JA3 Fingerprints
You can find further information about the JA3 fingerprint fd80fa9c6120cdeea8520510f3c644ac, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | fd80fa9c6120cdeea8520510f3c644ac |
|---|---|
| First seen: | 2018-03-11 09:34:30 UTC |
| Last seen: | 2021-08-04 04:37:59 UTC |
| Status: | Blacklisted |
| Malware samples: | 5'237 |
| Destination IPs: | 365 |
| Malware: | Tofsee  |
| Listing date: | 2018-11-14 00:00:00 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2021-08-04 04:37:59 | 2979b15344c27252a246e0afcb79ba16 |  42 / 70 (60.00%)
| 104.21.70.96:443 |
| 2021-08-04 01:40:11 | 96903739b130173d1afcc4dde3aa8868 | 50 / 70 (71.43%)
| 172.67.222.123:443 |
| 2021-08-03 23:52:23 | 929f1bd8f0ce7d964b3b92ee1f5e2a57 | 37 / 70 (52.86%)
| 104.21.70.96:443 |
| 2021-08-03 23:07:03 | 805b0e017d292a8c59da1e1cc9effa4b | 45 / 70 (64.29%)
| 172.67.222.123:443 |
| 2021-08-03 23:00:27 | 79853c3d20544fc5d850ab4c898c8038 | 39 / 70 (55.71%)
| 104.21.47.238:443 |
| 2021-08-03 23:00:27 | 79853c3d20544fc5d850ab4c898c8038 | 39 / 70 (55.71%)
| 172.67.174.126:443 |
| 2021-08-03 22:46:51 | 69b7ccf6e9c1788295918d428b64a25a | 38 / 69 (55.07%)
| 172.67.222.123:443 |
| 2021-08-03 22:45:38 | 6945a38c097507a7dc56672be9516290 | 35 / 69 (50.72%)
| 172.67.222.123:443 |
| 2021-08-03 22:40:28 | 6bb9967e982945e4016975a97aaa1323 | 17 / 66 (25.76%)
| 104.21.30.56:443 |
| 2021-08-03 21:54:49 | 0b9bf495d6eb9a31709e7314c5929eb1 | 31 / 70 (44.29%)
| 172.67.222.123:443 |
| 2021-08-03 21:16:33 | 3f31eb00fb1fc26e877468fabbca2ff1 | 45 / 69 (65.22%)
| 172.67.174.126:443 |
| 2021-08-03 21:03:12 | 582f74725605907fa4f1cb79afdce933 | 25 / 71 (35.21%)
| 172.67.131.206:443 |
| 2021-08-03 20:44:22 | 28124f0e284aff8a94baebbdeb7a1d12 | 46 / 70 (65.71%)
| 104.21.4.81:443 |
| 2021-08-03 20:37:40 | 525d67f31af8134559c4daeec6a39eae | 46 / 70 (65.71%)
| 104.21.4.81:443 |
| 2021-08-03 18:45:33 | cb863eeeb03c60a73f8da505a3401404 | 38 / 70 (54.29%)
| 172.67.150.157:443 |
| 2021-08-03 18:06:20 | c7e61a8b50b4746e35eaff77618b5cb7 | 38 / 70 (54.29%)
| 104.21.30.56:443 |
| 2021-08-03 17:05:58 | b5e81c343de6e61b995e0edce8b6283a | 39 / 70 (55.71%)
| 172.67.222.123:443 |
| 2021-08-03 16:52:06 | b07b75d02af210d8f4629ad40014b9f3 | 37 / 70 (52.86%)
| 172.67.222.123:443 |
| 2021-08-03 10:34:33 | a4a2125a2890120e757f70059be430a8 | 48 / 70 (68.57%)
| 172.67.150.157:443 |
| 2021-08-03 00:30:26 | 7fe90193cbacdbe97d7793627940d718 | 34 / 70 (48.57%)
| 172.67.222.123:443 |
| 2021-08-02 23:36:25 | 1161748399bab5c5268f79a576f3f337 | 29 / 70 (41.43%)
| 172.67.222.123:443 |
