JA3 Fingerprints
You can find further information about the JA3 fingerprint fd80fa9c6120cdeea8520510f3c644ac, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | fd80fa9c6120cdeea8520510f3c644ac |
|---|---|
| First seen: | 2018-03-11 09:34:30 UTC |
| Last seen: | 2020-03-28 11:16:40 UTC |
| Status: | Blacklisted |
| Malware samples: | 671 |
| Destination IPs: | 97 |
| Malware: | Tofsee  |
| Listing date: | 2018-11-14 00:00:00 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2020-03-28 11:16:40 | bce738cf74904dbfa53b1215641a42fe |  54 / 73 (73.97%)
| 104.27.167.5:443 |
| 2020-03-28 06:32:33 | 2fa08b5df03fa494f7ae182ca4019115 | n/a | 87.240.129.181:443 |
| 2020-03-27 16:37:09 | b54be699c6116daa8e13de5e04f5a893 | 45 / 73 (61.64%)
| 104.28.25.59:443 |
| 2020-03-27 14:51:53 | a01123f18c7ca7fad38e1b567105faed | 51 / 73 (69.86%)
| 104.27.166.5:443 |
| 2020-03-27 14:51:53 | a01123f18c7ca7fad38e1b567105faed | 51 / 73 (69.86%)
| 104.27.167.5:443 |
| 2020-03-27 14:27:13 | ae74f0578f701a15a43f727ebd60a207 | 39 / 72 (54.17%)
| 104.18.47.51:443 |
| 2020-03-27 14:25:01 | c19598944b84a2da72d0eb901aebc794 | 6 / 73 (8.22%)
| 104.18.47.51:443 |
| 2020-03-27 10:49:07 | 7ac5597f0220a23da4e94bead40c2904 | 25 / 71 (35.21%)
| 87.240.129.135:443 |
| 2020-03-27 08:26:08 | ac8ce53115cc31ff44337b3a66bff3ca | 58 / 73 (79.45%)
| 104.18.47.51:443 |
| 2020-03-27 08:26:08 | ac8ce53115cc31ff44337b3a66bff3ca | 58 / 73 (79.45%)
| 104.18.46.51:443 |
| 2020-03-27 08:06:43 | 99b6fc26f6a4f013ae61cc3102e3a392 | n/a | 34.107.165.220:443 |
| 2020-03-27 08:00:19 | 9fbcc892773395183458ab838eacb662 | 24 / 73 (32.88%)
| 87.240.129.135:443 |
| 2020-03-27 07:58:32 | b17cda2bc153d988f8d7cc1494d6f22a | 27 / 73 (36.99%)
| 104.18.47.51:443 |
| 2020-03-27 07:41:11 | b3877d335183bc214bd03bf03ce5dd7f | 27 / 71 (38.03%)
| 104.18.47.51:443 |
| 2020-03-27 07:41:11 | b3877d335183bc214bd03bf03ce5dd7f | 27 / 71 (38.03%)
| 104.18.46.51:443 |
| 2020-03-27 05:04:22 | 9e2cb3c7c941cff4a011d891955bcc98 | 28 / 71 (39.44%)
| 87.240.129.135:443 |
| 2020-03-27 03:24:27 | 947b2614ccb0cc2ce4439d8cdfa6cfd4 | 22 / 71 (30.99%)
| 34.107.165.220:443 |
| 2020-03-26 21:13:42 | 803c7e7340e9f2e3c492662eadc5afa6 | 22 / 73 (30.14%)
| 87.240.129.181:443 |
| 2020-03-26 21:13:39 | 803c7e7340e9f2e3c492662eadc5afa6 | 22 / 73 (30.14%)
| 87.240.129.135:443 |
| 2020-03-26 19:49:31 | cdf6c5b37844378a0f1dfd0fcb89cda1 | 33 / 72 (45.83%)
| 87.240.129.135:443 |
| 2020-03-26 19:49:28 | cdf6c5b37844378a0f1dfd0fcb89cda1 | 33 / 72 (45.83%)
| 87.240.129.181:443 |
