JA3 Fingerprints
You can find further information about the JA3 fingerprint ffefafdb86336d057eda5fdf02b3d5ce, including the corresponding malware samples as well as the associated botnet C&Cs.
Database Entry
| JA3 Fingerprint: | ffefafdb86336d057eda5fdf02b3d5ce |
|---|---|
| First seen: | 2019-10-26 07:31:49 UTC |
| Last seen: | 2020-07-25 00:14:09 UTC |
| Status: | Blacklisted |
| Malware samples: | 216 |
| Destination IPs: | 1 |
| Malware: | Tofsee  |
| Listing date: | 2020-01-09 14:30:05 |
Malware Samples
The table below documents all malware samples associated with this JA3 Fingerprint.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Botnet C&C (IP:port) |
|---|---|---|---|
| 2020-07-25 00:14:09 | ab42b14a93386100a6d3c22c58bf65f6 |  39 / 71 (54.93%)
| 87.250.250.22:443 |
| 2020-07-25 00:14:09 | ab42b14a93386100a6d3c22c58bf65f6 | 39 / 71 (54.93%)
| 87.250.250.22:443 |
| 2020-06-29 02:39:09 | ab37b193771e8c4535b64ebbe0f7993c | 47 / 72 (65.28%)
| 87.250.250.22:443 |
| 2020-06-29 02:39:09 | ab37b193771e8c4535b64ebbe0f7993c | 47 / 72 (65.28%)
| 87.250.250.22:443 |
| 2020-06-28 23:57:46 | a83933ec31b7222ae33a469c45b4da9d | 44 / 72 (61.11%)
| 87.250.250.22:443 |
| 2020-06-28 23:57:46 | a83933ec31b7222ae33a469c45b4da9d | 44 / 72 (61.11%)
| 87.250.250.22:443 |
| 2020-06-28 21:41:49 | a2fa9719e7360b92020071de01a4ead6 | n/a | 87.250.250.22:443 |
| 2020-06-28 21:41:49 | a2fa9719e7360b92020071de01a4ead6 | n/a | 87.250.250.22:443 |
| 2020-06-28 19:43:04 | 904f2390d3a4d10eeb19447b2e9e485c | 37 / 72 (51.39%)
| 87.250.250.22:443 |
| 2020-06-28 19:43:04 | 904f2390d3a4d10eeb19447b2e9e485c | 37 / 72 (51.39%)
| 87.250.250.22:443 |
| 2020-06-28 14:48:19 | 2f9d49672caecf4678107dd141929d32 | 48 / 71 (67.61%)
| 87.250.250.22:443 |
| 2020-06-28 14:48:19 | 2f9d49672caecf4678107dd141929d32 | 48 / 71 (67.61%)
| 87.250.250.22:443 |
| 2020-06-28 14:25:49 | 2e4f9a841ba39bfe8f179d5a51f1763e | 45 / 71 (63.38%)
| 87.250.250.22:443 |
| 2020-06-28 14:25:49 | 2e4f9a841ba39bfe8f179d5a51f1763e | 45 / 71 (63.38%)
| 87.250.250.22:443 |
| 2020-06-28 12:02:24 | 25c6518c27bddeb20d75722a5cd7478e | 40 / 73 (54.79%)
| 87.250.250.22:443 |
| 2020-06-28 12:02:24 | 25c6518c27bddeb20d75722a5cd7478e | 40 / 73 (54.79%)
| 87.250.250.22:443 |
| 2020-06-28 09:20:55 | 1d52c78c55e79394792d67acb028d86a | 49 / 72 (68.06%)
| 87.250.250.22:443 |
| 2020-06-28 09:20:55 | 1d52c78c55e79394792d67acb028d86a | 49 / 72 (68.06%)
| 87.250.250.22:443 |
| 2020-06-28 02:36:39 | 088c33298b69677f9be20e8c97342336 | 49 / 72 (68.06%)
| 87.250.250.22:443 |
| 2020-06-28 02:36:39 | 088c33298b69677f9be20e8c97342336 | 49 / 72 (68.06%)
| 87.250.250.22:443 |
