JA3 Fingerprints
You can find further information about the JA3 fingerprint fd80fa9c6120cdeea8520510f3c644ac, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | fd80fa9c6120cdeea8520510f3c644ac |
|---|---|
| First seen: | 2018-03-11 09:34:30 UTC |
| Last seen: | 2021-08-11 12:34:00 UTC |
| Status: | Blacklisted |
| Malware samples: | 10'042 |
| Destination IPs: | 598 |
| Malware: | Tofsee  |
| Listing date: | 2018-11-14 00:00:00 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2023-06-03 14:47:08 | 30573eb4aff70bf8bd8a1232a4f477b8 |  45 / 69 (65.22%)
| 172.67.150.157:443 |
| 2023-06-01 08:21:16 | cb1363c3d036a0c0a4a1004b33e18e9e | n/a | 163.181.92.229:443 |
| 2023-05-27 00:30:26 | 25705b717c327734400c09c83d350a90 | n/a | 163.181.92.230:443 |
| 2023-05-25 09:14:36 | 1d7804e2d720b5a6ee8f33e467bc7a32 | n/a | 47.246.48.210:443 |
| 2023-05-24 19:58:51 | 0ef4b4837bac6a4ea51804182b2857ec | 58 / 71 (81.69%)
| 163.181.92.231:443 |
| 2023-05-23 20:56:28 | a69175631a8b476f657c044566c2738c | n/a | 163.181.92.230:443 |
| 2023-05-22 06:39:24 | 052d5c88455df4088dbe8a736fbaddec | n/a | 47.246.48.209:443 |
| 2023-05-22 04:58:01 | aef891e0ab5190459c5cc9844ca25ddd | n/a | 163.181.92.225:443 |
| 2023-05-22 02:35:33 | a9a8c8070e293b0f3897f54200adf076 | n/a | 47.246.48.207:443 |
| 2023-05-22 02:35:33 | a9a8c8070e293b0f3897f54200adf076 | n/a | 47.246.48.207:443 |
| 2023-05-21 07:13:37 | fd052ac5b308bb570a38fee8d24a33ae | n/a | 3.64.163.50:443 |
| 2023-05-21 06:18:30 | f9a4f94bd472444004148a4d6e95fc34 | n/a | 188.114.96.0:443 |
| 2023-05-21 06:15:33 | fb3dad5ec0119d4d85410a402dc57c7d | n/a | 188.114.97.7:443 |
| 2023-05-19 08:50:58 | c9668f9e36188c279dcef78aa202c04a | n/a | 163.181.92.230:443 |
| 2023-05-18 03:35:07 | a89da0e319e8180517ec7b18de7925a6 | n/a | 129.146.39.65:443 |
| 2023-05-17 02:02:26 | c5e01937816655fa52a88cd0d8e251b9 | n/a | 163.181.57.208:443 |
| 2023-05-15 20:32:53 | a3744e893d622db09a9d1f22c7b2e683 | 55 / 70 (78.57%)
| 163.181.57.212:443 |
| 2023-05-14 23:55:58 | ad8d785cd68af53a6d4dbaa7aebcaeec | 60 / 71 (84.51%)
| 47.246.48.205:443 |
| 2023-05-11 02:59:45 | 2aa3da7ebe29956ec5e5670370a801f8 | n/a | 188.114.96.3:443 |
| 2023-05-10 19:17:45 | 08bfd22dd88d08758f4a0cd447670d6b | n/a | 47.246.50.224:443 |
| 2023-05-09 16:06:28 | 46fb7cafdf2dbb555201cfaaf104c1d3 | 18 / 67 (26.87%)
| 185.58.223.169:587 |
| 2023-05-08 19:55:39 | 0eadcf2f819e1e469696b90c572a854c | 61 / 70 (87.14%)
| 163.181.57.214:443 |
| 2023-05-08 12:45:03 | aa2b37ffc59774a38a558ce19c6c1564 | n/a | 47.246.23.104:443 |
| 2023-05-08 12:40:37 | aa09fc4d9a4dfc2d35591fce3923a7bb | n/a | 163.181.57.210:443 |
| 2023-05-07 15:58:39 | 06c5f62a6c358cfe2e4df12bea5a32e7 | 57 / 70 (81.43%)
| 163.181.57.207:443 |
| 2023-05-05 20:27:22 | 3fc864f92f06b974b0c31ddee104e94a | n/a | 172.67.152.176:443 |
| 2023-05-05 17:16:25 | 03fbbcbb9a98aac1dc6c2bea0c64589c | 52 / 70 (74.29%)
| 188.114.97.0:443 |
| 2023-05-05 17:16:25 | 03fbbcbb9a98aac1dc6c2bea0c64589c | 52 / 70 (74.29%)
| 104.21.72.158:443 |
| 2023-05-05 06:46:14 | c351aa48e4217019ffc4d48495b38d0d | n/a | 163.181.92.227:443 |
