JA3 Fingerprints
You can find further information about the JA3 fingerprint fd80fa9c6120cdeea8520510f3c644ac, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | fd80fa9c6120cdeea8520510f3c644ac |
|---|---|
| First seen: | 2018-03-11 09:34:30 UTC |
| Last seen: | 2020-07-07 19:50:13 UTC |
| Status: | Blacklisted |
| Malware samples: | 1'354 |
| Destination IPs: | 154 |
| Malware: | Tofsee  |
| Listing date: | 2018-11-14 00:00:00 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2020-07-07 19:50:13 | b831ca769c647c5f49fb93b4242336f1 |  41 / 73 (56.16%)
| 104.28.15.61:443 |
| 2020-07-07 12:29:50 | b34b1316ff4c4b635bca3e2342034405 | 41 / 73 (56.16%)
| 172.67.131.206:443 |
| 2020-07-07 06:25:57 | aefe797b0c593057abca3b00c5cc3531 | 41 / 73 (56.16%)
| 172.67.131.206:443 |
| 2020-07-07 06:25:57 | aefe797b0c593057abca3b00c5cc3531 | 41 / 73 (56.16%)
| 104.28.14.61:443 |
| 2020-07-07 05:29:50 | acc424ef96b17e7edbd80b7e25b89ed7 | 33 / 72 (45.83%)
| 172.67.131.206:443 |
| 2020-07-07 05:29:50 | acc424ef96b17e7edbd80b7e25b89ed7 | 33 / 72 (45.83%)
| 104.28.14.61:443 |
| 2020-07-05 22:48:07 | a35c81f592645fe0d5bc2fda9f13a88d | 41 / 73 (56.16%)
| 104.28.15.61:443 |
| 2020-07-05 22:48:07 | a35c81f592645fe0d5bc2fda9f13a88d | 41 / 73 (56.16%)
| 104.28.14.61:443 |
| 2020-06-30 07:18:29 | b72b431d4a6d4c87b2cdd417ee140984 | 16 / 72 (22.22%)
| 104.24.113.88:443 |
| 2020-06-30 07:07:09 | b5da8af9281f5d6794d2d8a019163127 | 42 / 73 (57.53%)
| 104.24.112.88:443 |
| 2020-06-30 07:07:09 | b5da8af9281f5d6794d2d8a019163127 | 42 / 73 (57.53%)
| 104.24.113.88:443 |
| 2020-06-30 06:16:48 | afe75081cb71f8eec454388e43fe60b9 | 47 / 73 (64.38%)
| 104.24.112.88:443 |
| 2020-06-30 05:53:35 | b04c98edbcb123a50975664822d94fc6 | 47 / 72 (65.28%)
| 104.24.112.88:443 |
| 2020-06-30 05:40:43 | afec3da7bba1f75182fdbff8a2d5e9d9 | 39 / 72 (54.17%)
| 104.24.113.88:443 |
| 2020-06-30 05:17:03 | b58a2605ccde36bdfb442cc72ee120af | 46 / 72 (63.89%)
| 192.249.114.106:443 |
| 2020-06-30 05:17:03 | b58a2605ccde36bdfb442cc72ee120af | 46 / 72 (63.89%)
| 198.71.232.15:443 |
| 2020-06-30 05:17:03 | b58a2605ccde36bdfb442cc72ee120af | 46 / 72 (63.89%)
| 198.71.233.254:443 |
| 2020-06-30 05:17:03 | b58a2605ccde36bdfb442cc72ee120af | 46 / 72 (63.89%)
| 35.184.78.1:443 |
| 2020-06-30 05:17:03 | b58a2605ccde36bdfb442cc72ee120af | 46 / 72 (63.89%)
| 35.214.170.79:443 |
| 2020-06-30 05:17:03 | b58a2605ccde36bdfb442cc72ee120af | 46 / 72 (63.89%)
| 172.106.170.133:443 |
| 2020-06-30 05:17:03 | b58a2605ccde36bdfb442cc72ee120af | 46 / 72 (63.89%)
| 178.128.14.161:443 |
