
| Listing date: | 2020-01-09 14:27:20 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2020-10-27 09:50:24 | bf286601fae0a332024b19cc5d73fd20 |  42 / 62 (67.74%)
| 69.171.250.34:443 |
| 2020-10-27 09:50:24 | bf286601fae0a332024b19cc5d73fd20 | 42 / 62 (67.74%)
| 69.171.250.34:443 |
| 2020-10-26 05:36:35 | b843c3f02573103d11fa3f27b301eca1 | n/a | 69.171.250.34:443 |
| 2020-10-26 05:36:35 | b843c3f02573103d11fa3f27b301eca1 | n/a | 69.171.250.34:443 |
| 2020-10-25 22:55:10 | 9708df839d349218b41bf0232eb35c0f | 51 / 70 (72.86%)
| 69.171.250.34:443 |
| 2020-10-25 22:55:10 | 9708df839d349218b41bf0232eb35c0f | 51 / 70 (72.86%)
| 69.171.250.34:443 |
| 2020-10-25 22:20:57 | 859d7f3b36bba74f209c6452518572cd | n/a | 69.171.250.34:443 |
| 2020-10-25 22:20:57 | 859d7f3b36bba74f209c6452518572cd | n/a | 69.171.250.34:443 |
| 2020-10-25 22:00:48 | 7d9e8367c683735bb52a10a7de258baa | n/a | 69.171.250.34:443 |
| 2020-10-25 22:00:48 | 7d9e8367c683735bb52a10a7de258baa | n/a | 69.171.250.34:443 |
| 2020-10-25 20:28:37 | 539cd443a98e3c8649164e6ae8f037ad | n/a | 69.171.250.34:443 |
| 2020-10-25 20:28:37 | 539cd443a98e3c8649164e6ae8f037ad | n/a | 69.171.250.34:443 |
| 2020-10-25 14:06:49 | ad919090ecd88f745d9c40460d7c3d1f | n/a | 69.171.250.34:443 |
| 2020-10-25 14:06:49 | ad919090ecd88f745d9c40460d7c3d1f | n/a | 69.171.250.34:443 |
| 2020-10-25 00:05:24 | 8bd06c87d780a175d505065a4cf83f76 | n/a | 69.171.250.34:443 |
| 2020-10-25 00:05:24 | 8bd06c87d780a175d505065a4cf83f76 | n/a | 69.171.250.34:443 |
| 2020-10-24 23:54:50 | 89b9eb7fe0ce2028b3e39a0d7f6cb7cb | n/a | 69.171.250.34:443 |
| 2020-10-24 23:54:50 | 89b9eb7fe0ce2028b3e39a0d7f6cb7cb | n/a | 69.171.250.34:443 |
| 2020-10-24 19:48:51 | 2dae1502cd919dad14dd7933fe836922 | n/a | 69.171.250.34:443 |
| 2020-10-24 19:48:51 | 2dae1502cd919dad14dd7933fe836922 | n/a | 69.171.250.34:443 |
| 2020-10-24 12:22:45 | b73add72b2e157b120b6f6462123a926 | 43 / 71 (60.56%)
| 69.171.250.34:443 |
| 2020-10-24 12:22:45 | b73add72b2e157b120b6f6462123a926 | 43 / 71 (60.56%)
| 69.171.250.34:443 |
| 2020-10-24 07:56:48 | aeb0d6b1099fa17d0226665045157f1f | 47 / 62 (75.81%)
| 69.171.250.34:443 |
| 2020-10-24 07:56:48 | aeb0d6b1099fa17d0226665045157f1f | 47 / 62 (75.81%)
| 69.171.250.34:443 |
| 2020-10-23 22:01:39 | 9ea75512d50807ddb2f7cf65ce1f44d1 | n/a | 69.171.250.34:443 |
| 2020-10-23 22:01:39 | 9ea75512d50807ddb2f7cf65ce1f44d1 | n/a | 69.171.250.34:443 |
| 2020-10-23 21:33:20 | 8b229274260396a4270883be7b72b352 | n/a | 69.171.250.34:443 |
| 2020-10-23 21:33:20 | 8b229274260396a4270883be7b72b352 | n/a | 69.171.250.34:443 |
| 2020-10-23 21:27:26 | 8a979ae312b67ccbc284588e39e7bbc7 | n/a | 69.171.250.34:443 |
| 2020-10-23 21:27:26 | 8a979ae312b67ccbc284588e39e7bbc7 | n/a | 69.171.250.34:443 |
| 2020-10-23 20:41:26 | 6bd342a86c98caaad5d9d2081d987a7a | n/a | 69.171.250.34:443 |
| 2020-10-23 20:41:26 | 6bd342a86c98caaad5d9d2081d987a7a | n/a | 69.171.250.34:443 |
| 2020-10-23 20:29:06 | 63f714133147e7f08b76a34f77f21471 | n/a | 69.171.250.34:443 |
| 2020-10-23 20:29:06 | 63f714133147e7f08b76a34f77f21471 | n/a | 69.171.250.34:443 |
