GeneralInformation

Hostnames	myfin.by
Domains	myfin.by
Country	Belarus
City	Minsk
Organization	LLC Raccoon technology
ISP	Belarusian Cloud Technologies LLC
ASN	AS60330

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443

897585984 | 2024-04-15T00:03:43.963769

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.2
Date: Mon, 15 Apr 2024 00:03:43 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://95.130.85.164/

105372391 | 2024-04-15T05:24:59.054078

443 / tcp

HTTP/1.1 401 Unauthorized
Server: nginx/1.20.2
Date: Mon, 15 Apr 2024 05:24:59 GMT
Content-Type: text/html
Content-Length: 581
Connection: keep-alive
WWW-Authenticate: Basic realm="Restricted"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:cd:81:f7:a6:44:a8:f4:3d:70:cc:75:3c:69:25:59:87:88
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Feb 18 01:33:35 2024 GMT
            Not After : May 18 01:33:34 2024 GMT
        Subject: CN=myfin.by
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d1:d8:b1:43:64:0f:02:c2:59:ae:f7:31:c4:c4:
                    b0:b7:c7:34:8b:13:7a:c6:b6:e5:3d:44:35:a3:19:
                    4f:b8:6a:59:9a:6c:f7:b6:a6:ed:2d:e5:b1:bc:67:
                    91:af:9d:09:b8:2f:20:66:dd:a5:24:47:b9:ca:01:
                    fb:60:a0:ed:df:eb:ac:87:56:5e:44:5e:34:ee:6b:
                    1e:46:a0:c0:f9:a2:8d:2e:0b:c8:db:66:3d:5f:ae:
                    78:f1:f4:40:89:7b:9f:01:16:e0:9e:c7:bd:2b:a4:
                    52:0a:3b:58:f0:19:f7:13:b5:c0:1c:77:d8:14:ef:
                    f5:6e:4a:2f:91:27:c6:2b:96:bd:cd:45:41:db:e3:
                    23:9c:3d:b5:ed:dd:ad:f4:6d:d0:8e:dd:cf:d4:fc:
                    36:4c:ac:95:10:e3:41:c7:4e:ff:6e:54:68:a0:ab:
                    51:0b:44:7f:e2:e2:e1:46:ec:c8:06:2d:53:59:75:
                    49:10:fc:9e:16:a0:54:18:9c:23:aa:e0:b6:ef:70:
                    2e:64:65:0d:82:5a:05:70:11:70:f3:c5:1b:c9:11:
                    54:09:c8:98:ca:93:40:57:af:31:f7:d9:75:11:7d:
                    b4:14:ca:04:73:de:f8:01:34:17:25:25:a7:a7:8f:
                    5f:b5:4d:b4:95:bc:2f:ba:9d:f6:5d:76:6d:9a:91:
                    e1:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                43:D1:45:F5:1C:47:0E:80:C6:29:4C:55:2E:6E:68:D3:28:E3:1C:31
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.myfin.by, DNS:myfin.by
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Feb 18 02:33:35.269 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:A5:D5:14:C5:C5:69:4E:F0:A6:46:E9:
                                43:DF:2F:AA:D2:AF:72:CA:EF:C8:EF:64:2A:67:1C:4B:
                                93:5F:BB:4F:30:02:21:00:E0:F8:51:1F:78:B8:59:0A:
                                F3:86:E6:D7:5E:19:83:52:DA:8C:75:9E:19:2A:02:26:
                                B0:5D:6E:DE:D6:07:23:3D
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Feb 18 02:33:35.275 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:E6:9A:6E:2E:B0:94:CA:DF:92:50:E2:
                                B0:1F:96:02:BF:81:16:3E:03:4C:B2:EC:CE:0F:5E:E9:
                                F0:B2:88:53:0E:02:21:00:CB:61:69:DF:D7:7E:6C:97:
                                4D:A0:C2:FC:8B:08:EF:AF:A5:C9:28:CD:1B:DC:31:AA:
                                03:9B:6F:38:03:36:3C:5F
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        ac:0b:b7:57:d9:8d:7b:6a:8b:63:7f:24:d2:45:53:1c:77:4e:
        de:48:98:bd:34:1a:ff:6c:5f:3c:21:a9:5c:69:6a:55:03:6b:
        f8:76:29:6d:e5:24:df:fd:9a:1d:a7:ca:f6:19:78:b3:c6:19:
        52:92:4a:77:c7:62:1b:a2:9f:4c:e4:1b:14:4c:40:bd:ac:9d:
        c7:ec:93:e4:a3:b9:fd:93:d6:06:fe:9a:a8:c7:af:cc:9a:6e:
        fb:17:62:0a:3a:6c:49:40:5f:06:a5:c3:93:df:4a:af:2b:b9:
        ce:e1:88:ec:5e:27:2f:79:f4:3b:41:09:03:fc:7f:23:18:4c:
        2b:83:1d:6c:8a:ac:23:89:e7:2a:92:5c:d4:00:d4:33:a7:bd:
        50:f8:9f:83:62:06:89:4e:e1:38:08:53:17:68:12:9a:18:71:
        4a:5e:9c:9a:f8:c4:a5:dd:a7:72:12:21:27:7c:ec:b5:f1:7f:
        df:f9:fc:6e:cf:ed:e8:30:35:fd:a6:66:da:fd:eb:ef:41:e0:
        8b:48:32:d4:d1:db:2a:3c:85:17:58:90:52:da:f2:cb:7d:b6:
        8d:57:14:95:9e:5d:3c:02:0b:7d:a8:08:95:82:46:11:11:55:
        78:f2:77:ef:dd:cd:e0:45:ed:e1:db:2c:7d:62:95:4e:80:95:
        8b:4c:8f:d4

95.130.85.164

Last Seen: 2024-04-15

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

897585984 | 2024-04-15T00:03:43.963769
80 / tcp

nginx1.20.2

105372391 | 2024-04-15T05:24:59.054078
443 / tcp

nginx1.20.2

Products

Pricing

Contact Us

95.130.85.164

Last Seen: 2024-04-15

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

897585984 | 2024-04-15T00:03:43.963769 80 / tcp

nginx1.20.2

105372391 | 2024-04-15T05:24:59.054078 443 / tcp

nginx1.20.2

Products

Pricing

Contact Us

897585984 | 2024-04-15T00:03:43.963769
80 / tcp

105372391 | 2024-04-15T05:24:59.054078
443 / tcp