| 2020-06-30 05:17:02 | b58a2605ccde36bdfb442cc72ee120af | 46 / 72 (63.89%)
| 198.46.134.245:443 |
| 2020-06-30 05:17:02 | b58a2605ccde36bdfb442cc72ee120af | 46 / 72 (63.89%)
| 151.101.66.159:443 |
| 2020-06-29 16:01:12 | aeccf85a1961b0a1f7c1653c3203f205 | 44 / 74 (59.46%)
| 104.24.113.88:443 |
| 2020-06-29 16:01:12 | aeccf85a1961b0a1f7c1653c3203f205 | 44 / 74 (59.46%)
| 172.67.204.22:443 |
| 2020-06-29 04:20:10 | ad762207b2d557339c1793ecb4b8ff99 | 48 / 73 (65.75%)
| 172.67.204.22:443 |
| 2020-06-29 04:20:10 | ad762207b2d557339c1793ecb4b8ff99 | 48 / 73 (65.75%)
| 104.24.112.88:443 |
| 2020-06-29 03:42:29 | acfc4fdf75cc2f1f6e99fce020c820f2 | 40 / 67 (59.70%)
| 104.24.113.88:443 |
| 2020-06-29 03:42:29 | acfc4fdf75cc2f1f6e99fce020c820f2 | 40 / 67 (59.70%)
| 104.24.112.88:443 |
| 2020-06-28 12:22:28 | 26e738c0aa7a82a70d5e82ad2ec07964 | 34 / 73 (46.58%)
| 104.24.112.88:443 |
| 2020-06-28 06:16:18 | 14fc29cbed1208b2046a40d169d1122b | 35 / 72 (48.61%)
| 104.24.112.88:443 |
| 2020-06-28 06:16:17 | 14fc29cbed1208b2046a40d169d1122b | 35 / 72 (48.61%)
| 104.24.113.88:443 |
| 2020-06-28 05:01:57 | 1153703a80f740171dbbf9a87990c423 | 36 / 71 (50.70%)
| 104.24.112.88:443 |
| 2020-06-28 05:01:57 | 1153703a80f740171dbbf9a87990c423 | 36 / 71 (50.70%)
| 172.67.204.22:443 |
| 2020-06-27 21:57:28 | a125e3e2a4e2328ed0affaed78fb6b5c | 42 / 73 (57.53%)
| 104.24.113.88:443 |
| 2020-06-27 21:14:43 | ac63b500ecebab2ab5aafd5e496aae1d | 41 / 73 (56.16%)
| 172.67.131.206:443 |
| 2020-06-27 21:14:43 | ac63b500ecebab2ab5aafd5e496aae1d | 41 / 73 (56.16%)
| 104.24.112.88:443 |
| 2020-06-27 21:11:01 | a6bb73c5b2819dc6fa4c44b72b72d0d7 | 46 / 70 (65.71%)
| 104.24.112.88:443 |
| 2020-06-27 21:11:01 | a6bb73c5b2819dc6fa4c44b72b72d0d7 | 46 / 70 (65.71%)
| 104.24.113.88:443 |
| 2020-06-27 20:30:49 | abfa3d0f6bd31497e92a999ca2325859 | 38 / 72 (52.78%)
| 104.24.113.88:443 |
| 2020-06-27 20:30:49 | abfa3d0f6bd31497e92a999ca2325859 | 38 / 72 (52.78%)
| 104.24.112.88:443 |
| 2020-06-27 20:30:49 | ac8b6973fdc8a3bba4afefe2955d18f7 | 40 / 74 (54.05%)
| 172.67.204.22:443 |
| 2020-06-27 20:30:49 | ac8b6973fdc8a3bba4afefe2955d18f7 | 40 / 74 (54.05%)
| 104.24.113.88:443 |
| 2020-06-27 09:42:20 | 36919dc8d7cafb0ef089e684fefd69ff | 34 / 72 (47.22%)
| 104.24.112.88:443 |
| 2020-06-27 09:42:20 | 36919dc8d7cafb0ef089e684fefd69ff | 34 / 72 (47.22%)
| 172.67.204.22:443 |
| 2020-06-27 08:15:27 | 2efc1cf8ae77586cf9cf0893eca8d5d2 | 45 / 72 (62.50%)
| 104.28.24.59:443 |
| 2020-06-27 06:29:04 | 28e889674e7fe1e728ae24e84b4a3b77 | 19 / 71 (26.76%)
| 172.67.204.22:443 |
| 2020-06-27 06:29:04 | 28e889674e7fe1e728ae24e84b4a3b77 | 19 / 71 (26.76%)