| 2021-08-02 23:05:40 | 6753acb3b6ac017d3b2d9120e0054bb8 | 48 / 69 (69.57%)
| 172.67.222.98:443 |
| 2021-08-02 22:10:34 | 03b642ce949ed40b4dc99ff795964ae5 | 39 / 67 (58.21%)
| 104.21.70.96:443 |
| 2021-08-02 21:53:45 | 20f4123ae3bb9a17c4d19de2598b9652 | 27 / 66 (40.91%)
| 172.67.222.123:443 |
| 2021-08-02 21:19:41 | 109ff6205d06efc153297ba3bb2b3267 | 35 / 70 (50.00%)
| 104.21.70.96:443 |
| 2021-08-02 20:39:55 | 4cdf556201e27c613f13c127982ed2c9 | 20 / 70 (28.57%)
| 172.67.193.175:443 |
| 2021-08-02 20:22:32 | 6b9ca7f3f7d86782fc630761d7602b4d | 9 / 69 (13.04%)
| 172.67.150.157:443 |
| 2021-08-02 18:34:28 | 19a35904c5597b2cb965da189445a916 | 47 / 70 (67.14%)
| 172.67.150.157:443 |
| 2021-08-02 06:12:30 | be3ebb6a177017f8ac8aa615eb6b541e | 40 / 70 (57.14%)
| 104.21.70.96:443 |
| 2021-08-02 05:51:08 | b0dc9a486978c322b8f362f9191c48c5 | 50 / 70 (71.43%)
| 104.21.12.54:443 |
| 2021-08-02 05:19:40 | b3523fe61086fc4dcd3b5739e031b8b6 | 8 / 69 (11.59%)
| 172.67.150.157:443 |
| 2021-08-02 03:47:02 | 89b914b5fcdbcb7603f5a7911b35d0b2 | 32 / 67 (47.76%)
| 104.21.70.96:443 |
| 2021-08-02 02:51:13 | 635065fa559b5ee95e3e2d0b05f12853 | 34 / 69 (49.28%)
| 104.21.70.96:443 |
| 2021-08-02 01:23:33 | 27a8b900977c8121ee3c6617a56a9bd0 | 46 / 72 (63.89%)
| 172.67.131.179:443 |
| 2021-08-02 00:30:43 | 4d0e89d3a8dcde39c839639a9708e40d | 37 / 70 (52.86%)
| 172.67.222.123:443 |
| 2021-08-01 23:31:53 | 66544f29a1ed9fd42b87199c7753eef2 | 9 / 69 (13.04%)
| 104.21.30.56:443 |
| 2021-08-01 22:14:41 | ef52bfd6de5a21bde2b0c7627822ddd4 | 39 / 70 (55.71%)
| 172.67.150.157:443 |
| 2021-08-01 22:04:21 | e6562a5351e9bd3b46d4815c09de993d | 37 / 69 (53.62%)
| 172.67.150.157:443 |
| 2021-08-01 21:56:00 | b5cb395f69ad11a0028832a30a7bf65c | 42 / 69 (60.87%)
| 172.67.150.157:443 |
| 2021-08-01 21:49:12 | c92c4bcff177a5fff71030ebd61c0103 | 34 / 64 (53.12%)
| 172.67.150.157:443 |
| 2021-08-01 21:34:47 | 54613f6c028b4cca76f29fc68ff64868 | 45 / 69 (65.22%)
| 104.21.30.56:443 |
| 2021-08-01 21:22:49 | 8004ca3f6caddd8472831e911d880d10 | 29 / 69 (42.03%)
| 172.67.150.157:443 |
| 2021-08-01 21:12:46 | 6e80ae257bb73905bf857b84d0f548ee | 30 / 71 (42.25%)
| 172.67.193.175:443 |
| 2021-08-01 20:09:27 | 018aad2110fee29963811ff977c50b7c | 2 / 60 (3.33%)
| 13.227.211.115:443 |
| 2021-08-01 20:09:27 | 018aad2110fee29963811ff977c50b7c | 2 / 60 (3.33%)
| 54.230.206.20:443 |
| 2021-08-01 17:12:24 | ffa937d31c6489480f2c3c9304428ab2 | 52 / 65 (80.00%)
| 104.21.12.54:443 |
| 2021-08-01 17:08:09 | ff8b04b2df82a8f4c99c05d48cb41c77 | 34 / 68 (50.00%)
| 104.21.70.96:443 |
| 2021-08-01 16:25:52 | fa16c86654cea6f93ddda94b9b639aeb | 44 / 70 (62.86%)
