JA3 Fingerprints
You can find further information about the JA3 fingerprint fd80fa9c6120cdeea8520510f3c644ac, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | fd80fa9c6120cdeea8520510f3c644ac |
|---|---|
| First seen: | 2018-03-11 09:34:30 UTC |
| Last seen: | 2020-01-25 00:23:20 UTC |
| Status: | Blacklisted |
| Malware samples: | 475 |
| Destination IPs: | 60 |
| Malware: | Tofsee  |
| Listing date: | 2018-11-14 00:00:00 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2020-01-25 00:23:20 | a712407b9d33c5ccc01d7451c430b8d4 |  19 / 70 (27.14%)
| 104.28.24.59:443 |
| 2020-01-24 01:32:37 | b671bfc8a26725549beba4128965fcb6 | 17 / 73 (23.29%)
| 104.28.25.59:443 |
| 2020-01-24 01:32:37 | b671bfc8a26725549beba4128965fcb6 | 17 / 73 (23.29%)
| 104.28.24.59:443 |
| 2020-01-20 13:48:29 | b5af22daf9050705cb7b5577f1290f23 | 16 / 72 (22.22%)
| 104.28.25.59:443 |
| 2020-01-19 04:31:57 | b163df40897ed94700c5fbbf7763fba4 | 36 / 72 (50.00%)
| 104.28.24.59:443 |
| 2020-01-19 00:37:13 | b72a1488f08345671c38e85affa2fe3d | 56 / 72 (77.78%)
| 104.28.25.59:443 |
| 2020-01-18 21:25:42 | afa70ab8c9367a26bc03780f0c75bf3c | 14 / 72 (19.44%)
| 104.28.24.59:443 |
| 2020-01-17 14:58:08 | a07afd57b5c98d945b569fc3397ab340 | n/a | 104.28.25.59:443 |
| 2020-01-08 06:32:02 | a1c397b505bc391ecd3ccbef6bd5d2a5 | 40 / 52 (76.92%)
| 104.28.25.59:443 |
| 2019-12-31 18:22:44 | 7ed1d3c5cf2122431d19de5e3bbacb2b | 36 / 72 (50.00%)
| 104.28.24.59:443 |
| 2019-12-31 17:13:45 | 3a34992cda47631da23b617ab18a457e | 30 / 60 (50.00%)
| 104.28.25.59:443 |
| 2019-12-31 04:20:08 | a006d79e141aa9d9b51458938ee44499 | n/a | 104.28.25.59:443 |
| 2019-12-22 12:04:49 | e5725cd9b6963dea4012e74426e41c5e | 41 / 73 (56.16%)
| 104.28.24.59:443 |
| 2019-12-19 11:08:35 | df10153685ce2fd5ba2e373f13a63400 | 45 / 70 (64.29%)
| 104.28.25.59:443 |
| 2019-12-05 01:12:11 | 16613b3e38197b5046f2f177faa95f6a | 36 / 71 (50.70%)
| 104.28.25.59:443 |
| 2019-12-02 04:19:12 | a6494bbd4a758136f260342c7668b698 | n/a | 104.28.25.59:443 |
| 2019-11-30 01:40:56 | 78ec28fdb0c52574fe5574fed6778937 | 33 / 69 (47.83%)
| 104.28.25.59:443 |
| 2019-11-28 16:48:21 | d2b4623292e791c960583e7e9fc0dbb7 | n/a | 104.28.25.59:443 |
| 2019-11-26 12:40:46 | d0692bd232252c8aca1d8255b2441018 | n/a | 104.27.187.184:443 |
| 2019-11-24 10:29:48 | 3e6ec7422e717ae0d4f7546d81188096 | 37 / 69 (53.62%)
| 104.27.187.184:443 |
| 2019-11-21 06:41:11 | dc00ba76781669e44a29a889237ae0bc | 43 / 71 (60.56%)
| 104.27.187.184:443 |