| 104.24.112.88:443 |
| 2020-06-26 19:01:34 | 0847ca5cb2649c6e4cea28a2704e72d6 | 28 / 73 (38.36%)
| 104.24.112.88:443 |
| 2020-06-26 19:01:34 | 0847ca5cb2649c6e4cea28a2704e72d6 | 28 / 73 (38.36%)
| 172.67.204.22:443 |
| 2020-06-26 18:58:30 | 02e7211a374a9e3268d0ce668692b186 | 37 / 74 (50.00%)
| 172.67.204.22:443 |
| 2020-06-26 18:47:15 | 0a1bf994a206b28bd310585caf85a877 | 29 / 73 (39.73%)
| 172.67.204.22:443 |
| 2020-06-26 18:47:15 | 0a1bf994a206b28bd310585caf85a877 | 29 / 73 (39.73%)
| 104.24.113.88:443 |
| 2020-06-26 15:59:56 | a1e3cea453da203ff0187a04d6c6efdb | 41 / 73 (56.16%)
| 172.67.204.22:443 |
| 2020-06-26 15:59:56 | a1e3cea453da203ff0187a04d6c6efdb | 41 / 73 (56.16%)
| 104.24.113.88:443 |
| 2020-06-26 15:15:28 | a0dd9b904166df361737765ce5ce6d36 | 47 / 72 (65.28%)
| 172.67.136.89:443 |
| 2020-06-26 15:15:28 | a0dd9b904166df361737765ce5ce6d36 | 47 / 72 (65.28%)
| 104.27.166.5:443 |
| 2020-06-26 13:21:42 | 98e014e1a75d442d9e3fbc1cb861e6dd | 45 / 73 (61.64%)
| 104.24.112.88:443 |
| 2020-06-26 13:21:42 | 98e014e1a75d442d9e3fbc1cb861e6dd | 45 / 73 (61.64%)
| 172.67.204.22:443 |
| 2020-06-26 07:51:38 | 3e54d41a1a94d7dc36b87fd0c8437318 | 39 / 72 (54.17%)
| 172.67.204.22:443 |
| 2020-06-26 07:51:38 | 3e54d41a1a94d7dc36b87fd0c8437318 | 39 / 72 (54.17%)
| 104.24.113.88:443 |
| 2020-06-26 06:52:31 | 1275af66bc6ed29deb842b29649c4251 | 48 / 73 (65.75%)
| 172.67.204.22:443 |
| 2020-06-26 06:52:31 | 1275af66bc6ed29deb842b29649c4251 | 48 / 73 (65.75%)
| 104.24.113.88:443 |
| 2020-06-26 06:29:00 | 29153707db53303e05cab814e9c44bd3 | 33 / 72 (45.83%)
| 104.24.113.88:443 |
| 2020-06-26 06:26:39 | 2584c91f5b6600914286f74a3804ef74 | 41 / 74 (55.41%)
| 104.24.112.88:443 |
| 2020-06-26 06:26:39 | 2584c91f5b6600914286f74a3804ef74 | 41 / 74 (55.41%)
| 172.67.204.22:443 |
| 2020-06-25 23:55:53 | 1d8fe12b344edd6d5beb634f94b56194 | 46 / 70 (65.71%)
| 172.67.204.22:443 |
| 2020-06-25 23:55:53 | 1d8fe12b344edd6d5beb634f94b56194 | 46 / 70 (65.71%)
| 104.24.112.88:443 |
| 2020-06-25 16:56:52 | 08ef6ea833345bb26aee32eea82b3244 | 7 / 72 (9.72%)
| 104.24.113.88:443 |
| 2020-06-25 16:56:52 | 08ef6ea833345bb26aee32eea82b3244 | 7 / 72 (9.72%)
| 104.24.112.88:443 |
| 2020-06-25 16:16:32 | 0dcd083171bba67671d8d47d5131bca7 | n/a | 172.67.204.22:443 |
| 2020-06-25 14:05:54 | 834f0d820514f870a1497b30dbe3aee5 | 49 / 73 (67.12%)
| 172.67.204.22:443 |
| 2020-06-25 13:34:55 | 80ac36eb9967df51e07db1f73d3959de | 38 / 73 (52.05%)
| 172.67.204.22:443 |
| 2020-06-25 13:34:55 | 80ac36eb9967df51e07db1f73d3959de | 38 / 73 (52.05%)
| 104.24.113.88:443 |