| 2023-05-04 22:00:47 | bd0e6ce6aeaa5d341994a6c3e5706ebf | n/a | 172.67.152.176:443 |
| 2023-05-04 14:39:32 | afc0d1baab01cbb273945d097e005dec | n/a | 188.114.97.7:443 |
| 2023-05-04 10:52:48 | 14e20591f1841c052eecf65e54e4fbfd | n/a | 188.114.96.3:443 |
| 2023-05-03 16:51:49 | 7f8363f15b2be3e10368f041281ba9a0 | n/a | 188.114.97.7:443 |
| 2023-05-03 15:01:26 | 24b73b7b1d4318335b29bf6a45e2b2aa | 45 / 69 (65.22%)
| 104.21.30.56:443 |
| 2023-05-03 14:56:23 | 08e712d803a49a35a6951041dc30d793 | 36 / 70 (51.43%)
| 188.114.97.7:443 |
| 2023-05-02 17:58:53 | 810b2914fff62597eec2f06befd2c9d4 | n/a | 104.21.30.56:443 |
| 2023-05-02 17:01:44 | 561593fe189734d4b1c7f8870c0b4e75 | 44 / 67 (65.67%)
| 172.67.150.157:443 |
| 2023-05-02 14:14:47 | b9e7154f414152c37e56a8a892c8452d | n/a | 199.59.243.223:443 |
| 2023-05-01 20:36:21 | 4a510a033ab1e0869ddb36d82687d160 | n/a | 188.114.96.3:443 |
| 2023-05-01 07:06:10 | 800a00b7397d80a8f0065878fd6d82f3 | n/a | 104.21.72.158:443 |
| 2023-05-01 02:28:32 | b4041cf8281d0d2e6dd5e6b7bbd5ab62 | n/a | 47.246.48.210:443 |
| 2023-04-30 21:57:58 | 2f81f3711f29d22b9252ac781ed3bd40 | n/a | 104.21.30.56:443 |
| 2023-04-30 20:39:23 | 03a86d17d0dcced6754c568dc15b8375 | n/a | 188.114.96.3:443 |
| 2023-04-30 17:56:28 | 834dea13dde743913f5ed90f6fbcceb7 | n/a | 104.21.30.56:443 |
| 2023-04-30 16:44:43 | c3aa3563d767d2047baf224cf84ec93f | n/a | 47.246.48.205:443 |
| 2023-04-30 12:10:22 | b9c0b30525b4d0261604b43b254a0b75 | n/a | 188.114.96.0:443 |
| 2023-04-30 09:00:44 | aafca5165eac1153a976858f683f04ca | n/a | 47.246.23.101:443 |
| 2023-04-30 07:56:49 | aa71aef140e738f333e5ab138e907773 | n/a | 47.246.23.104:443 |
| 2023-04-29 06:55:09 | a7e4c70ee6603d003005e106036d681a | n/a | 129.152.2.199:443 |
| 2023-04-29 04:26:37 | a6d5bb4e7313c84f27431e7fac7c7116 | n/a | 47.246.48.210:443 |
| 2023-04-28 17:02:44 | 94902f02cef1dee9351d746cbb558e36 | n/a | 104.21.30.56:443 |
| 2023-04-28 15:16:34 | 0557ec48852ca256ca5b3fd08561e50d | 56 / 70 (80.00%)
| 163.181.57.213:443 |
| 2023-04-27 08:15:12 | 0dca769db9f67f8895854ccf7d5f0ab2 | n/a | 163.181.57.214:443 |
| 2023-04-26 22:25:34 | 1f16a225b9a0827636b4864af97fb570 | n/a | 47.246.23.101:443 |
| 2023-04-26 00:41:01 | 2fc5fa4a8728ac2fe77c5b2140108c61 | n/a | 163.181.57.211:443 |
| 2023-04-25 12:08:36 | b6d73a5be9feb25d94262f824d5fdcd4 | n/a | 47.246.48.211:443 |
| 2023-04-24 16:10:05 | 08b2dc273d488c2345b8ff9a6bf9ba1c | n/a | 47.246.48.205:443 |
| 2023-04-24 11:54:34 | b8bf74197304ead22d413f20d165f739 | n/a | 54.241.188.167:443 |
| 2023-04-24 09:13:03 | 76389e5a5691c504aa175c002135398b | n/a | 188.114.96.3:443 |
| 2023-04-23 13:58:24 | 6b7d90168f4e1e61831473f3f94ad151 | n/a | 104.21.30.56:443 |
| 2023-04-23 07:38:35 | 075cb60ea7f11743963683999b89dc60 | n/a | 104.21.30.56:443 |
| 2023-04-23 07:10:48 | 3b7876b32152073b490ae255686fce5a | 42 / 68 (61.76%)
| 188.114.96.7:443 |
| 2023-04-23 06:59:31 | 0aabe80182c291b3655637efcfbfda98 | 52 / 70 (74.29%)
| 199.59.243.223:443 |
| 2023-04-22 00:11:15 | ab3156fe05b9fb9a092ae49e67f11c67 | n/a | 188.114.97.0:443 |
| 2023-04-21 21:55:20 | 7596110b4695e71339b45f7f4b0145a9 | n/a | 199.59.243.223:443 |