| 2020-10-23 19:20:14 | 5a161856d8a472bee3de7ca256a733d0 | 44 / 61 (72.13%)
| 69.171.250.34:443 |
| 2020-10-23 19:20:14 | 5a161856d8a472bee3de7ca256a733d0 | 44 / 61 (72.13%)
| 69.171.250.34:443 |
| 2020-10-22 11:59:13 | cfcd4edd2a5c3212a649c90e8c28108f | 38 / 69 (55.07%)
| 69.171.250.34:443 |
| 2020-10-22 11:59:13 | cfcd4edd2a5c3212a649c90e8c28108f | 38 / 69 (55.07%)
| 69.171.250.34:443 |
| 2020-10-21 12:40:07 | e767f4a18f1fd62795b7657c5af25b94 | 45 / 69 (65.22%)
| 69.171.250.34:443 |
| 2020-10-21 12:40:07 | e767f4a18f1fd62795b7657c5af25b94 | 45 / 69 (65.22%)
| 69.171.250.34:443 |
| 2020-10-21 10:38:37 | cf1f24fb8868b9a2aefa040f6372110a | n/a | 69.171.250.34:443 |
| 2020-10-21 10:38:37 | cf1f24fb8868b9a2aefa040f6372110a | n/a | 69.171.250.34:443 |
| 2020-10-21 08:09:37 | ac4cd39c271ea76c7cfcc5c4ca2f6aeb | 49 / 71 (69.01%)
| 69.171.250.34:443 |
| 2020-10-21 08:09:37 | ac4cd39c271ea76c7cfcc5c4ca2f6aeb | 49 / 71 (69.01%)
| 69.171.250.34:443 |
| 2020-10-21 05:00:04 | 5959fb4fdac381625895c71b6aa82354 | 52 / 71 (73.24%)
| 69.171.250.34:443 |
| 2020-10-21 05:00:04 | 5959fb4fdac381625895c71b6aa82354 | 52 / 71 (73.24%)
| 69.171.250.34:443 |
| 2020-10-20 20:27:04 | 296c19e924a55e9c543704a54b83bb83 | n/a | 69.171.250.34:443 |
| 2020-10-20 20:27:04 | 296c19e924a55e9c543704a54b83bb83 | n/a | 69.171.250.34:443 |
| 2020-10-20 12:07:07 | d83b97357d25de17ce7753c358a6ad84 | 50 / 69 (72.46%)
| 69.171.250.34:443 |
| 2020-10-20 12:07:07 | d83b97357d25de17ce7753c358a6ad84 | 50 / 69 (72.46%)
| 69.171.250.34:443 |
| 2020-10-20 09:31:46 | cf58effcb1d31dfa9e075ccebc18b889 | 41 / 68 (60.29%)
| 69.171.250.34:443 |
| 2020-10-20 09:31:46 | cf58effcb1d31dfa9e075ccebc18b889 | 41 / 68 (60.29%)
| 69.171.250.34:443 |
| 2020-10-20 01:10:07 | 6de9f7d281407ea5506c5220d9869a6c | 48 / 68 (70.59%)
| 69.171.250.34:443 |
| 2020-10-20 01:10:07 | 6de9f7d281407ea5506c5220d9869a6c | 48 / 68 (70.59%)
| 69.171.250.34:443 |
| 2020-10-20 00:09:58 | 5e8cdcd0c462df5d08c29a92452e3df8 | 50 / 70 (71.43%)
| 69.171.250.34:443 |
| 2020-10-20 00:09:58 | 5e8cdcd0c462df5d08c29a92452e3df8 | 50 / 70 (71.43%)
| 69.171.250.34:443 |
| 2020-10-19 21:55:16 | 3ddc7e243aa3c841a6ad02b9a7cd8249 | 56 / 69 (81.16%)
| 69.171.250.34:443 |
| 2020-10-19 21:55:16 | 3ddc7e243aa3c841a6ad02b9a7cd8249 | 56 / 69 (81.16%)
| 69.171.250.34:443 |
| 2020-10-19 19:48:01 | 13ccdcc6a707010adfb9b08fcf838df6 | 52 / 71 (73.24%)
| 69.171.250.34:443 |
| 2020-10-19 19:48:01 | 13ccdcc6a707010adfb9b08fcf838df6 | 52 / 71 (73.24%)
| 69.171.250.34:443 |
| 2020-10-19 14:21:26 | beba8fbcc297d2abdcb58fc1af743d77 | n/a | 69.171.250.34:443 |
| 2020-10-19 14:21:26 | beba8fbcc297d2abdcb58fc1af743d77 | n/a | 69.171.250.34:443 |
| 2020-10-19 09:58:40 | bb7325a7a8d0e4f6fea479a7e3543477 | 55 / 70 (78.57%)
| 69.171.250.34:443 |
| 2020-10-19 09:58:40 | bb7325a7a8d0e4f6fea479a7e3543477 | 55 / 70 (78.57%)
| 69.171.250.34:443 |
| 2020-10-19 07:08:02 | b961a1b4d8090f242ebd68718177178b | n/a | 69.171.250.34:443 |
| 2020-10-19 07:08:02 | b961a1b4d8090f242ebd68718177178b | n/a | 69.171.250.34:443 |
