JA3 Fingerprints
You can find further information about the JA3 fingerprint fd80fa9c6120cdeea8520510f3c644ac, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | fd80fa9c6120cdeea8520510f3c644ac |
|---|---|
| First seen: | 2018-03-11 09:34:30 UTC |
| Last seen: | 2021-08-11 12:34:00 UTC |
| Status: | Blacklisted |
| Malware samples: | 8'009 |
| Destination IPs: | 443 |
| Malware: | Tofsee  |
| Listing date: | 2018-11-14 00:00:00 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2022-01-15 22:13:18 | 9de2123dbec8bd2fcd8b233b076c1a08 | n/a | 104.21.72.158:443 |
| 2022-01-15 21:18:50 | 66a0f5122cc4159fa2e374200d728ddd | n/a | 172.67.152.176:443 |
| 2022-01-15 20:34:04 | 09cedba3a19e7304646d01377c3ee9b9 |  30 / 69 (43.48%)
| 172.67.152.176:443 |
| 2022-01-15 20:33:16 | 2166befe4cfd3e34a53605871a286f36 | 38 / 68 (55.88%)
| 172.67.152.176:443 |
| 2022-01-15 20:31:47 | 0eaecd65a46bd5b35b3e293f2cce9cc5 | 36 / 68 (52.94%)
| 172.67.152.176:443 |
| 2022-01-15 20:19:59 | 2d43fe0b298380e897f6cd287fac19c2 | 38 / 68 (55.88%)
| 172.67.152.176:443 |
| 2022-01-15 20:19:59 | 2d43fe0b298380e897f6cd287fac19c2 | 38 / 68 (55.88%)
| 104.21.72.158:443 |
| 2022-01-15 19:53:54 | 3d974e4c76584c743dcf3d0a9b3f2166 | 31 / 67 (46.27%)
| 172.67.152.84:443 |
| 2022-01-15 19:33:13 | 346ff897f6911fea54770d6b5b3978d9 | 34 / 68 (50.00%)
| 104.21.72.158:443 |
| 2022-01-15 03:27:08 | a5404e24a8e60cbab97903acf2c74645 | 52 / 68 (76.47%)
| 79.133.177.227:443 |
| 2022-01-14 20:19:53 | c07f51bc7e05ccd795c4ef3c5da08a7b | n/a | 104.21.72.158:443 |
| 2022-01-14 20:16:20 | c0335c6aca5cf811debc39d75f22b8c6 | n/a | 104.21.30.56:443 |
| 2022-01-14 19:51:59 | b766ecd94caf4c60f5142891eafe9292 | n/a | 172.67.152.176:443 |
| 2022-01-14 19:44:40 | b56c9034f93b90bc1a95a8fd3c574944 | n/a | 104.21.72.158:443 |
| 2022-01-14 19:05:48 | a5fcf748780807c75b5f7a8060af1cc5 | n/a | 104.21.72.158:443 |
| 2022-01-14 19:02:11 | a0795ed851e7efc5907bace6d16bd8d0 | n/a | 172.67.131.206:443 |
| 2022-01-14 18:48:47 | a1c2e3f2635252849717c63bed55d885 | n/a | 104.21.72.158:443 |
| 2022-01-14 18:29:16 | 9b13c8630447cfd42239dd9be4cc7960 | n/a | 172.67.152.176:443 |
| 2022-01-14 18:03:17 | 910d8cce46e993cb6a875d771a9e11b0 | n/a | 172.67.152.176:443 |
| 2022-01-14 17:51:01 | 8c861762ec2dc04701a70be41f6df4b0 | n/a | 172.67.152.176:443 |
| 2022-01-14 17:33:42 | 816dc7e093f479679be049f6bb8561d9 | n/a | 104.21.72.158:443 |
| 2022-01-14 17:21:53 | 7bf709c75f361a91e18683b659921074 | n/a | 172.67.222.123:443 |
| 2022-01-14 16:44:35 | 66574db9e3d52cc9e092273513c86d71 | n/a | 104.21.72.158:443 |
| 2022-01-14 16:17:49 | 5117f5e49cc9d6b7e944ac053aa99c9d | n/a | 104.21.30.56:443 |
| 2022-01-14 15:44:08 | 2472dabae8e131b8b0575f3a3866f4cd | 38 / 69 (55.07%)
| 172.67.152.176:443 |
| 2022-01-14 15:31:34 | 106c91f317fdc6772f8eb4f938983a8c | n/a | 104.21.72.158:443 |
| 2022-01-14 15:12:40 | 124d92e9ba0332ff91a775e53db835e1 | 41 / 68 (60.29%)
| 104.21.72.158:443 |
| 2022-01-14 15:00:47 | 41126d08d35348ee8a57bbac9cf5d003 | 39 / 74 (52.70%)
| 172.67.131.206:443 |
| 2022-01-14 14:01:13 | 7c4b432aad86929465617dc2dc5ccda9 | n/a | 172.67.150.157:443 |