| 2020-06-28 01:11:30 | 044be4366976a7f0f82572f998fea8b1 | 49 / 74 (66.22%)
| 87.250.250.22:443 |
| 2020-06-28 01:11:30 | 044be4366976a7f0f82572f998fea8b1 | 49 / 74 (66.22%)
| 87.250.250.22:443 |
| 2020-06-27 23:41:47 | 040a89540e3eb35355fff47775577056 | 44 / 73 (60.27%)
| 87.250.250.22:443 |
| 2020-06-27 23:41:47 | 040a89540e3eb35355fff47775577056 | 44 / 73 (60.27%)
| 87.250.250.22:443 |
| 2020-06-27 22:57:51 | 01662a8183933774c4683405d9e59926 | 44 / 72 (61.11%)
| 87.250.250.22:443 |
| 2020-06-27 22:57:51 | 01662a8183933774c4683405d9e59926 | 44 / 72 (61.11%)
| 87.250.250.22:443 |
| 2020-06-27 21:56:44 | abd4b505ef79f27e304b7c5620b5d30f | 44 / 73 (60.27%)
| 87.250.250.22:443 |
| 2020-06-27 21:56:44 | abd4b505ef79f27e304b7c5620b5d30f | 44 / 73 (60.27%)
| 87.250.250.22:443 |
| 2020-06-27 21:46:04 | ac46ae93a3ee6a471c96a7110ead1116 | 42 / 73 (57.53%)
| 87.250.250.22:443 |
| 2020-06-27 21:46:04 | ac46ae93a3ee6a471c96a7110ead1116 | 42 / 73 (57.53%)
| 87.250.250.22:443 |
| 2020-06-26 23:07:28 | 110eb97222da8732c72c87659dd6d30d | 53 / 73 (72.60%)
| 87.250.250.22:443 |
| 2020-06-26 23:07:28 | 110eb97222da8732c72c87659dd6d30d | 53 / 73 (72.60%)
| 87.250.250.22:443 |
| 2020-06-26 16:00:28 | a2495891cd198c95d448127926f95924 | 45 / 73 (61.64%)
| 87.250.250.22:443 |
| 2020-06-26 16:00:28 | a2495891cd198c95d448127926f95924 | 45 / 73 (61.64%)
| 87.250.250.22:443 |
| 2020-06-26 14:44:02 | 9f72b4f85ec7f2ae6f4b30ed08830e6a | 38 / 74 (51.35%)
| 87.250.250.22:443 |
| 2020-06-26 14:44:02 | 9f72b4f85ec7f2ae6f4b30ed08830e6a | 38 / 74 (51.35%)
| 87.250.250.22:443 |
| 2020-06-26 14:16:54 | 9d119e6aa5c3f7adb2abdd231bd6992b | 49 / 74 (66.22%)
| 87.250.250.22:443 |
| 2020-06-26 14:16:54 | 9d119e6aa5c3f7adb2abdd231bd6992b | 49 / 74 (66.22%)
| 87.250.250.22:443 |
| 2020-06-26 14:10:09 | 9ccb0f26bef0707bdf02e72d6d31ac5c | 44 / 74 (59.46%)
| 87.250.250.22:443 |
| 2020-06-26 14:10:09 | 9ccb0f26bef0707bdf02e72d6d31ac5c | 44 / 74 (59.46%)
| 87.250.250.22:443 |
| 2020-06-26 13:43:42 | 9aa7da2842bda3f1a17cf1a2a97d0e9c | 47 / 72 (65.28%)
| 87.250.250.22:443 |
| 2020-06-26 13:43:42 | 9aa7da2842bda3f1a17cf1a2a97d0e9c | 47 / 72 (65.28%)
| 87.250.250.22:443 |
| 2020-06-26 11:50:26 | 9141f6e8ca1b9b774eab72134d950ae5 | 31 / 72 (43.06%)
| 87.250.250.22:443 |
| 2020-06-26 11:50:26 | 9141f6e8ca1b9b774eab72134d950ae5 | 31 / 72 (43.06%)
| 87.250.250.22:443 |
| 2020-06-26 11:42:45 | 90cc729ffbfa93996e708437954e427f | 40 / 73 (54.79%)
| 87.250.250.22:443 |
| 2020-06-26 11:42:45 | 90cc729ffbfa93996e708437954e427f | 40 / 73 (54.79%)
| 87.250.250.22:443 |
| 2020-06-26 11:30:30 | 8fcd0c491909c23995838a12c2093672 | 45 / 73 (61.64%)