| 2020-06-25 13:16:16 | 7f0d4468aceef7045b631fc56b4c2c76 | 34 / 73 (46.58%)
| 104.24.113.88:443 |
| 2020-06-25 13:16:16 | 7f0d4468aceef7045b631fc56b4c2c76 | 34 / 73 (46.58%)
| 172.67.204.22:443 |
| 2020-06-25 12:06:18 | 782f60758924f24557abb3b8d35ef13d | 43 / 72 (59.72%)
| 104.24.113.88:443 |
| 2020-06-25 12:06:18 | 782f60758924f24557abb3b8d35ef13d | 43 / 72 (59.72%)
| 172.67.204.22:443 |
| 2020-06-25 11:59:14 | 76471d534dfec97b01d1b87ddd5cf5ea | 44 / 72 (61.11%)
| 104.24.113.88:443 |
| 2020-06-25 11:48:42 | 75b8b598b765b9131914103cc44f2da2 | 33 / 72 (45.83%)
| 104.24.112.88:443 |
| 2020-06-25 08:45:49 | 660d6f67b8a757e54fe9ddac14ec6d00 | 46 / 74 (62.16%)
| 104.24.112.88:443 |
| 2020-06-25 08:45:49 | 660d6f67b8a757e54fe9ddac14ec6d00 | 46 / 74 (62.16%)
| 172.67.204.22:443 |
| 2020-06-25 07:25:54 | 5e97c020aadf7fcfaf05201b4912cc97 | 10 / 72 (13.89%)
| 172.67.204.22:443 |
| 2020-06-25 07:20:12 | 5cb1763645f858ce73ed1666b6fa9426 | 49 / 72 (68.06%)
| 104.24.113.88:443 |
| 2020-06-25 06:54:29 | 5ad7e1c8cf906306fcd512862ea8dfd9 | 44 / 74 (59.46%)
| 104.24.112.88:443 |
| 2020-06-25 06:54:29 | 5ad7e1c8cf906306fcd512862ea8dfd9 | 44 / 74 (59.46%)
| 172.67.204.22:443 |
| 2020-06-25 06:43:28 | 5a39f5438a6286309319b4c607686a6b | 39 / 73 (53.42%)
| 104.24.112.88:443 |
| 2020-06-25 06:43:28 | 5a39f5438a6286309319b4c607686a6b | 39 / 73 (53.42%)
| 172.67.204.22:443 |
| 2020-06-25 06:29:10 | 57d524efa237bf296789fe684d27c108 | 43 / 74 (58.11%)
| 104.24.113.88:443 |
| 2020-06-25 06:29:10 | 57d524efa237bf296789fe684d27c108 | 43 / 74 (58.11%)
| 104.24.112.88:443 |
| 2020-06-25 06:11:30 | 5778b6b7cb2222a9aca684a341d4c750 | 32 / 72 (44.44%)
| 172.67.204.22:443 |
| 2020-06-25 06:11:30 | 5778b6b7cb2222a9aca684a341d4c750 | 32 / 72 (44.44%)
| 104.24.112.88:443 |
| 2020-06-25 05:49:53 | 0569769f3d543e9f6ad6885505ad8194 | 10 / 73 (13.70%)
| 104.24.112.88:443 |
| 2020-06-25 05:49:53 | 0569769f3d543e9f6ad6885505ad8194 | 10 / 73 (13.70%)
| 172.67.204.22:443 |
| 2020-06-25 05:49:53 | 0569769f3d543e9f6ad6885505ad8194 | 10 / 73 (13.70%)
| 104.28.15.61:443 |
| 2020-06-25 05:42:09 | 2d2c712bb2556d574a2cedb30ab2db63 | 50 / 74 (67.57%)
| 172.67.204.22:443 |
| 2020-06-25 05:42:08 | 2d2c712bb2556d574a2cedb30ab2db63 | 50 / 74 (67.57%)
| 104.24.113.88:443 |
| 2020-06-25 05:42:08 | 2d2c712bb2556d574a2cedb30ab2db63 | 50 / 74 (67.57%)
| 104.24.112.88:443 |
| 2020-06-25 05:36:55 | 4234b91a13e1dbc56a9c251f726dbaac | 12 / 72 (16.67%)
| 172.67.204.22:443 |
| 2020-06-25 05:36:55 | 4234b91a13e1dbc56a9c251f726dbaac | 12 / 72 (16.67%)
| 104.24.113.88:443 |
# of entries: 100 (max: 100)