| 2019-11-19 18:21:36 | 1876fda64db7bd695431fec05242ca5d | 40 / 69 (57.97%)
| 104.27.187.184:443 |
| 2019-11-19 08:05:27 | 04eec0a73b52180c72859f1fae27804f | 34 / 70 (48.57%)
| 104.27.186.184:443 |
| 2019-11-19 03:31:57 | d46b3bedcfe12779849a635b9b276082 | 31 / 69 (44.93%)
| 104.27.187.184:443 |
| 2019-11-16 04:18:37 | 097ec5ce5c073a7a554626c22d54cb47 | 41 / 71 (57.75%)
| 104.27.186.184:443 |
| 2019-11-15 04:29:24 | 2093739bcab0f7bcf0786d7fa6d77539 | 21 / 69 (30.43%)
| 104.27.186.184:443 |
| 2019-11-14 11:39:23 | cc72970d435ec14f6464c2360b4428ed | 42 / 70 (60.00%)
| 104.27.186.184:443 |
| 2019-11-13 23:04:50 | ddbe8f8873e3b0e20a77072f8435588d | 39 / 70 (55.71%)
| 104.27.187.184:443 |
| 2019-11-10 22:53:13 | 0fed26007c1d112ea32e79a3063fa356 | 37 / 71 (52.11%)
| 104.27.186.184:443 |
| 2019-11-10 06:36:36 | 2ffadb5a09fa64c252975bbbd88b1c75 | 37 / 71 (52.11%)
| 104.27.187.184:443 |
| 2019-11-02 17:05:13 | 2640485b3ced9319ec8c10efff0075c7 | 33 / 69 (47.83%)
| 104.27.186.184:443 |
| 2019-11-02 13:03:15 | 1dbff4d6825c8bae81f891e71b225ccb | 38 / 68 (55.88%)
| 104.27.186.184:443 |
| 2019-10-17 16:20:46 | e8738ad0caf0e9455eac1137506aa1e1 | 35 / 69 (50.72%)
| 104.27.187.184:443 |
| 2019-10-17 07:48:37 | 4f935607c9c802033a4607ee09247076 | 38 / 70 (54.29%)
| 104.27.186.184:443 |
| 2019-10-12 11:44:14 | b88ad2527e38b4847f21aa6fa41642ca | n/a | 139.99.104.198:443 |
| 2019-09-27 10:03:48 | fbe7a4bcf2338c4cf24cba2d02da78aa | 29 / 69 (42.03%)
| 104.27.186.184:443 |
| 2019-09-18 17:09:45 | a298ae78fefcb371b927b5f5c76853bd | n/a | 185.221.153.201:443 |
| 2019-09-10 10:00:50 | bf38ec6f5357a6416f57fa1690e9852d | 40 / 68 (58.82%)
| 104.27.187.184:443 |
| 2019-09-09 03:29:40 | d3e0dc2a11169395a1398ba55d2b848c | 41 / 70 (58.57%)
| 104.27.187.184:443 |
| 2019-09-08 18:14:30 | 0fc42aa441bb0f290954fc0fd119572d | n/a | 104.27.186.184:443 |
| 2019-09-08 17:37:46 | fe0e3d96233287f05b0d97e5069020aa | 28 / 70 (40.00%)
| 104.27.186.184:443 |
| 2019-08-29 04:59:59 | 742ccf084a1a6afc151d354e23b4be71 | 32 / 70 (45.71%)
| 104.27.187.184:443 |
| 2019-08-26 16:32:38 | 8658c32ac62efb9cab3b6208ace9fd62 | n/a | 87.240.129.135:443 |
| 2019-08-26 16:24:47 | 4cb964234a61935f587a19ce03ee5f4a | n/a | 87.240.129.135:443 |
| 2019-08-26 14:24:26 | 660da2beb2dfa7abf64a03cb84216221 | n/a | 87.240.129.181:443 |
| 2019-08-26 13:55:51 | 134137e7e564e7e325bbcfb66f2e8875 | n/a | 87.240.129.181:443 |
| 2019-08-26 13:15:05 | efcfdd799f6125c7d8e5967a70cbadce | n/a | 87.240.129.135:443 |
