JA3 Fingerprints
You can find further information about the JA3 fingerprint fd80fa9c6120cdeea8520510f3c644ac, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | fd80fa9c6120cdeea8520510f3c644ac |
|---|---|
| First seen: | 2018-03-11 09:34:30 UTC |
| Last seen: | 2021-02-27 07:13:47 UTC |
| Status: | Blacklisted |
| Malware samples: | 3'825 |
| Destination IPs: | 320 |
| Malware: | Tofsee  |
| Listing date: | 2018-11-14 00:00:00 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2021-02-27 07:13:47 | a7336dd7c2f9fc62a60934b8f5cc29c9 | n/a | 104.21.47.238:443 |
| 2021-02-27 00:39:03 | 2c7a7029940e302a50978c624feaa077 |  43 / 71 (60.56%)
| 172.67.174.126:443 |
| 2021-02-27 00:23:17 | 7f6992012a1e12c03b1d9240ee35bc3a | 41 / 71 (57.75%)
| 104.21.47.238:443 |
| 2021-02-27 00:13:46 | 5c9dec539c10ba7e9284f1b3963e2675 | 28 / 71 (39.44%)
| 172.67.174.126:443 |
| 2021-02-26 23:43:33 | 999613cece619485aff0d887981f6072 | n/a | 172.67.222.98:443 |
| 2021-02-26 22:51:49 | 6e112af1361cb56127e604effc1aeb0d | n/a | 172.67.222.98:443 |
| 2021-02-26 22:46:15 | 83ba08a98d9d75de7944c1319e439665 | n/a | 104.21.86.166:443 |
| 2021-02-26 22:41:41 | 6b7ae35197eb9f1d3d5f783eeb7503b5 | n/a | 104.21.86.166:443 |
| 2021-02-26 22:41:41 | 6b7ae35197eb9f1d3d5f783eeb7503b5 | n/a | 172.67.222.98:443 |
| 2021-02-26 20:32:54 | 636159690719bef3cceaad7124bd612c | 43 / 71 (60.56%)
| 172.67.174.126:443 |
| 2021-02-26 20:32:54 | 636159690719bef3cceaad7124bd612c | 43 / 71 (60.56%)
| 104.21.47.238:443 |
| 2021-02-26 20:11:08 | 4710a6ee5a6603f68b7a286f31678a01 | 40 / 71 (56.34%)
| 172.67.174.126:443 |
| 2021-02-26 19:45:01 | 1386d0f0757f8bc6f01d86306de5ebfc | 41 / 69 (59.42%)
| 172.67.174.126:443 |
| 2021-02-26 17:46:18 | ae9567a02879555e66ef42d4c2dea06e | n/a | 104.21.47.238:443 |
| 2021-02-26 14:12:18 | abe95a48165792c3671de227dd4c0f81 | 20 / 71 (28.17%)
| 172.67.222.98:443 |
| 2021-02-26 09:55:17 | a9adaaf411ea923e86a026f49cf11c67 | 43 / 71 (60.56%)
| 104.21.12.54:443 |
| 2021-02-26 05:35:19 | a6cf567fbfbfc3442ac404925837c645 | n/a | 104.21.47.238:443 |
| 2021-02-26 04:35:45 | a62dfeb8580faf196b46393ee1593a79 | 41 / 71 (57.75%)
| 104.21.47.238:443 |
| 2021-02-26 03:02:00 | a24ea825eb6de3468c6aa287ab9e1070 | n/a | 104.21.12.54:443 |
| 2021-02-26 03:02:00 | a24ea825eb6de3468c6aa287ab9e1070 | n/a | 172.67.193.175:443 |
| 2021-02-26 02:35:53 | 948d6015b3234b9c451afb4b3eb067ab | n/a | 172.67.131.206:443 |
