JA3 Fingerprints
You can find further information about the JA3 fingerprint fd80fa9c6120cdeea8520510f3c644ac, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | fd80fa9c6120cdeea8520510f3c644ac |
|---|---|
| First seen: | 2018-03-11 09:34:30 UTC |
| Last seen: | 2021-05-08 02:49:53 UTC |
| Status: | Blacklisted |
| Malware samples: | 4'552 |
| Destination IPs: | 340 |
| Malware: | Tofsee  |
| Listing date: | 2018-11-14 00:00:00 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2021-05-08 02:49:53 | 9423ada143858307aa28fdde2928a27f |  41 / 69 (59.42%)
| 172.67.193.175:443 |
| 2021-05-08 01:17:34 | 6a1e645cde48cc1f2907cca4e37a998d | 31 / 70 (44.29%)
| 172.67.222.98:443 |
| 2021-05-08 00:43:45 | 58dd01494ddd3319be408c2f638b58d8 | 38 / 69 (55.07%)
| 104.21.47.238:443 |
| 2021-05-08 00:06:10 | 4d572d2468dbae64c41adc4833919dec | 38 / 69 (55.07%)
| 172.67.174.126:443 |
| 2021-05-07 23:17:33 | 3954599dfa409668000e44e1c85d351b | 49 / 72 (68.06%)
| 104.21.12.54:443 |
| 2021-05-07 22:59:18 | 3866a870c87ad509fb0f8fb4e9e67b12 | 13 / 68 (19.12%)
| 104.21.55.114:443 |
| 2021-05-07 21:08:51 | 1fe9cfadc9520d710e2be46c97f123a9 | 41 / 70 (58.57%)
| 172.67.174.126:443 |
| 2021-05-07 14:24:26 | f627dffa98c33fa08872449e4711a04f | 42 / 70 (60.00%)
| 104.21.47.238:443 |
| 2021-05-07 14:02:50 | f496c645d8ee1e59da729b6015a28940 | n/a | 172.67.171.32:443 |
| 2021-05-07 13:35:48 | f1ec7b0e8e774bed2ab04ed59c8b962e | n/a | 172.67.171.32:443 |
| 2021-05-07 11:56:51 | e5bf3794980c82b1101226989aa3dbfe | n/a | 104.21.55.114:443 |
| 2021-05-07 09:19:48 | d9e8603434e575c2d011f3f663b78018 | 13 / 69 (18.84%)
| 104.21.55.114:443 |
| 2021-05-07 09:01:25 | d818c2ef4466baf709815237e25dda80 | n/a | 172.67.171.32:443 |
| 2021-05-07 05:33:04 | c0417551b77db1487235f1e6db045aea | n/a | 104.21.55.114:443 |
| 2021-05-07 05:26:27 | bed73f1661559a112ab4b06ec1145013 | 44 / 70 (62.86%)
| 172.67.193.175:443 |
| 2021-05-07 03:06:01 | 9340f8911ea4e724b63b24ef6b4b5bfa | 13 / 67 (19.40%)
| 172.67.171.32:443 |
| 2021-05-07 02:33:56 | 8763fe97ad794ee0f3eea486a124f476 | 15 / 70 (21.43%)
| 172.67.171.32:443 |
| 2021-05-07 01:21:07 | 6c3ba47ac0a504b6b23d65e1c24f192b | 33 / 70 (47.14%)
| 104.21.12.54:443 |
| 2021-05-06 23:38:57 | 40cdd90b044ca0635b7df677d81721d7 | 39 / 70 (55.71%)
| 104.21.12.54:443 |
| 2021-05-06 23:38:57 | 40cdd90b044ca0635b7df677d81721d7 | 39 / 70 (55.71%)
| 172.67.193.175:443 |
| 2021-05-06 21:20:27 | 54414fc6a5b4b3dbb7173af5591cd5a9 | 41 / 67 (61.19%)
| 104.21.4.81:443 |