| 87.250.250.22:443 |
| 2020-06-26 11:30:30 | 8fcd0c491909c23995838a12c2093672 | 45 / 73 (61.64%)
| 87.250.250.22:443 |
| 2020-06-26 10:58:09 | 8d2bf866e1cb2920d507f7fdf907919d | 52 / 73 (71.23%)
| 87.250.250.22:443 |
| 2020-06-26 10:58:09 | 8d2bf866e1cb2920d507f7fdf907919d | 52 / 73 (71.23%)
| 87.250.250.22:443 |
| 2020-06-26 10:08:11 | 88f767ca0ee519a416a43025ea4ae00e | 47 / 74 (63.51%)
| 87.250.250.22:443 |
| 2020-06-26 10:08:11 | 88f767ca0ee519a416a43025ea4ae00e | 47 / 74 (63.51%)
| 87.250.250.22:443 |
| 2020-06-26 09:43:48 | 878cd909faa553c52d10eec5eea0ed7d | 44 / 73 (60.27%)
| 87.250.250.22:443 |
| 2020-06-26 09:43:48 | 878cd909faa553c52d10eec5eea0ed7d | 44 / 73 (60.27%)
| 87.250.250.22:443 |
| 2020-06-26 09:33:56 | 86e4f8f1bb1992f0d9533f57af8a6196 | 45 / 74 (60.81%)
| 87.250.250.22:443 |
| 2020-06-26 09:33:56 | 86e4f8f1bb1992f0d9533f57af8a6196 | 45 / 74 (60.81%)
| 87.250.250.22:443 |
| 2020-06-26 07:42:52 | 3db29510963233ca740957bca7204a47 | 49 / 74 (66.22%)
| 87.250.250.22:443 |
| 2020-06-26 07:42:52 | 3db29510963233ca740957bca7204a47 | 49 / 74 (66.22%)
| 87.250.250.22:443 |
| 2020-06-26 07:37:11 | 26c79e6a10217fd183be6a9c81c893f0 | 44 / 68 (64.71%)
| 87.250.250.22:443 |
| 2020-06-26 07:37:11 | 26c79e6a10217fd183be6a9c81c893f0 | 44 / 68 (64.71%)
| 87.250.250.22:443 |
| 2020-06-26 07:18:37 | 3b9af528bf2193ef27d2a8f627b7a7ef | 46 / 73 (63.01%)
| 87.250.250.22:443 |
| 2020-06-26 07:18:37 | 3b9af528bf2193ef27d2a8f627b7a7ef | 46 / 73 (63.01%)
| 87.250.250.22:443 |
| 2020-06-26 07:17:55 | 2067cd66f1ea6df62868d4c2dbd35b3d | 41 / 73 (56.16%)
| 87.250.250.22:443 |
| 2020-06-26 07:17:55 | 2067cd66f1ea6df62868d4c2dbd35b3d | 41 / 73 (56.16%)
| 87.250.250.22:443 |
| 2020-06-26 07:10:09 | 288cdba34601be0edc5c06d271ace832 | 49 / 74 (66.22%)
| 87.250.250.22:443 |
| 2020-06-26 07:10:09 | 288cdba34601be0edc5c06d271ace832 | 49 / 74 (66.22%)
| 87.250.250.22:443 |
| 2020-06-25 22:09:57 | 173ea84d6f2b6fac96efa9b69a31056d | 44 / 73 (60.27%)
| 87.250.250.22:443 |
| 2020-06-25 22:09:57 | 173ea84d6f2b6fac96efa9b69a31056d | 44 / 73 (60.27%)
| 87.250.250.22:443 |
| 2020-06-25 19:47:00 | 070b5f96822729d572a1a690ba4cdc23 | 48 / 74 (64.86%)
| 87.250.250.22:443 |
| 2020-06-25 19:47:00 | 070b5f96822729d572a1a690ba4cdc23 | 48 / 74 (64.86%)
| 87.250.250.22:443 |
| 2020-06-25 13:14:47 | 7e91f6c58840d22df9278cb00a96c60c | 41 / 67 (61.19%)
| 87.250.250.22:443 |
| 2020-06-25 13:14:47 | 7e91f6c58840d22df9278cb00a96c60c | 41 / 67 (61.19%)
| 87.250.250.22:443 |
| 2020-06-25 11:00:04 | 7128d615c570558e48a016438512612d | 46 / 74 (62.16%)
| 87.250.250.22:443 |
| 2020-06-25 11:00:04 | 7128d615c570558e48a016438512612d | 46 / 74 (62.16%)