| 2020-03-26 19:49:26 | cdf6c5b37844378a0f1dfd0fcb89cda1 | 33 / 72 (45.83%)
| 146.158.48.2:443 |
| 2020-03-26 19:49:25 | cdf6c5b37844378a0f1dfd0fcb89cda1 | 33 / 72 (45.83%)
| 34.107.165.220:443 |
| 2020-03-26 19:16:06 | 0619175efa50887152aa01e9b06b96dc | 21 / 72 (29.17%)
| 104.36.194.169:443 |
| 2020-03-26 10:07:47 | 0c923ba0498d2052f64b1fc4f7b2cfce | 18 / 73 (24.66%)
| 87.240.129.181:443 |
| 2020-03-26 07:30:15 | ba8a503dbed78cb19f3f8b312d77489a | 36 / 73 (49.32%)
| 104.18.46.51:443 |
| 2020-03-26 04:39:44 | a73f57111671de06df2bab5535a53630 | 37 / 72 (51.39%)
| 104.18.46.51:443 |
| 2020-03-26 03:27:49 | dc8f87f15cb39c308e162ca55a41d32f | 22 / 71 (30.99%)
| 3.121.248.176:443 |
| 2020-03-26 03:27:45 | dc8f87f15cb39c308e162ca55a41d32f | 22 / 71 (30.99%)
| 104.19.154.59:443 |
| 2020-03-26 03:27:44 | dc8f87f15cb39c308e162ca55a41d32f | 22 / 71 (30.99%)
| 23.20.18.105:443 |
| 2020-03-26 02:48:09 | a244524aeaf7f6608d1d597108e31596 | 38 / 73 (52.05%)
| 104.18.47.51:443 |
| 2020-03-26 02:48:09 | a244524aeaf7f6608d1d597108e31596 | 38 / 73 (52.05%)
| 104.18.46.51:443 |
| 2020-03-25 23:58:17 | 45fe5d497f1e8c73da075bcc4b1b532a | 36 / 72 (50.00%)
| 104.18.46.51:443 |
| 2020-03-25 20:22:03 | 89cad87512e0a5c7cfbe45175fa9774b | 21 / 73 (28.77%)
| 104.18.44.214:443 |
| 2020-03-25 20:22:02 | 89cad87512e0a5c7cfbe45175fa9774b | 21 / 73 (28.77%)
| 104.18.45.214:443 |
| 2020-03-25 16:19:48 | 39b961c13850e7910d07c9d1993b47a7 | 20 / 72 (27.78%)
| 3.121.248.176:443 |
| 2020-03-25 16:19:48 | 39b961c13850e7910d07c9d1993b47a7 | 20 / 72 (27.78%)
| 178.128.254.4:443 |
| 2020-03-25 16:19:47 | 39b961c13850e7910d07c9d1993b47a7 | 20 / 72 (27.78%)
| 87.240.129.135:443 |
| 2020-03-25 16:19:47 | 39b961c13850e7910d07c9d1993b47a7 | 20 / 72 (27.78%)
| 104.19.154.59:443 |
| 2020-03-25 16:19:45 | 39b961c13850e7910d07c9d1993b47a7 | 20 / 72 (27.78%)
| 103.55.148.32:443 |
| 2020-03-25 16:19:37 | 39b961c13850e7910d07c9d1993b47a7 | 20 / 72 (27.78%)
| 104.17.49.74:443 |
| 2020-03-25 14:18:52 | c0d90be5de2fbba760a3ae94c4cdbf85 | 22 / 72 (30.56%)
| 146.158.48.2:443 |
| 2020-03-23 11:58:38 | b4a87f447cda32f02e924eca41fe96e4 | n/a | 104.27.167.5:443 |
| 2020-03-23 10:24:13 | b2a1dd8aee694f9e5e135e14e79b6e44 | n/a | 104.27.167.5:443 |
| 2020-03-23 09:39:17 | b692dbeb37b23e8eed8bd34dd6179e8d | 31 / 73 (42.47%)
| 104.18.46.51:443 |
| 2020-03-23 09:39:17 | b692dbeb37b23e8eed8bd34dd6179e8d | 31 / 73 (42.47%)
| 104.18.47.51:443 |
| 2020-03-22 08:09:04 | a8e7b78624e97af225aa2056ce556f0c | 41 / 73 (56.16%)
| 104.18.46.51:443 |
| 2020-03-22 08:09:04 | a8e7b78624e97af225aa2056ce556f0c | 41 / 73 (56.16%)