| 2021-05-06 20:35:08 | 44a7ae60b13c1ca48603e05f6670bed3 | 4 / 69 (5.80%)
| 104.21.55.114:443 |
| 2021-05-06 19:37:07 | 4c8dbfdbc2a3a6f6e7a2a68c86483215 | n/a | 104.21.55.114:443 |
| 2021-05-06 14:48:17 | bd4e56d9ead6b027a72489528279f2e8 | 13 / 69 (18.84%)
| 172.67.171.32:443 |
| 2021-05-06 09:42:13 | b0e5406a8c17018d5da481e53589f7ce | 11 / 70 (15.71%)
| 172.67.171.32:443 |
| 2021-05-06 03:46:17 | 7b3d503ff4350b750bb6394fc9b3ce23 | n/a | 172.67.171.32:443 |
| 2021-05-06 03:25:01 | 5a1ea4723c91ba83a4a18dfda7dc0c93 | n/a | 104.21.55.114:443 |
| 2021-05-06 02:02:12 | 44554dbf5155134221645d9f49b428cd | 45 / 69 (65.22%)
| 104.21.4.81:443 |
| 2021-05-06 01:59:12 | 516ad2f5a91bafb5debfa3cec49bd7aa | 39 / 69 (56.52%)
| 172.67.174.126:443 |
| 2021-05-06 01:52:46 | 3e4c3e8ff8d1915b8e933d8716d9f2bc | 42 / 69 (60.87%)
| 104.21.4.81:443 |
| 2021-05-06 00:50:06 | 2486779ccbed2c93fd149a815005f960 | 41 / 68 (60.29%)
| 104.21.12.54:443 |
| 2021-05-05 22:59:38 | 1250088d9165d7456382275c7f47ba7a | 22 / 69 (31.88%)
| 172.67.171.32:443 |
| 2021-05-05 22:55:15 | 1d6caf0d77fb9d74e2db2315e07bf0a8 | 39 / 71 (54.93%)
| 172.67.174.126:443 |
| 2021-05-05 11:28:51 | 18f16e778d91ef0cd466873b19fd8be4 | 15 / 69 (21.74%)
| 172.67.171.32:443 |
| 2021-05-05 09:31:51 | 020ba176a4926a41a411ebc869424c92 | 42 / 70 (60.00%)
| 172.67.222.98:443 |
| 2021-05-05 07:43:07 | 2c0b80d5c660be518d18719be59ba381 | n/a | 172.67.171.32:443 |
| 2021-05-05 06:08:53 | 4d032f919af66db8a3e3520a6f7f2757 | 37 / 64 (57.81%)
| 104.21.12.54:443 |
| 2021-05-05 01:19:12 | 394b23de98208b6e144074aa31c0f1a2 | n/a | 104.21.55.114:443 |
| 2021-05-04 12:47:41 | ff780acadff8dc77da676e3b66aeae2a | 45 / 70 (64.29%)
| 104.21.86.166:443 |
| 2021-05-04 11:53:36 | f944d186288f17ddfd38c69574ba783d | 48 / 70 (68.57%)
| 172.67.222.98:443 |
| 2021-05-04 07:57:57 | e0e7ddd64a6ae22e8e09a637d9b2d5d4 | n/a | 172.67.131.206:443 |
| 2021-05-04 07:13:45 | dc78fff041e2b1d440c0edf3278c1728 | n/a | 172.67.193.175:443 |
| 2021-05-04 06:59:24 | d982d18831771be09ed85738bbb23c01 | n/a | 172.67.171.32:443 |
| 2021-05-04 06:07:45 | d587b9799a5fef506b6487e766fe7b05 | n/a | 104.21.55.114:443 |
| 2021-05-03 22:47:43 | 4c91a49867541a9f5fc850c0d476be32 | n/a | 172.67.171.32:443 |
| 2021-05-03 16:01:44 | b476a5354702eafac0dbd888a7174c1d | n/a | 172.67.171.32:443 |
| 2021-05-03 15:01:38 | abe322a965505231f52b28564198e292 | n/a | 198.54.117.244:443 |
| 2021-05-03 13:14:05 | a709b9afb89a71a0127807afeefbe43c | 38 / 71 (53.52%)