| 2019-08-26 06:38:38 | bd0ac6088b3d592aac40a27ef519aecf | n/a | 87.240.129.181:443 |
| 2019-08-26 05:54:26 | 44bed7131090fe4f2e21b743bda1d91e | n/a | 87.240.129.181:443 |
| 2019-08-26 05:25:31 | fba59b27a3145edfaa4061fb199d29a7 | n/a | 87.240.129.135:443 |
| 2019-08-26 02:49:13 | 3c3581f01efb28d7f1e71afb2d29aed9 | n/a | 87.240.129.181:443 |
| 2019-08-26 02:40:49 | 7a25b766f65b2e4eaf5519831f09189d | n/a | 87.240.129.135:443 |
| 2019-08-26 01:56:34 | 3e1fda8c9192a19980cb75ca6bbc7ccc | n/a | 87.240.129.181:443 |
| 2019-08-26 00:04:30 | 3b575ae43b1cb11501549ab2fdc85679 | n/a | 87.240.129.135:443 |
| 2019-08-25 23:42:52 | 48c046e036adcc3a7fe3ba9fd6d4ac9d | n/a | 87.240.129.135:443 |
| 2019-08-25 20:35:19 | 3c60da03b94b10eafa33ddd2b97ea387 | n/a | 87.240.129.135:443 |
| 2019-08-25 20:35:07 | f2cdf19b478c5de457f7bab9f4fc2e1b | n/a | 87.240.129.181:443 |
| 2019-08-25 20:19:02 | b28d044c0d84107c1ec85224c4e98f92 | n/a | 87.240.129.181:443 |
| 2019-08-24 04:15:33 | f7575ef1f1475f559f36f90d1626c49c | 62 / 68 (91.18%)
| 104.27.187.184:443 |
| 2019-08-22 20:16:54 | 6d978c8c98bd9e132cbc77adca4eb515 | 28 / 71 (39.44%)
| 104.27.186.184:443 |
| 2019-08-17 09:20:25 | 8b5c0bfc0778fd48ad844093c78cf0c2 | 29 / 66 (43.94%)
| 104.27.186.184:443 |
| 2019-08-16 09:10:32 | 0f9ee3afa0672dcb4f7f01027afe8133 | 31 / 66 (46.97%)
| 104.27.187.184:443 |
| 2019-08-16 09:10:32 | 0f9ee3afa0672dcb4f7f01027afe8133 | 31 / 66 (46.97%)
| 104.27.186.184:443 |
| 2019-08-10 13:43:35 | 364913d5f7db89de1fd4c84001ce210d | 22 / 66 (33.33%)
| 104.27.186.184:443 |
| 2019-08-10 13:43:35 | 364913d5f7db89de1fd4c84001ce210d | 22 / 66 (33.33%)
| 104.27.187.184:443 |
| 2019-08-10 01:23:03 | 1adf2d851a29e28788ea3ac234cad419 | 27 / 67 (40.30%)
| 104.27.186.184:443 |
| 2019-08-05 12:50:04 | b9cc10433add686ccae488692b4c2473 | 24 / 68 (35.29%)
| 104.27.187.184:443 |
| 2019-07-30 04:01:54 | 121d2825eacdef780dc38eaadbc09261 | 59 / 69 (85.51%)
| 104.27.187.184:443 |
| 2019-07-09 17:28:32 | bd88dc6d2fedec6468452602a9da1ab8 | n/a | 54.174.88.98:443 |
| 2019-05-19 03:23:04 | 6b3656c5adf8f094f252455982c7f546 | 42/73 (57.53%)
| 35.186.213.138:443 |
| 2019-04-03 08:29:10 | 296e6142d96056408775066fa1d1610f | n/a | 104.27.168.6:443 |
| 2019-04-03 07:04:58 | f39205cd04903935e3463cc5463e4074 | n/a | 104.27.169.6:443 |
| 2019-02-12 17:41:33 | 2ca992d43dc292368b9b37ce9e9cb032 | 40/71 (56.34%)
| 104.18.46.159:443 |
| 2018-11-29 13:40:25 | ebbc767e8d1540a8614e05da97a398f7 | 33/70 (47.14%)
| 104.20.208.21:443 |
| 2018-11-22 16:18:20 | a3f0d4f18f1b20f8931f07a2658edcf7 | 34/67 (50.75%)