| 104.18.47.51:443 |
| 2020-03-21 22:41:32 | d77e5078cb6cf870b42b6dde785424e7 | 39 / 73 (53.42%)
| 104.18.46.51:443 |
| 2020-03-21 22:41:32 | d77e5078cb6cf870b42b6dde785424e7 | 39 / 73 (53.42%)
| 104.18.47.51:443 |
| 2020-03-21 20:29:14 | 671343298150828cf8706eda0bca56cb | 26 / 73 (35.62%)
| 13.224.102.100:443 |
| 2020-03-20 19:13:50 | b362e532303029494b23b59009913a75 | 21 / 73 (28.77%)
| 104.27.166.5:443 |
| 2020-03-20 12:43:33 | 7ffff8315d3b608248284289e8e41529 | 32 / 73 (43.84%)
| 99.86.157.42:443 |
| 2020-03-19 11:52:15 | befb63bc488d150f75adcc0005ebbc0b | 27 / 73 (36.99%)
| 104.27.167.5:443 |
| 2020-03-19 00:56:33 | bcd101fcfe6b33e74bd6e9118d81cfaf | 45 / 68 (66.18%)
| 104.27.167.5:443 |
| 2020-03-19 00:56:33 | bcd101fcfe6b33e74bd6e9118d81cfaf | 45 / 68 (66.18%)
| 104.27.166.5:443 |
| 2020-03-19 00:29:27 | 6e381edc407e7150d77ade53bce5609e | 37 / 72 (51.39%)
| 104.28.24.59:443 |
| 2020-03-19 00:29:26 | 6e381edc407e7150d77ade53bce5609e | 37 / 72 (51.39%)
| 104.28.25.59:443 |
| 2020-03-17 10:51:47 | ba0dfa304ab95f8bb4c0838cef690762 | 33 / 73 (45.21%)
| 104.28.5.155:443 |
| 2020-03-17 10:51:46 | ba0dfa304ab95f8bb4c0838cef690762 | 33 / 73 (45.21%)
| 104.28.4.155:443 |
| 2020-03-16 15:48:55 | 01751456f74257e8aaaa8d8f40cae181 | 42 / 73 (57.53%)
| 104.28.4.155:443 |
| 2020-03-16 15:48:55 | 01751456f74257e8aaaa8d8f40cae181 | 42 / 73 (57.53%)
| 104.28.5.155:443 |
| 2020-03-15 07:12:05 | a67a92db519227d1a8b1762e0f0ad318 | 33 / 73 (45.21%)
| 104.28.5.155:443 |
| 2020-03-15 07:12:05 | a67a92db519227d1a8b1762e0f0ad318 | 33 / 73 (45.21%)
| 104.28.4.155:443 |
| 2020-03-15 06:41:15 | bcbf66c43293f9efb892dab7f94453c7 | 31 / 73 (42.47%)
| 104.28.4.155:443 |
| 2020-03-14 21:01:59 | 3c6b9ee0fc0e1aefaafb26bf2e219bee | 56 / 73 (76.71%)
| 104.28.4.155:443 |
| 2020-03-14 21:01:59 | 3c6b9ee0fc0e1aefaafb26bf2e219bee | 56 / 73 (76.71%)
| 104.28.5.155:443 |
| 2020-03-14 19:25:03 | a9e6f4467f77f93ee333ea2ae6ee8147 | 30 / 73 (41.10%)
| 104.28.4.155:443 |
| 2020-03-14 19:25:02 | a9e6f4467f77f93ee333ea2ae6ee8147 | 30 / 73 (41.10%)
| 104.28.5.155:443 |
| 2020-03-14 18:19:17 | 1ed6efb04ed0436c48a0b034b9326ff4 | 46 / 72 (63.89%)
| 104.28.4.155:443 |
| 2020-03-14 10:36:20 | 242b3ab9aeeb479a8d02f436a6ebdda7 | 20 / 72 (27.78%)
| 104.28.5.155:443 |
| 2020-03-14 10:36:19 | 242b3ab9aeeb479a8d02f436a6ebdda7 | 20 / 72 (27.78%)
| 104.28.4.155:443 |
| 2020-03-14 09:45:26 | 0e8187a6eba420c58f1608c9011a07ef | 40 / 73 (54.79%)
| 104.28.4.155:443 |
| 2020-03-14 09:45:26 | 0e8187a6eba420c58f1608c9011a07ef | 40 / 73 (54.79%)
| 104.28.5.155:443 |