| 2022-01-14 13:53:13 | 74cba6e40618b5f4684d9c955c407018 | n/a | 104.21.72.158:443 |
| 2022-01-14 13:26:42 | 622f738a1319fec6add1ae4004447c04 | n/a | 172.67.152.84:443 |
| 2022-01-14 12:58:57 | 49403bc9d345a3b5933a71e9694bb80f | n/a | 104.21.30.56:443 |
| 2022-01-14 12:40:54 | 3cb9884db107b3c6484fdb3730a78921 | n/a | 104.21.4.81:443 |
| 2022-01-14 06:21:20 | 28eef31ef496bdc856ad0ca88b1260be | n/a | 172.67.152.176:443 |
| 2022-01-13 22:05:47 | 0d76cf7e5bf60d9cd210203a2f0305ca | n/a | 104.21.72.158:443 |
| 2022-01-13 21:23:35 | 0f45d2839767e763e57d45aeabfa2c7b | n/a | 172.67.152.176:443 |
| 2022-01-12 00:45:26 | f5dce4f2df78109aa819668221996d4c | n/a | 172.67.152.176:443 |
| 2022-01-12 00:39:03 | e10688b7167049b6c06ef3ea1d195ceb | n/a | 172.67.152.176:443 |
| 2022-01-12 00:22:13 | e4a06e063e7f48f5c51d1bc5a18b5c82 | n/a | 104.21.72.158:443 |
| 2022-01-12 00:11:11 | ddb6981d264ccc919f2de787432042a3 | n/a | 104.21.1.195:443 |
| 2022-01-12 00:00:24 | 6e25ba3121c87a306425b9655da016c1 | n/a | 193.141.3.72:443 |
| 2022-01-11 23:43:34 | c49139649b27c6c595166e879bc41ecd | n/a | 104.21.72.158:443 |
| 2022-01-11 23:37:38 | bbcd4298871beea06d0132216a5636ec | n/a | 104.21.30.56:443 |
| 2022-01-11 22:50:00 | 75968e98e4f54967065573f3f798329f | n/a | 47.246.48.228:443 |
| 2022-01-11 22:36:23 | 5c243f5eda674a62a1f38ba3506cac08 | n/a | 104.21.72.158:443 |
| 2022-01-11 22:33:46 | 724971eeebc4fa346cd5d91cbaa8cb43 | n/a | 104.21.72.158:443 |
| 2022-01-11 22:16:13 | 5de86a023b4e8eea55c9b5b34dd1df24 | n/a | 172.67.152.176:443 |
| 2022-01-11 22:15:27 | 7ad2e7a3b319d0786779924da621ca2a | n/a | 104.21.30.56:443 |
| 2022-01-11 22:08:55 | 38da562dc432d31d0b9909932b2363c6 | n/a | 104.21.72.158:443 |
| 2022-01-11 22:05:43 | 628cf4268fff974eea42a13fac5e2167 | n/a | 104.21.30.56:443 |
| 2022-01-11 21:44:25 | 5d93581f0b59ec8858d0fb3e6f0db39e | n/a | 172.67.152.176:443 |
| 2022-01-11 21:25:11 | fffad289ca3a42754b42f133a59bd61e | n/a | 104.21.72.158:443 |
| 2022-01-11 21:07:04 | 409be9c7264d73c7ec8bd3fea438f6bb | n/a | 104.21.30.56:443 |
| 2022-01-11 21:06:57 | 8f226145b629018fa2b5e2b77abcd533 | n/a | 172.67.152.176:443 |
| 2022-01-11 20:18:32 | c0340a2bca5003c8e57a174ff7efa9d4 | n/a | 104.21.72.158:443 |
| 2022-01-11 20:17:24 | b9a746f21e8dcf430177c4ae08a65ccd | n/a | 104.21.30.56:443 |
| 2022-01-11 20:11:24 | f3f698e69629722f20e6b3cde6312ab7 | n/a | 172.67.152.176:443 |
| 2022-01-11 09:19:06 | 6df88285754ca5d96ab4d527c9f7aab3 | n/a | 104.21.72.158:443 |
| 2022-01-11 09:04:44 | 8a34e78969a77d31c7b18078d0792545 | n/a | 172.67.152.176:443 |
| 2022-01-11 08:47:28 | 9213826ce1a2d05b06b7cae05f5a4b3a | n/a | 172.67.152.176:443 |
| 2022-01-11 08:47:28 | 9213826ce1a2d05b06b7cae05f5a4b3a | n/a | 104.21.72.158:443 |
| 2022-01-11 08:37:42 | 1ea2ddcb601b9695e0c43ce4e8f3cb31 | n/a | 104.21.72.158:443 |
| 2022-01-11 08:34:39 | 553b1d1fb0ce3c0ee3ae3ef647b0b068 | n/a | 172.67.131.206:443 |
| 2022-01-11 08:34:39 | 553b1d1fb0ce3c0ee3ae3ef647b0b068 | n/a | 104.21.4.81:443 |
| 2022-01-11 08:18:36 | 1e465b2d312dff74deb8cc0d67f49cc0 | n/a | 104.21.30.56:443 |
