-1166656618 | 2024-04-27T01:14:27.278767
445 /
tcp
SMB Status:
Authentication: enabled
SMB Version: 2
Capabilities: raw-mode
-684280021 | 2024-04-17T16:07:25.078211
3389 /
tcp
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows 10 (version 1809)/Windows Server 2019 (version 1809)
OS Build: 10.0.17763
Target Name: WIN-LIVFRVQFMKO
NetBIOS Domain Name: WIN-LIVFRVQFMKO
NetBIOS Computer Name: WIN-LIVFRVQFMKO
DNS Domain Name: WIN-LIVFRVQFMKO
FQDN: WIN-LIVFRVQFMKO
A
A
A
A
A
A
A
A
Administrator
Accounting8-1
Sheen
Accounting8-2
no
Win8-1
- Administrator
SES
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:46:75:fe:84:66:63:a3:43:b2:7c:24:80:62:cc:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=WIN-LIVFRVQFMKO
Validity
Not Before: Mar 31 11:13:17 2024 GMT
Not After : Sep 30 11:13:17 2024 GMT
Subject: CN=WIN-LIVFRVQFMKO
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:a7:3f:7c:39:8d:53:06:70:92:17:87:ea:65:21:
84:cc:5c:0c:a0:3e:1a:52:f4:32:f5:cd:8f:5b:74:
30:41:74:a8:df:5a:f3:cb:51:ce:2f:93:db:26:2f:
a7:3c:58:c4:a2:7b:5e:b5:c3:44:88:b5:16:39:a6:
55:d9:b8:11:9e:10:04:cb:4a:71:d8:01:c6:8a:ed:
c1:81:ac:cf:b4:16:e6:21:20:2a:e2:31:59:3b:7f:
09:ad:35:f9:e1:80:7d:f0:ad:7c:50:23:d9:9c:9f:
ae:a0:90:b2:aa:a7:a7:0e:16:d6:d5:a3:48:e7:c5:
c2:38:20:c2:e3:75:37:8f:77:fa:df:84:6f:8f:ae:
82:ac:74:8b:d4:de:a9:2c:55:2f:ae:66:ac:fb:27:
74:44:29:6b:90:41:a2:b1:60:90:8d:73:7c:f5:53:
36:63:c7:db:58:81:b9:d6:e3:86:15:fc:5f:8d:a0:
ff:fd:91:54:5e:e4:c3:ef:79:ae:08:70:fd:38:8a:
9f:a4:6b:18:3f:15:73:39:7b:ba:41:d9:d6:ca:e5:
95:6d:73:25:c0:f7:50:13:bc:18:67:c5:78:76:56:
04:1c:38:e1:73:29:42:a1:0f:14:e0:69:e5:9c:4f:
29:45:4e:9f:3e:ad:a9:bc:f9:9c:b3:6c:a2:32:ec:
4e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
14:e9:c8:20:35:14:a5:1b:1d:82:ce:a6:0a:d3:be:34:e2:09:
8d:05:e6:ae:96:48:fe:6e:f7:98:4e:8a:ea:53:d4:a7:bf:ef:
54:f2:4b:81:62:84:b2:74:dd:45:81:d5:09:34:06:e3:fe:bb:
e0:16:66:23:83:21:36:d5:16:66:2b:87:d4:14:1d:e9:08:1e:
c4:fd:50:02:24:c4:b8:09:bb:73:8a:b8:9f:c4:f9:53:2d:0b:
bb:d9:f5:d5:55:df:5e:f8:ef:7b:ad:d4:b9:a9:cb:2e:0e:c5:
e9:ee:bb:c4:ad:cf:22:45:7a:04:fd:7b:70:02:a8:c4:03:6c:
94:15:71:ad:e0:f8:30:c1:23:3a:77:41:8c:dc:2c:92:cd:b3:
3a:be:29:05:ea:d5:1e:7e:cc:84:68:4a:0d:da:f9:76:13:27:
20:66:ae:97:2a:4c:44:82:8c:01:10:24:bd:31:ec:3a:c9:ce:
e3:cd:17:bd:73:f5:78:4f:6e:d2:7c:96:05:64:b1:b1:45:5b:
77:15:34:9f:4e:71:6e:d3:54:6f:e5:b9:9a:e4:e7:4e:c9:c8:
e8:a3:73:19:52:7f:68:2e:65:a9:b7:a3:da:d0:1c:a4:27:b5:
cf:c4:0d:9a:4a:57:88:5f:f5:c5:8d:5a:17:1e:d7:2c:d0:5e:
3c:1f:df:ee
1489525118 | 2024-04-21T16:18:01.395208
5985 /
tcp
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Sun, 21 Apr 2024 16:18:01 GMT
Connection: close
Content-Length: 315
WinRM NTLM Info:
OS: Windows Server 2019 (version 1809)
OS Build: 10.0.17763
Target Name: WIN-LIVFRVQFMKO
NetBIOS Domain Name: WIN-LIVFRVQFMKO
NetBIOS Computer Name: WIN-LIVFRVQFMKO
DNS Domain Name: WIN-LIVFRVQFMKO
FQDN: WIN-LIVFRVQFMKO