| 104.21.4.81:443 |
| 2021-08-01 16:20:25 | f98907726878d91d466b2f65a4c729a8 | 43 / 70 (61.43%)
| 104.21.70.96:443 |
| 2021-08-01 14:43:22 | ee5af42895e452753875bee33727115b | 41 / 69 (59.42%)
| 172.67.150.157:443 |
| 2021-08-01 14:10:11 | e7f145c8c9e71f4f572cce42ae2fe8ae | 38 / 70 (54.29%)
| 172.67.222.123:443 |
| 2021-08-01 11:12:36 | c7d9f3e16bd873bc8d072e0b9f7e9172 | 46 / 70 (65.71%)
| 172.67.193.175:443 |
| 2021-08-01 11:02:59 | c5b349a8b2a56180933bd58e6bd43c9c | 39 / 70 (55.71%)
| 172.67.222.123:443 |
| 2021-08-01 02:28:04 | a655f587d6dd82b36324eaf07985285d | 44 / 70 (62.86%)
| 104.21.86.166:443 |
| 2021-08-01 01:18:24 | 98647ee2764a015a5c91ac2b9956b72c | 36 / 69 (52.17%)
| 172.67.222.123:443 |
| 2021-08-01 00:51:06 | 8d907d01dd94039a22b1ac120c92617b | 49 / 70 (70.00%)
| 104.21.4.81:443 |
| 2021-07-31 23:17:20 | 1d85f22d8034bbbfe58aaa48fe967848 | 30 / 70 (42.86%)
| 172.67.222.123:443 |
| 2021-07-31 21:01:48 | 65e1b752ee1005b05b060eac56f91cba | 40 / 70 (57.14%)
| 172.67.222.123:443 |
| 2021-07-31 20:04:57 | 2c1d87e88cb7572f936857c9906ddea3 | 37 / 68 (54.41%)
| 104.21.70.96:443 |
| 2021-07-31 18:14:38 | 8e0cfdbf42751f1dfdda09442851c8b4 | 47 / 69 (68.12%)
| 104.21.30.56:443 |
| 2021-07-31 17:55:46 | 41eca0fe57ba0e8838c8afb0eaefa4f6 | 31 / 67 (46.27%)
| 172.67.150.157:443 |
| 2021-07-31 17:45:35 | 35fa45b48137326a570b07f2ec0f096a | 35 / 70 (50.00%)
| 104.21.30.56:443 |
| 2021-07-31 15:51:45 | 5db97240300ef6987c75696520346ad3 | 37 / 70 (52.86%)
| 104.21.70.96:443 |
| 2021-07-31 09:34:45 | 5cb4e8f74f2b6f64ff425506f2d6912d | 39 / 70 (55.71%)
| 104.21.12.54:443 |
| 2021-07-31 08:36:31 | 300751be7115ecae1b8fdfd6ecf2d845 | 39 / 70 (55.71%)
| 104.21.70.96:443 |
| 2021-07-31 05:15:10 | fd175f67f81d1074fefa70b4f45875d1 | 36 / 70 (51.43%)
| 104.21.70.96:443 |
| 2021-07-31 05:10:06 | fceeab3a41f86152cd11c3cd308f2bb4 | 35 / 70 (50.00%)
| 172.67.222.123:443 |
| 2021-07-31 03:16:19 | f7becad25f1086ce741e3eb6180bb2af | 43 / 70 (61.43%)
| 104.21.30.56:443 |
| 2021-07-31 03:12:53 | f7b8982915c5aa2005afd56c684b2f47 | 42 / 69 (60.87%)
| 104.21.4.81:443 |
| 2021-07-31 01:16:41 | f1376092133448cbc1bd2b71c3374c6a | 32 / 68 (47.06%)
| 172.67.222.123:443 |
| 2021-07-31 01:11:45 | f0e2fa8c2d95da46a61e88c67fa4eb2c | 44 / 69 (63.77%)
| 104.21.30.56:443 |
| 2021-07-31 00:07:32 | ec48fbcf753c577033849e4ec3bf477f | 38 / 70 (54.29%)
| 172.67.222.123:443 |
| 2021-07-30 23:35:00 | d8c64a3eff6441dc6ddebc438b80dd62 | 40 / 69 (57.97%)
| 172.67.150.157:443 |
| 2021-07-30 22:39:36 | bd8761817acaf69a6c7c32e76a6c8f2d | 18 / 70 (25.71%)