| 2022-01-11 08:05:32 | 92c69c3e8e915a2d06adce10996a878b | n/a | 172.67.150.157:443 |
| 2022-01-11 07:53:47 | 88bf1c2ff4935fdee24501bc2355feef | n/a | 172.67.150.157:443 |
| 2022-01-11 07:49:40 | 2679c6d58f4a84a60ca548a17f7e33a3 | n/a | 172.67.131.206:443 |
| 2022-01-11 07:35:37 | 75ae38d61e0cb65545ee77bd91a1f7e0 | n/a | 172.67.152.176:443 |
| 2022-01-11 07:29:57 | 1f1eb85d7eaf9d1eb14b659f249dd7a0 | n/a | 104.21.72.158:443 |
| 2022-01-11 07:07:23 | 476371f8dd36f693e5c9af75da119be1 | n/a | 104.21.12.54:443 |
| 2022-01-11 06:31:40 | 29a6064275f9397e82ff1654906a69e2 | n/a | 172.67.152.176:443 |
| 2022-01-11 06:24:02 | a44370a07dffdc3e430e037d1870b230 | n/a | 104.21.12.54:443 |
| 2022-01-11 06:24:02 | a44370a07dffdc3e430e037d1870b230 | n/a | 172.67.193.175:443 |
| 2022-01-11 06:13:18 | 054249bbfcb3c9155acab3278c57eb52 | n/a | 104.21.1.195:443 |
| 2022-01-11 06:02:00 | 22fc3dfbc9bc6c7e5795f5f2114f34eb | n/a | 172.67.150.157:443 |
| 2022-01-10 21:12:58 | 01f35121aaf89f288496cf69f56dbc82 | 52 / 68 (76.47%)
| 47.246.48.228:443 |
| 2022-01-10 09:15:55 | e272d09a97862026cfa71d6fba85a640 | n/a | 104.21.70.96:443 |
| 2022-01-10 09:12:51 | eadc1fa5c9606376cbe92de433c9987b | n/a | 104.21.72.158:443 |
| 2022-01-10 08:16:24 | ec329171b14410505062b0f8c7118a33 | n/a | 104.21.30.56:443 |
| 2022-01-10 08:12:13 | fa80899845c7120dacdc8ebadf507620 | n/a | 172.67.152.176:443 |
| 2022-01-10 07:35:20 | d2d097499558006f12f86aad840d716a | n/a | 172.67.152.176:443 |
| 2022-01-09 19:42:12 | bd55f6ff5e006222eb354953879274d1 | n/a | 172.67.152.176:443 |
| 2022-01-09 19:37:50 | b949a03ee8724c648d39664be6a993a5 | n/a | 172.67.152.176:443 |
| 2022-01-09 19:34:04 | b2e2497af7f5f43024c4ef6ecb2af9d3 | n/a | 104.21.70.96:443 |
| 2022-01-09 19:30:41 | 99122e4232229795622eeb1c2f952469 | n/a | 104.21.72.158:443 |
| 2022-01-09 19:23:53 | ac816992beb93530e148c9cb0640ea29 | n/a | 172.67.152.176:443 |
| 2022-01-09 18:44:44 | 7bbf20a9385d93dad879679a81eac2c8 | n/a | 104.21.30.56:443 |
| 2022-01-09 18:35:50 | 7534e1aa1542fc5c81afc9a1d3744702 | n/a | 172.67.222.123:443 |
| 2022-01-09 18:23:36 | 699e63936c88a7f96b55a7a9241b5a0a | n/a | 104.21.30.56:443 |
| 2022-01-09 17:25:10 | 4472def1c4e21d1627a44e7f1a0f1fa8 | n/a | 104.21.72.158:443 |
| 2022-01-09 17:17:37 | 4a482e22fe516bb3ba45d40919f9f8d2 | 44 / 61 (72.13%)
| 104.21.72.158:443 |
| 2022-01-09 15:37:59 | c4f8a3ad0a62e2b5a7e8184b800b42ed | n/a | 172.67.222.123:443 |
| 2022-01-09 12:22:49 | acaf6f6dec9dbcf609146985479d8082 | 33 / 67 (49.25%)
| 104.21.72.158:443 |
| 2022-01-09 00:31:16 | b69e42514c73ff2c1cc5548ed027e81a | 36 / 68 (52.94%)
| 104.21.72.158:443 |
| 2022-01-08 19:10:31 | bfed56c7d191057852c97cb1b790f3b4 | n/a | 172.67.131.206:443 |
| 2022-01-08 19:02:43 | bdc81d97aa0b87c6fa73d54fead7ee6f | n/a | 172.67.222.123:443 |
| 2022-01-08 17:50:47 | 65927f7a3b7a3a14ae70ae8e4ca81e56 | n/a | 104.21.72.158:443 |
| 2022-01-08 17:00:03 | 45a98493d1665e342bc4650288f238b0 | n/a | 104.21.72.158:443 |
| 2022-01-08 17:00:02 | 20417fa77c6864cafc7cb6c46ab3243f | n/a | 172.67.150.157:443 |
# of entries: 100 (max: 100)