| 2021-02-26 01:50:32 | 6abfad6fe6d8180d938c7f4d90732378 | n/a | 172.67.222.98:443 |
| 2021-02-26 01:43:59 | 93b4886dc8c19b597cbe43899286fb05 | 40 / 71 (56.34%)
| 104.21.86.166:443 |
| 2021-02-26 00:48:01 | 8a9c348648e0f5b39c4d97a6ceb75b3e | 18 / 72 (25.00%)
| 172.67.131.179:443 |
| 2021-02-26 00:09:17 | 96febf499eee29fbe7da8ce45ee3c967 | n/a | 104.21.47.238:443 |
| 2021-02-26 00:03:19 | 898c84f59ed68a97e87ec8cf1e12dd78 | n/a | 172.67.222.98:443 |
| 2021-02-25 20:22:49 | 6ffda3d9c53a84ad9ff900f5cd9ce61e | 37 / 71 (52.11%)
| 104.21.86.166:443 |
| 2021-02-25 20:22:49 | 6ffda3d9c53a84ad9ff900f5cd9ce61e | 37 / 71 (52.11%)
| 172.67.222.98:443 |
| 2021-02-25 20:19:10 | 65df36950666a5c1659207eed15d0baa | 36 / 71 (50.70%)
| 104.21.86.166:443 |
| 2021-02-25 19:03:32 | 791343e80568a402f2b7fdfb8a1a4843 | n/a | 104.21.47.238:443 |
| 2021-02-25 17:55:00 | 65330ebf37a960477278a6310208ca57 | n/a | 172.67.222.98:443 |
| 2021-02-25 17:13:02 | 5ab14f70543fcd5e754d0d9f2ab62d8b | n/a | 104.21.86.166:443 |
| 2021-02-25 17:13:02 | 5ab14f70543fcd5e754d0d9f2ab62d8b | n/a | 172.67.222.98:443 |
| 2021-02-25 16:42:13 | 569f63b4e2c33703a137c940ad83c759 | n/a | 172.67.222.98:443 |
| 2021-02-25 16:14:56 | 2a2a81e54119b00b18edd5c4b33a4cdd | n/a | 104.21.86.166:443 |
| 2021-02-25 16:13:28 | 2cfd796c6736d99736b73697103f5834 | n/a | 172.67.222.98:443 |
| 2021-02-25 16:13:28 | 2cfd796c6736d99736b73697103f5834 | n/a | 104.21.86.166:443 |
| 2021-02-25 13:30:12 | 4e747a9999068efe36f549b1ac5b9402 | n/a | 172.67.193.175:443 |
| 2021-02-25 13:27:49 | 4a84135c80f90fc02673b324691ade44 | n/a | 104.21.86.166:443 |
| 2021-02-25 13:19:13 | 44b74c682294c6d61da8cbf3fa54ace4 | n/a | 172.67.174.126:443 |
| 2021-02-25 13:18:07 | 017f89185edbcc03f9e5843937e6fea1 | n/a | 172.67.222.98:443 |
| 2021-02-25 13:12:53 | 0898d8066c368456668fc392b35fe39a | n/a | 172.67.222.98:443 |
| 2021-02-25 13:12:53 | 0898d8066c368456668fc392b35fe39a | n/a | 104.21.86.166:443 |
| 2021-02-25 12:42:14 | 06f838a0457cdf0512ae9d194b36f030 | n/a | 104.21.47.238:443 |
| 2021-02-25 12:23:15 | 25da49b61a2850c2d047c9759ff1b3cd | n/a | 172.67.174.126:443 |
| 2021-02-25 10:39:26 | 3458fbe6e44def1dbc8641db61fd0ab9 | 51 / 70 (72.86%)
| 104.21.86.166:443 |
| 2021-02-25 08:39:27 | 722d974eb16f1e3831c876f071620c5d | n/a | 104.21.4.81:443 |
| 2021-02-25 08:39:27 | 722d974eb16f1e3831c876f071620c5d | n/a | 172.67.131.206:443 |