| 104.21.70.96:443 |
| 2021-07-30 22:35:53 | be08f10d27278ed9dd6d8777a0d4e54e | 42 / 69 (60.87%)
| 104.21.30.56:443 |
| 2021-07-30 22:25:44 | b7b1edcae6eb7beb1910d09bbb5f52b9 | 36 / 68 (52.94%)
| 104.21.12.54:443 |
| 2021-07-30 22:25:44 | b7b1edcae6eb7beb1910d09bbb5f52b9 | 36 / 68 (52.94%)
| 172.67.193.175:443 |
| 2021-07-30 22:16:52 | b42fd2dd1659ccbb2204ea72c82ded1d | 37 / 69 (53.62%)
| 104.21.12.54:443 |
| 2021-07-30 22:00:18 | a771601d20ea5d75c448240df3d01bd0 | 42 / 70 (60.00%)
| 47.246.48.226:443 |
| 2021-07-30 21:46:44 | a40d7cf61f9c7879aa0505bf30a5fadf | 38 / 69 (55.07%)
| 172.67.150.157:443 |
| 2021-07-30 21:44:05 | a2a7505f4dde0815ed3ff94d4f29e5a1 | 43 / 68 (63.24%)
| 47.246.48.231:443 |
| 2021-07-30 21:35:36 | 989b6516c558477dbcf96543977815d5 | 36 / 69 (52.17%)
| 172.67.222.123:443 |
| 2021-07-30 20:58:16 | 7bd5f674f95ec0529bff6e0b88967860 | 19 / 70 (27.14%)
| 104.21.4.81:443 |
| 2021-07-30 20:08:30 | 3eb15aac3ac477eb5f45182ed76aa567 | 8 / 67 (11.94%)
| 104.21.70.96:443 |
| 2021-07-30 19:29:26 | 43c4b324589d550549b8918709acd21d | 33 / 69 (47.83%)
| 79.133.177.231:443 |
| 2021-07-30 19:28:58 | 45469e464c6a73f11779a55c45dea761 | 8 / 68 (11.76%)
| 172.67.222.123:443 |
| 2021-07-30 18:53:23 | 1f29769770d1f28f9276639ea5cf0cea | 6 / 69 (8.70%)
| 104.21.70.96:443 |
| 2021-07-30 18:52:39 | 49f2443cfb145f0ce0705af83954736a | 27 / 70 (38.57%)
| 172.67.193.175:443 |
| 2021-07-30 18:31:22 | 21b666bf1c27c21bcc9bd20e3f3de21b | 27 / 70 (38.57%)
| 172.67.193.175:443 |
| 2021-07-30 18:25:13 | 582dcd29a12e94a15eb2058c7cae4c60 | n/a | 172.67.150.157:443 |
| 2021-07-30 17:42:13 | 7810776aa9d0a45b6d6ac25a32699c7b | 35 / 68 (51.47%)
| 104.21.30.56:443 |
| 2021-07-30 17:14:14 | 02c77ea5a174dfc36061e8d1bf83c33c | 27 / 70 (38.57%)
| 172.67.150.157:443 |
| 2021-07-30 17:06:28 | 4e83e1d52564069d7f2f9ee62480a3ff | 38 / 69 (55.07%)
| 172.67.150.157:443 |
| 2021-07-30 14:36:50 | e4c807df575110180a4f0932205750ce | 34 / 70 (48.57%)
| 79.133.177.226:443 |
| 2021-07-30 13:11:40 | dee0f6f2414567036d001d11d847d615 | 36 / 70 (51.43%)
| 104.21.70.96:443 |
| 2021-07-30 13:08:57 | dea936eb8dd8e472c5b5efb21966662e | 10 / 68 (14.71%)
| 172.67.222.123:443 |
| 2021-07-30 12:49:31 | dc5c139e3c009a89d227b95851a2aa47 | 46 / 70 (65.71%)
| 104.21.4.81:443 |
| 2021-07-30 11:33:02 | d5ee2024b2669469b26cf5a19658ae46 | 33 / 70 (47.14%)
| 104.21.70.96:443 |
| 2021-07-30 10:42:59 | d183a1d3a77be85cf57acfb47c57cb9a | 36 / 70 (51.43%)
| 104.21.70.96:443 |
| 2021-07-29 21:51:57 | a318e908a850eda29caca4c70aa236e4 | n/a | 47.246.48.230:443 |
# of entries: 100 (max: 100)