| 2020-03-13 20:56:08 | 31b29b270f02f737a519993f866c8dd8 | 27 / 73 (36.99%)
| 104.125.21.114:443 |
| 2020-03-13 20:03:47 | 07e1d09bdb027ed3bd5beda7c81c733a | 34 / 73 (46.58%)
| 104.28.4.155:443 |
| 2020-03-13 20:03:47 | 07e1d09bdb027ed3bd5beda7c81c733a | 34 / 73 (46.58%)
| 104.28.5.155:443 |
| 2020-03-13 16:47:47 | d8fe16e62f27ba7d966b7a474a1e436b | 19 / 73 (26.03%)
| 87.240.129.181:443 |
| 2020-03-13 15:51:14 | 87ddb4a46f4099cf156c9107e4bd3fea | 19 / 72 (26.39%)
| 87.240.129.135:443 |
| 2020-03-13 15:51:12 | 87ddb4a46f4099cf156c9107e4bd3fea | 19 / 72 (26.39%)
| 87.240.129.181:443 |
| 2020-03-13 04:42:03 | 2e3249d404e1785a1bfa1914a75effcf | 24 / 73 (32.88%)
| 146.158.48.2:443 |
| 2020-03-13 04:42:03 | 2e3249d404e1785a1bfa1914a75effcf | 24 / 73 (32.88%)
| 87.240.129.181:443 |
| 2020-03-13 04:41:56 | 2e3249d404e1785a1bfa1914a75effcf | 24 / 73 (32.88%)
| 87.240.129.135:443 |
| 2020-03-13 04:41:37 | 2e3249d404e1785a1bfa1914a75effcf | 24 / 73 (32.88%)
| 185.89.12.132:443 |
| 2020-03-12 17:39:40 | 976a090d05150678c5c42d68838d5b68 | 23 / 73 (31.51%)
| 195.201.228.108:443 |
| 2020-03-12 03:05:35 | af791ba48a5a36e1a697a359f91d37c6 | 13 / 68 (19.12%)
| 104.28.4.155:443 |
| 2020-03-12 03:05:35 | af791ba48a5a36e1a697a359f91d37c6 | 13 / 68 (19.12%)
| 104.28.5.155:443 |
| 2020-03-11 09:09:35 | 19e2a5147a80e886fdd8c5bc6a5a0825 | 16 / 72 (22.22%)
| 13.224.102.77:443 |
| 2020-03-11 09:09:35 | 19e2a5147a80e886fdd8c5bc6a5a0825 | 16 / 72 (22.22%)
| 13.224.102.128:443 |
| 2020-03-10 20:49:22 | 0f71e9ea62c11a1cd7f5e2f392caa814 | 37 / 73 (50.68%)
| 104.28.4.155:443 |
| 2020-03-10 20:49:22 | 0f71e9ea62c11a1cd7f5e2f392caa814 | 37 / 73 (50.68%)
| 104.28.5.155:443 |
| 2020-03-09 23:48:30 | c86afc2228425109f9d197b628874d89 | 37 / 73 (50.68%)
| 104.28.5.155:443 |
| 2020-03-09 23:48:30 | c86afc2228425109f9d197b628874d89 | 37 / 73 (50.68%)
| 104.28.4.155:443 |
| 2020-03-09 19:35:47 | d96f5a9f4e389f32390409713f005749 | 19 / 72 (26.39%)
| 54.192.87.92:443 |
| 2020-03-09 18:40:31 | a353a1f925cc05671fcf4c43a048f773 | 39 / 73 (53.42%)
| 104.28.4.155:443 |
| 2020-03-09 18:40:31 | a353a1f925cc05671fcf4c43a048f773 | 39 / 73 (53.42%)
| 104.28.5.155:443 |
| 2020-03-09 17:35:39 | 893e272d0e38bcb48d7ce7437b36565f | n/a | 104.121.113.125:443 |
| 2020-03-09 16:47:00 | 980322fcc4ba63d32948f64dfffd3d0b | n/a | 23.62.117.69:443 |
| 2020-03-09 15:28:11 | c61b09c484cc9f4b0ca8be4930e4b667 | 37 / 73 (50.68%)
| 104.28.5.155:443 |
| 2020-03-09 15:28:11 | c61b09c484cc9f4b0ca8be4930e4b667 | 37 / 73 (50.68%)
| 104.28.4.155:443 |
# of entries: 100 (max: 100)