| 2021-02-25 02:42:15 | fb88e1ea4f1dea0d420d99f452b9fd47 | 40 / 70 (57.14%)
| 172.67.222.98:443 |
| 2021-02-24 23:11:57 | f685893633b74a093eaacc7354ef15a6 | 27 / 69 (39.13%)
| 104.21.86.166:443 |
| 2021-02-24 22:57:09 | f5c51b2bc6287f70c7c82742e64f2369 | 44 / 71 (61.97%)
| 104.21.86.166:443 |
| 2021-02-24 22:15:08 | f375a4f8597c29afd3ea4f43c1ab7066 | n/a | 104.21.86.166:443 |
| 2021-02-24 21:35:07 | f25d37ba84bfe69faabf050124a58c14 | n/a | 104.21.4.81:443 |
| 2021-02-24 14:40:55 | 62a26454f334748eb5c46ceac78a1c77 | 30 / 66 (45.45%)
| 172.67.193.175:443 |
| 2021-02-24 14:00:29 | cc9df4df452c3da924f5e2c3ee004f99 | n/a | 172.67.222.98:443 |
| 2021-02-24 13:45:23 | 2cb8b5cc5f8ac454f70d54d5eca100f8 | n/a | 172.67.222.98:443 |
| 2021-02-24 13:45:23 | 2cb8b5cc5f8ac454f70d54d5eca100f8 | n/a | 104.21.86.166:443 |
| 2021-02-24 12:29:33 | cec3d1a2398e1f669d1499e6d307b74c | n/a | 104.21.86.166:443 |
| 2021-02-24 12:26:49 | 8eff99a6e8368a7bd48008fd7251e6f9 | n/a | 172.67.222.98:443 |
| 2021-02-24 12:12:02 | f0dbd5a4aeb0b099c153006582933182 | 47 / 71 (66.20%)
| 172.67.222.98:443 |
| 2021-02-24 10:53:45 | e9a87fea267a281bf7b34a0041d00f2a | n/a | 172.67.131.206:443 |
| 2021-02-24 10:53:45 | e9a87fea267a281bf7b34a0041d00f2a | n/a | 104.21.4.81:443 |
| 2021-02-24 10:46:11 | e921e5be398572e7616638cf62db8a46 | 18 / 71 (25.35%)
| 172.67.222.98:443 |
| 2021-02-24 10:45:31 | e928b408d68ea072c282f17f5864e1ef | 35 / 71 (49.30%)
| 172.67.222.98:443 |
| 2021-02-24 10:19:44 | dd81fd9271285b50a2702d12f4674086 | n/a | 172.67.222.98:443 |
| 2021-02-24 09:45:32 | cfdeb97c0fbec1a60883964b2d8d1271 | n/a | 104.21.4.81:443 |
| 2021-02-24 09:18:21 | bebabed925b6943df7b06a10d81c3207 | 37 / 71 (52.11%)
| 172.67.222.98:443 |
| 2021-02-24 06:54:24 | 5ad85dedb350b9f8915c309fa5d8fa4b | 40 / 71 (56.34%)
| 172.67.222.98:443 |
| 2021-02-24 04:29:43 | ac9376a5ebdc6e3cb68c14ff4bd05f82 | 44 / 71 (61.97%)
| 104.21.86.166:443 |
| 2021-02-23 23:03:42 | 6a16aab7648144ccfb2c54008eb86b44 | n/a | 104.21.86.166:443 |
| 2021-02-23 21:37:51 | 19195535e57b9adf0b6293184ab3c9d7 | n/a | 172.67.222.98:443 |
| 2021-02-23 19:25:39 | a87cc66b434cedc47bba9f8127b3ae46 | 41 / 68 (60.29%)
| 172.67.222.98:443 |
| 2021-02-23 19:08:05 | 4f037b6724774879ae15640017ce0d68 | 37 / 71 (52.11%)
| 104.21.86.166:443 |
| 2021-02-23 18:56:53 | 1767127a2a4223eec1d2ae514781cc55 | 37 / 71 (52.11%)
| 172.67.222.98:443 |
| 2021-02-23 09:50:27 | a4bbb6f2c74d9e6f6996d04a6dcbd1aa | 41 / 71 (57.75%)