| 104.36.193.133:443 |
| 2018-11-22 16:18:17 | a3f0d4f18f1b20f8931f07a2658edcf7 | 34/67 (50.75%)
| 104.36.192.249:443 |
| 2018-11-20 23:29:14 | 83a40a0417d7bc1addec11945d4f4acb | 36/65 (55.38%)
| 104.36.192.191:443 |
| 2018-11-20 23:29:13 | 83a40a0417d7bc1addec11945d4f4acb | 36/65 (55.38%)
| 104.36.192.215:443 |
| 2018-11-20 05:30:33 | be5155baf905961fbff0caf07902ce62 | 27/66 (40.91%)
| 104.36.194.221:443 |
| 2018-11-20 05:30:30 | be5155baf905961fbff0caf07902ce62 | 27/66 (40.91%)
| 104.36.194.225:443 |
| 2018-11-20 05:30:30 | be5155baf905961fbff0caf07902ce62 | 27/66 (40.91%)
| 104.36.195.139:443 |
| 2018-11-20 05:30:28 | be5155baf905961fbff0caf07902ce62 | 27/66 (40.91%)
| 104.36.194.138:443 |
| 2018-11-18 09:28:47 | 7fd59b6093f5554080de55353270554c | 43/68 (63.24%)
| 104.36.194.202:443 |
| 2018-11-18 09:28:45 | 7fd59b6093f5554080de55353270554c | 43/68 (63.24%)
| 104.36.192.246:443 |
| 2018-11-18 09:28:44 | 7fd59b6093f5554080de55353270554c | 43/68 (63.24%)
| 104.36.194.173:443 |
| 2018-08-02 06:13:15 | 746eb72fe4d5096d836aefce59d06590 | 38/68 (55.88%)
| 159.53.224.16:443 |
| 2018-07-29 18:56:24 | d040f181a80d68fa1c4f743f8982a0de | 28/68 (41.18%)
| 159.53.224.16:443 |
| 2018-07-28 01:26:02 | 3c5fbdb5a263876d9482d1c4adc5d204 | 12/68 (17.65%)
| 159.53.85.79:443 |
| 2018-07-28 01:26:02 | 3c5fbdb5a263876d9482d1c4adc5d204 | 12/68 (17.65%)
| 159.53.113.224:443 |
| 2018-07-24 01:04:58 | bb1ef3cfc6ed06a5467abb5ab0543566 | 29/67 (43.28%)
| 159.53.224.16:443 |
| 2018-07-20 19:40:27 | 97eb18c3777a68e1bb5306391669f27f | 43/68 (63.24%)
| 159.53.224.16:443 |
| 2018-06-28 00:12:39 | 735300e6d74aee8cd4645a72a8310e63 | 15/69 (21.74%)
| 13.81.65.66:443 |
| 2018-06-14 16:48:31 | 533d2f82043f73c0def377ebc2240b8e | 42/68 (61.76%)
| 13.81.65.66:443 |
| 2018-06-13 00:36:09 | 78a8905672e1ce08e0bde783701837c7 | 20/66 (30.30%)
| 13.93.161.37:443 |
| 2018-06-07 15:08:04 | e4dc03171de9820704f39c606a41bc16 | 35/68 (51.47%)
| 13.81.65.66:443 |
| 2018-06-07 15:08:04 | e4dc03171de9820704f39c606a41bc16 | 35/68 (51.47%)
| 131.253.61.98:443 |
| 2018-06-07 15:08:04 | e4dc03171de9820704f39c606a41bc16 | 35/68 (51.47%)
| 131.253.61.102:443 |
| 2018-06-07 15:08:04 | e4dc03171de9820704f39c606a41bc16 | 35/68 (51.47%)
| 2.16.124.231:443 |
| 2018-06-07 15:08:04 | e4dc03171de9820704f39c606a41bc16 | 35/68 (51.47%)
| 159.53.84.131:443 |
| 2018-06-07 15:08:04 | e4dc03171de9820704f39c606a41bc16 | 35/68 (51.47%)
| 159.53.62.96:443 |
# of entries: 100 (max: 100)