| 87.250.250.22:443 |
| 2020-06-25 10:59:33 | 71c9a9dbcf6531635511bbd909bbdad2 | 47 / 74 (63.51%)
| 87.250.250.22:443 |
| 2020-06-25 10:59:33 | 71c9a9dbcf6531635511bbd909bbdad2 | 47 / 74 (63.51%)
| 87.250.250.22:443 |
| 2020-06-25 10:51:57 | 7186cd4a6e8e08ede9e07b672d9f2bbc | 49 / 73 (67.12%)
| 87.250.250.22:443 |
| 2020-06-25 10:51:57 | 7186cd4a6e8e08ede9e07b672d9f2bbc | 49 / 73 (67.12%)
| 87.250.250.22:443 |
| 2020-06-25 10:24:02 | 6f0ed58bb85df2c82f959b8727094aeb | 50 / 73 (68.49%)
| 87.250.250.22:443 |
| 2020-06-25 10:24:02 | 6f0ed58bb85df2c82f959b8727094aeb | 50 / 73 (68.49%)
| 87.250.250.22:443 |
| 2020-06-25 08:41:56 | 65f1bd3547814ee716d08fcc829dbd1c | 45 / 74 (60.81%)
| 87.250.250.22:443 |
| 2020-06-25 08:41:56 | 65f1bd3547814ee716d08fcc829dbd1c | 45 / 74 (60.81%)
| 87.250.250.22:443 |
| 2020-06-25 08:37:02 | 65372bc6ebd15ba611463d03831e2c9e | 49 / 74 (66.22%)
| 87.250.250.22:443 |
| 2020-06-25 08:37:02 | 65372bc6ebd15ba611463d03831e2c9e | 49 / 74 (66.22%)
| 87.250.250.22:443 |
| 2020-06-25 08:28:04 | 6433de7ce840d126f5e1e6fc4a11d932 | 51 / 73 (69.86%)
| 87.250.250.22:443 |
| 2020-06-25 08:28:04 | 6433de7ce840d126f5e1e6fc4a11d932 | 51 / 73 (69.86%)
| 87.250.250.22:443 |
| 2020-06-25 08:14:20 | 6387aa03f2d7e44d0d2c76d49ac3213a | 46 / 74 (62.16%)
| 87.250.250.22:443 |
| 2020-06-25 08:14:20 | 6387aa03f2d7e44d0d2c76d49ac3213a | 46 / 74 (62.16%)
| 87.250.250.22:443 |
| 2020-06-25 08:00:46 | 625964abb316f2d1bd5c9a3c88baf443 | 48 / 73 (65.75%)
| 87.250.250.22:443 |
| 2020-06-25 08:00:46 | 625964abb316f2d1bd5c9a3c88baf443 | 48 / 73 (65.75%)
| 87.250.250.22:443 |
| 2020-06-25 07:49:33 | 6165c03ba4a7d9a6abb6ddd5b8eb69bd | 45 / 73 (61.64%)
| 87.250.250.22:443 |
| 2020-06-25 07:49:33 | 6165c03ba4a7d9a6abb6ddd5b8eb69bd | 45 / 73 (61.64%)
| 87.250.250.22:443 |
| 2020-06-25 07:43:30 | 60b13febc9aafab4dafe749daca50aed | 49 / 73 (67.12%)
| 87.250.250.22:443 |
| 2020-06-25 07:43:30 | 60b13febc9aafab4dafe749daca50aed | 49 / 73 (67.12%)
| 87.250.250.22:443 |
| 2020-06-25 07:38:38 | 602fea1e45422f55dbb5a61066bb3410 | 45 / 74 (60.81%)
| 87.250.250.22:443 |
| 2020-06-25 07:38:38 | 602fea1e45422f55dbb5a61066bb3410 | 45 / 74 (60.81%)
| 87.250.250.22:443 |
| 2020-06-25 07:11:19 | 5dc9c7fa960255f99977e6ef484d017c | 47 / 74 (63.51%)
| 87.250.250.22:443 |
| 2020-06-25 07:11:19 | 5dc9c7fa960255f99977e6ef484d017c | 47 / 74 (63.51%)
| 87.250.250.22:443 |
| 2020-06-25 05:48:09 | 5487d6ed4a373309397eecb2b205731d | 46 / 74 (62.16%)
| 87.250.250.22:443 |
| 2020-06-25 05:48:09 | 5487d6ed4a373309397eecb2b205731d | 46 / 74 (62.16%)
| 87.250.250.22:443 |
# of entries: 100 (max: 100)