| 104.21.86.166:443 |
| 2021-02-23 08:29:04 | acb268b8a6ca42008a629cadddc87207 | 6 / 70 (8.57%)
| 77.88.21.158:587 |
| 2021-02-23 08:19:59 | a65ab436f519ab4c9b64d2467b8efbb9 | 5 / 70 (7.14%)
| 77.88.21.158:587 |
| 2021-02-23 00:51:18 | a1b70445ef3bebe5564490bdac297734 | 17 / 71 (23.94%)
| 104.21.86.166:443 |
| 2021-02-22 23:28:40 | 9199e1f32de1519871ad03befcb20b0d | n/a | 104.21.86.166:443 |
| 2021-02-22 23:17:14 | 767f110e6edf199e506c4570178ce7b2 | n/a | 104.21.86.166:443 |
| 2021-02-22 23:17:14 | 767f110e6edf199e506c4570178ce7b2 | n/a | 172.67.222.98:443 |
| 2021-02-22 22:50:34 | 5f1fcd8c05c98ed1e9eb138e486c8423 | n/a | 172.67.222.98:443 |
| 2021-02-22 20:59:58 | e74eaaec725ff790d39f08cdcc518e54 | 38 / 70 (54.29%)
| 104.21.86.166:443 |
| 2021-02-22 20:59:39 | e741cd2c59c83b8141df8ba91ca93a07 | n/a | 172.67.222.98:443 |
| 2021-02-22 20:54:56 | e6977dcba74a90effdba5b565a336010 | 18 / 70 (25.71%)
| 104.21.86.166:443 |
| 2021-02-22 20:54:01 | e6e89693e1023bbd4794b141886e6d5c | 41 / 71 (57.75%)
| 104.21.86.166:443 |
| 2021-02-22 20:31:34 | e41cea1cb6ade38b5bea60b231087c76 | 38 / 71 (53.52%)
| 172.67.222.98:443 |
| 2021-02-22 20:14:21 | e1de89cc89f9027e1018d4becd140a58 | n/a | 104.21.86.166:443 |
| 2021-02-22 20:10:47 | e0ebec8211a8ec646ac570163092db36 | 40 / 71 (56.34%)
| 104.21.86.166:443 |
| 2021-02-22 19:20:18 | dd9737438d67d9368e1e7a3727a35d8a | n/a | 104.21.86.166:443 |
| 2021-02-22 18:55:35 | db64dcb96bca437727e7024a2dfb1f35 | n/a | 104.21.86.166:443 |
| 2021-02-22 18:19:11 | d590b3bc377cb92dcd247df7bad5b261 | n/a | 104.21.86.166:443 |
| 2021-02-22 18:14:52 | d4fbb7c3323939e1d51345d2ca16e72e | 45 / 61 (73.77%)
| 104.21.12.54:443 |
| 2021-02-22 18:14:52 | d4fbb7c3323939e1d51345d2ca16e72e | 45 / 61 (73.77%)
| 172.67.193.175:443 |
| 2021-02-22 18:14:47 | d3d56b611d703fdb87c496eab5f8c12b | 41 / 70 (58.57%)
| 172.67.222.98:443 |
| 2021-02-22 18:09:48 | d3db4fe178f027b85063c6f2069e1a2d | 38 / 69 (55.07%)
| 104.21.86.166:443 |
| 2021-02-22 17:14:52 | c2e1abc1e2f0d7eb44991ffc18ff6d05 | n/a | 104.21.10.190:443 |
| 2021-02-22 16:07:48 | c116f9c730bd3f0b8a89336e9bf04b66 | 50 / 70 (71.43%)
| 104.21.4.81:443 |
| 2021-02-22 16:07:48 | c116f9c730bd3f0b8a89336e9bf04b66 | 50 / 70 (71.43%)
| 172.67.131.206:443 |
| 2021-02-22 15:57:17 | c17fa2b73196e1ca682b520ccb401403 | 41 / 71 (57.75%)
| 104.21.86.166:443 |
# of entries: 100 (max: 100)