| 2020-10-18 21:07:43 | ad8adf57cc6e40a4dcf24455037abd94 | n/a | 69.171.250.34:443 |
| 2020-10-18 21:07:43 | ad8adf57cc6e40a4dcf24455037abd94 | n/a | 69.171.250.34:443 |
| 2020-10-18 20:54:40 | acc980a35efcb5dddce6d71c02138db9 | n/a | 69.171.250.34:443 |
| 2020-10-18 20:54:40 | acc980a35efcb5dddce6d71c02138db9 | n/a | 69.171.250.34:443 |
| 2020-10-18 20:00:09 | 861c576e20a6b2015515d671a97367f4 | n/a | 69.171.250.34:443 |
| 2020-10-18 20:00:09 | 861c576e20a6b2015515d671a97367f4 | n/a | 69.171.250.34:443 |
| 2020-10-18 19:01:36 | 3d559fcd37dc542821567d3fd20d7ab0 | n/a | 69.171.250.34:443 |
| 2020-10-18 19:01:36 | 3d559fcd37dc542821567d3fd20d7ab0 | n/a | 69.171.250.34:443 |
| 2020-10-18 18:44:59 | 39d0b8df66305e95e85406b03e6ea9bc | n/a | 69.171.250.34:443 |
| 2020-10-18 18:44:59 | 39d0b8df66305e95e85406b03e6ea9bc | n/a | 69.171.250.34:443 |
| 2020-10-18 18:30:35 | 1e9625c661773864a239b572b0f02d24 | n/a | 69.171.250.34:443 |
| 2020-10-18 18:30:35 | 1e9625c661773864a239b572b0f02d24 | n/a | 69.171.250.34:443 |
| 2020-10-18 18:22:40 | 1f364d49c07faaf123b15d0f08890f6a | 37 / 71 (52.11%)
| 69.171.250.34:443 |
| 2020-10-18 18:22:40 | 1f364d49c07faaf123b15d0f08890f6a | 37 / 71 (52.11%)
| 69.171.250.34:443 |
| 2020-10-17 20:55:44 | 2bf2fda10408f9ddb9e545ffdca8b888 | n/a | 69.171.250.34:443 |
| 2020-10-17 20:55:44 | 2bf2fda10408f9ddb9e545ffdca8b888 | n/a | 69.171.250.34:443 |
| 2020-10-17 19:23:37 | 145e3ae4ab28997b7f279676aeb082ee | n/a | 69.171.250.34:443 |
| 2020-10-17 19:23:37 | 145e3ae4ab28997b7f279676aeb082ee | n/a | 69.171.250.34:443 |
| 2020-10-16 22:14:22 | 73d495281706255ddd9fa46cd60a2df8 | 51 / 71 (71.83%)
| 69.171.250.34:443 |
| 2020-10-16 22:14:22 | 73d495281706255ddd9fa46cd60a2df8 | 51 / 71 (71.83%)
| 69.171.250.34:443 |
| 2020-10-16 21:53:50 | 5aa11909d441ebbff89fa17362922680 | 55 / 70 (78.57%)
| 69.171.250.34:443 |
| 2020-10-16 21:53:50 | 5aa11909d441ebbff89fa17362922680 | 55 / 70 (78.57%)
| 69.171.250.34:443 |
| 2020-10-16 19:24:52 | 15850e0b229c9f908ca4887b2354e9fb | 58 / 70 (82.86%)
| 69.171.250.34:443 |
| 2020-10-16 19:24:52 | 15850e0b229c9f908ca4887b2354e9fb | 58 / 70 (82.86%)
| 69.171.250.34:443 |
| 2020-10-16 18:54:49 | 00125d06daeb0648694f9695b695b11e | n/a | 69.171.250.34:443 |
| 2020-10-16 18:54:49 | 00125d06daeb0648694f9695b695b11e | n/a | 69.171.250.34:443 |
| 2020-10-15 19:50:30 | 6c8dfa80a8c8d03a3effcf406278f454 | n/a | 69.171.250.34:443 |
| 2020-10-15 19:50:30 | 6c8dfa80a8c8d03a3effcf406278f454 | n/a | 69.171.250.34:443 |
| 2020-10-15 18:31:11 | 21ab5d5de6cb56818552e56c6202d363 | n/a | 69.171.250.34:443 |
| 2020-10-15 18:31:11 | 21ab5d5de6cb56818552e56c6202d363 | n/a | 69.171.250.34:443 |
| 2020-10-15 18:17:56 | 13a926b50e138c30f1c163982c4b338a | n/a | 69.171.250.34:443 |
| 2020-10-15 18:17:56 | 13a926b50e138c30f1c163982c4b338a | n/a | 69.171.250.34:443 |
| 2020-10-14 20:47:05 | 53d483c99fa31294f88dea94b3760ab1 | n/a | 69.171.250.34:443 |
| 2020-10-14 20:47:05 | 53d483c99fa31294f88dea94b3760ab1 | n/a | 69.171.250.34:443 |
# of entries: 100 (max: 100)