| 2023-04-20 17:37:26 | 0fee2a085ba96f61646b621e203ed08e | n/a | 163.181.57.213:443 |
| 2023-04-20 13:23:11 | 7cccbda7fbbcd18e9ee1036a8acbd696 | n/a | 199.59.243.223:443 |
| 2023-04-20 04:23:44 | c20046a690bff19c4e8bb879d58d5f8d | n/a | 163.181.57.210:443 |
| 2023-04-18 23:57:05 | a64bae88b1209635729c880c417a6154 | n/a | 163.181.56.158:443 |
| 2023-04-18 20:10:00 | 1befca12f57a30929510ed141a9682ce | n/a | 163.181.57.212:443 |
| 2023-04-17 18:22:08 | 121712cfcb01aa3a02d9d73fae1b9e7e | 19 / 70 (27.14%)
| 211.110.195.25:443 |
| 2023-04-17 18:22:08 | 121712cfcb01aa3a02d9d73fae1b9e7e | 19 / 70 (27.14%)
| 211.110.195.28:443 |
| 2023-04-17 18:22:08 | 121712cfcb01aa3a02d9d73fae1b9e7e | 19 / 70 (27.14%)
| 211.49.225.10:443 |
| 2023-04-15 20:47:35 | b484836f777234232573ba63d887f29b | n/a | 188.114.97.7:443 |
| 2023-04-15 16:38:21 | 693a024bb143d940be6cf02863fec917 | n/a | 199.59.243.223:443 |
| 2023-04-15 12:55:50 | aa8fcf4cc6e22312952109c2930e0696 | n/a | 172.67.150.157:443 |
| 2023-04-15 06:10:06 | be3bb32dd26d8f417d14a3349e867f19 | n/a | 188.114.97.7:443 |
| 2023-04-14 18:58:44 | 40d702b8b8cd7dad3661718a2998532b | n/a | 188.114.97.7:443 |
| 2023-04-14 12:03:21 | fc633619c9ed8cc023c3333edc2b97f0 | n/a | 188.114.97.3:443 |
| 2023-04-14 11:31:10 | f8bb33dce946e23290a488b2d99ee268 | n/a | 188.114.96.3:443 |
| 2023-04-14 05:11:22 | d15e0c0c6a12d5257f08b0b2856ddadb | n/a | 188.114.96.7:443 |
| 2023-04-12 23:17:08 | 9c7d4368642b9ade9239bbe1e0d4e874 | n/a | 188.114.97.7:443 |
| 2023-04-12 19:18:42 | 87cc98f659683b2fd7f15b9139772f12 | n/a | 172.67.150.157:443 |
| 2023-04-12 18:08:59 | 5110fab0f213833cb0a839c149ababf0 | 40 / 69 (57.97%)
| 188.114.97.0:443 |
| 2023-04-12 14:23:55 | accd6f3100c2b9d0a7c1c9c917892467 | n/a | 163.181.57.213:443 |
| 2023-04-11 21:28:47 | b2d2fbfadead927804dbb529e3dd1650 | n/a | 47.246.48.206:443 |
| 2023-04-11 15:54:00 | 567c4abdd9e6cd4112a1f6138de06b08 | n/a | 104.21.72.158:443 |
| 2023-04-11 00:14:24 | b30fcf22566c4fb9d2247fb174238b69 | n/a | 199.59.243.223:443 |
| 2023-04-10 23:04:59 | b18b4442a26e8d5afade4554b5da32e6 | n/a | 47.246.48.205:443 |
| 2023-04-10 04:58:16 | d5713542c9d1cb1390de6d2db90b2157 | n/a | 199.59.243.223:443 |
| 2023-04-10 04:38:29 | d3dbb57888cf6ce493bceb1b8450adc7 | n/a | 199.59.243.223:443 |
| 2023-04-09 18:39:38 | a11e538fd16f460869610fb4b04bf37a | n/a | 47.246.48.206:443 |
| 2023-04-08 13:59:44 | 1b7902fa57527d4d46fdf03e84f24856 | 37 / 69 (53.62%)
| 188.114.96.3:443 |
| 2023-04-08 13:53:15 | 63b04f8485cb2488b172b74282019e78 | 50 / 70 (71.43%)
| 10.0.16.202:50461 |
| 2023-04-08 13:53:13 | 63b04f8485cb2488b172b74282019e78 | 50 / 70 (71.43%)
| 95.181.181.87:443 |
| 2023-04-08 13:52:58 | 63b04f8485cb2488b172b74282019e78 | 50 / 70 (71.43%)
| 10.0.16.202:50456 |
| 2023-04-07 16:35:45 | 698fb25737c29ce3585a49e83d439c7c | n/a | 104.21.30.56:443 |
| 2023-04-06 19:47:46 | 243f34b30bf19a47e7c295a83be2caa6 | 36 / 70 (51.43%)
| 188.114.96.0:443 |
| 2023-04-06 03:00:29 | bce53fe614de36fca796a28b8a9b35d2 | n/a | 188.114.96.7:443 |
| 2023-04-05 19:16:32 | 42bd5464490c10cfa56be5123baae9ef | 36 / 68 (52.94%)
| 172.67.150.157:443 |
# of entries: 100 (max: 100)