| 172.67.222.98:443 |
| 2021-05-03 13:11:29 | a0b9cde89b09356c1831ca614c41b6b5 | 48 / 69 (69.57%)
| 172.67.193.175:443 |
| 2021-05-03 12:57:47 | 9a49c2e2fc6ad84641078eae3e6f72a7 | 40 / 70 (57.14%)
| 172.67.193.175:443 |
| 2021-05-03 12:40:33 | 959f942b1da18f4416c4caf2458eb137 | 49 / 71 (69.01%)
| 172.67.131.206:443 |
| 2021-05-03 00:14:59 | 64688c736e25e50fc859b6766b6ed0e9 | 28 / 70 (40.00%)
| 172.67.131.206:443 |
| 2021-05-02 22:30:20 | 3f20ebc94f30236b230bc440ddaf0c14 | n/a | 172.67.193.175:443 |
| 2021-05-02 22:30:20 | 3f20ebc94f30236b230bc440ddaf0c14 | n/a | 104.21.12.54:443 |
| 2021-05-02 21:31:44 | 263ef08c96feb34cdacec1e555b0bf23 | n/a | 104.21.10.190:443 |
| 2021-05-02 18:45:54 | 7b59cd9ef8a72c6537a3b7b37e16dd65 | n/a | 172.67.174.126:443 |
| 2021-05-01 20:26:28 | 7e7da4e8f56c93813e3e208a45f10586 | 42 / 70 (60.00%)
| 172.67.174.126:443 |
| 2021-05-01 13:57:45 | e56aa7acd20e11d46a8e4bc5e5c6a1fe | 50 / 68 (73.53%)
| 172.67.131.206:443 |
| 2021-05-01 12:16:39 | b8d66f4cc2bfb3e64e6388f117cb47a4 | 42 / 70 (60.00%)
| 104.21.12.54:443 |
| 2021-05-01 12:16:39 | b8d66f4cc2bfb3e64e6388f117cb47a4 | 42 / 70 (60.00%)
| 172.67.193.175:443 |
| 2021-05-01 09:04:58 | 534ce2c6ac787f5dd26a3b06660de603 | 35 / 69 (50.72%)
| 104.21.4.81:443 |
| 2021-05-01 09:01:29 | 594ee829bce76dbe67d6d9f2c633ed91 | 32 / 72 (44.44%)
| 198.54.117.244:443 |
| 2021-04-30 10:20:19 | e474bb6965a55a30845c0821445d6b0b | n/a | 172.67.174.126:443 |
| 2021-04-30 06:07:29 | fbf370ffcda40172e489e4cb64c3cc0c | n/a | 172.67.174.126:443 |
| 2021-04-30 05:32:21 | eafa77dfc4ef5b5165dc80f865b8b74a | n/a | 104.21.86.166:443 |
| 2021-04-30 05:24:54 | e7acaccca43eef84dc609e242f7f0ff1 | 11 / 70 (15.71%)
| 172.67.171.32:443 |
| 2021-04-30 01:54:50 | d9df6855825ba6cbc8357c652cae925d | n/a | 104.21.47.238:443 |
| 2021-04-30 00:03:51 | c90a7f91cbe0f2e3cff93e2c6a6571ea | 40 / 70 (57.14%)
| 104.21.86.166:443 |
| 2021-04-29 18:07:52 | bcb57f7efa231a9a2b265d69f6b33dab | n/a | 104.21.55.114:443 |
| 2021-04-29 14:17:52 | 89fd2152dda51a19db69c39c034b1259 | 46 / 70 (65.71%)
| 172.67.131.206:443 |
| 2021-04-29 14:17:42 | 896bd9720fd443e9534a15eb451cb8c1 | 49 / 66 (74.24%)
| 172.67.174.126:443 |
| 2021-04-29 12:02:57 | 486fe0073766bc15f30e203fb246729f | n/a | 172.67.174.126:443 |
| 2021-04-29 12:01:06 | 3087902812533eff7f072c387bb5146e | 38 / 69 (55.07%)
| 104.21.86.166:443 |
| 2021-04-29 11:06:05 | 4222c1696198d9944dbd7a60325cece2 | 40 / 70 (57.14%)
| 104.21.47.238:443 |
| 2021-04-29 09:40:18 | 224f6a997aa2b1b4bc9304062dd6908c | n/a | 172.67.131.206:443 |
| 2021-04-29 05:02:00 | f21d63e5f5e33c98bd6efa3e3b8b6a3a | 40 / 70 (57.14%)
| 172.67.174.126:443 |
| 2021-04-29 05:02:00 | f21d63e5f5e33c98bd6efa3e3b8b6a3a | 40 / 70 (57.14%)
| 104.21.47.238:443 |
| 2021-04-28 05:48:55 | 78777b3d8ac23076f569b453eedea765 | n/a | 104.21.55.114:443 |
| 2021-04-27 23:05:52 | 89ce1e4a08e138e9bc7e74063e8a50a7 | n/a | 104.21.55.114:443 |
| 2021-04-26 16:03:09 | 6d29244d5c88c3ac929ad2f09953ca4f | 24 / 70 (34.29%)
| 104.21.10.190:443 |
| 2021-04-26 15:30:12 | 1c1def6679e2ab492d6d0664a93ba4f1 | 49 / 72 (68.06%)
| 172.67.193.175:443 |
| 2021-04-26 14:40:49 | e7774c77f13997aa9ef9e43fa6a8b238 | 41 / 71 (57.75%)
| 104.21.4.81:443 |
| 2021-04-26 14:40:49 | e7774c77f13997aa9ef9e43fa6a8b238 | 41 / 71 (57.75%)
| 172.67.131.206:443 |
| 2021-04-26 14:31:57 | e4ab953208fcb9778205758725825cce | 54 / 73 (73.97%)
| 104.21.10.190:443 |
| 2021-04-26 13:22:09 | b2773ada1c0b1fcefba90ed5a7fcc184 | 39 / 69 (56.52%)
| 172.67.222.98:443 |
| 2021-04-26 12:03:30 | 4f3d27b250454ca1097e0f7b7e175495 | 40 / 66 (60.61%)
| 172.67.131.206:443 |
| 2021-04-26 08:01:35 | 5c72da4f983917abf73e7901a791b1c6 | 39 / 68 (57.35%)
| 104.21.47.238:443 |
| 2021-04-26 08:01:35 | 5c72da4f983917abf73e7901a791b1c6 | 39 / 68 (57.35%)
| 172.67.174.126:443 |
| 2021-04-26 05:59:34 | c035e84ba8d23cc989f6321eb3749f19 | 34 / 71 (47.89%)
| 104.21.86.166:443 |
| 2021-04-25 10:13:14 | 8eac16fe0acc66197f1f67259881179f | n/a | 172.67.193.175:443 |
| 2021-04-25 10:13:14 | 8eac16fe0acc66197f1f67259881179f | n/a | 104.21.12.54:443 |
| 2021-04-25 08:04:23 | 46f5e014d7a374360b4f2ca28e951945 | 35 / 70 (50.00%)
| 172.67.131.206:443 |
| 2021-04-25 07:17:35 | 2e5589565c5a9a23948733e138988638 | 43 / 69 (62.32%)
| 104.21.86.166:443 |
| 2021-04-24 13:31:30 | ffeae52dbc5d6e9c45283df3d0ffcd02 | 39 / 67 (58.21%)
| 172.67.174.126:443 |
| 2021-04-24 12:41:37 | f310a078639de07c01c07fc904e44091 | 37 / 69 (53.62%)
| 172.67.222.98:443 |
| 2021-04-23 21:00:26 | fef6cc469625b7234aae41b7fc81afc0 | 50 / 68 (73.53%)
| 104.21.4.81:443 |
| 2021-04-23 21:00:26 | fef6cc469625b7234aae41b7fc81afc0 | 50 / 68 (73.53%)
| 172.67.131.206:443 |
| 2021-04-23 18:33:20 | 9215628fbcd78541691c49656cf5164e | 37 / 70 (52.86%)
| 104.21.47.238:443 |
| 2021-04-23 18:33:20 | 9215628fbcd78541691c49656cf5164e | 37 / 70 (52.86%)
| 172.67.174.126:443 |
| 2021-04-23 17:28:13 | 63d03a540e47eb2ff2b6cb4096be357d | n/a | 104.21.86.166:443 |
# of entries: 100 (max: 100)