745787141 | 2024-08-20T15:25:39.480858
22 /
tcp
SSH-2.0-OpenSSH_8.0
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQCq+Z29gGdP6R5QYsbITxq4VU2uMzKtRsPErDS4WpylJ0az
5TGK7MXZXMCDzokTfXeeqZ5ZII6yB7MosVAM4iQU5iKBfb/pB9BoV8HQ2srxOQfLl/Ocvb3wufYw
27660+kj543ASNSBUOfgz//cj6KDrhMImoNUTHO9m3J1VWy2FqVutV2QZmgL3++dZ87jmcf2WEfA
DCpgBOrJ84eLB49vu6lR6I1HgN3oLSzR9AhmeSrX4A7LxzNSB9dfG03HF4S6cyatNwtFrbvY3ixe
9b7NoLO2kcfOZt/ut0bHldXbPVGEXiIgcrg/H5vZiktmlXsza1BFEQILFIxa100HpzF4PHJdHJNV
G0sa5cyccECzIwevJTSEZHhdRXhRvRzhMmF/r3y58bEh4rtC2JX/S102y6LC1rFatnKtLgQF9vZ1
FABfAVl8JDbTmWOc9SWNddR8udrji+x7IX2PcvZsIUceGOSW5yFqx5L3e+vc0ol/sDChRp5ht19O
z+9XXArmb8E=
Fingerprint: e5:cd:1e:73:f1:c9:c9:61:49:11:7b:49:5f:d0:23:6f
Kex Algorithms:
curve25519-sha256
curve25519-sha256@libssh.org
ecdh-sha2-nistp256
ecdh-sha2-nistp384
ecdh-sha2-nistp521
diffie-hellman-group-exchange-sha256
diffie-hellman-group14-sha256
diffie-hellman-group16-sha512
diffie-hellman-group18-sha512
diffie-hellman-group-exchange-sha1
diffie-hellman-group14-sha1
Server Host Key Algorithms:
rsa-sha2-512
rsa-sha2-256
ssh-rsa
ecdsa-sha2-nistp256
ssh-ed25519
Encryption Algorithms:
aes256-gcm@openssh.com
chacha20-poly1305@openssh.com
aes256-ctr
aes256-cbc
aes128-gcm@openssh.com
aes128-ctr
aes128-cbc
MAC Algorithms:
hmac-sha2-256-etm@openssh.com
hmac-sha1-etm@openssh.com
umac-128-etm@openssh.com
hmac-sha2-512-etm@openssh.com
hmac-sha2-256
hmac-sha1
umac-128@openssh.com
hmac-sha2-512
Compression Algorithms:
none
zlib@openssh.com
-1345205424 | 2024-09-03T04:41:45.626962
111 /
tcp
Portmap
Program Version Protocol Port
portmapper 4 tcp 111
portmapper 3 tcp 111
portmapper 2 tcp 111
portmapper 4 udp 111
portmapper 3 udp 111
portmapper 2 udp 111
-1345205424 | 2024-08-21T23:27:44.555315
111 /
udp
Portmap
Program Version Protocol Port
portmapper 4 tcp 111
portmapper 3 tcp 111
portmapper 2 tcp 111
portmapper 4 udp 111
portmapper 3 udp 111
portmapper 2 udp 111
-1190133002 | 2024-09-04T08:51:56.615700
3389 /
tcp
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows 10 (version 1607)/Windows Server 2016 (version 1607)
OS Build: 10.0.14393
Target Name: YBPFBJUMUJUOYCF
NetBIOS Domain Name: YBPFBJUMUJUOYCF
NetBIOS Computer Name: YBPFBJUMUJUOYCF
DNS Domain Name: ybpfbjumujuoycf
FQDN: ybpfbjumujuoycf
-administrator
NB
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:dc:49:04:1f:31:2c:90:42:bf:14:aa:ff:84:8b:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ybpfbjumujuoycf
Validity
Not Before: Sep 1 21:43:53 2024 GMT
Not After : Mar 3 21:43:53 2025 GMT
Subject: CN=ybpfbjumujuoycf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:a9:0a:81:a1:e4:f6:72:77:03:db:ed:3f:06:28:
65:2c:5d:b7:d8:75:f0:f5:cd:e1:7b:e9:79:d4:c6:
ee:b5:4d:1e:2d:3a:2f:cd:6d:fe:e0:ed:a0:25:b9:
b8:c0:55:36:9c:85:46:6c:40:8b:4d:00:03:d9:28:
f4:b0:9e:35:60:b9:88:0b:e8:3e:d9:c1:1e:9d:27:
94:2e:1f:7b:db:0e:92:f6:f7:8a:b7:76:4b:6f:ea:
75:f6:dc:6b:9f:73:48:6e:31:38:3c:7c:dd:50:71:
67:4e:d9:6b:98:25:f2:cb:4e:11:23:c6:6c:cc:b6:
1a:37:91:1f:08:68:3e:92:fb:36:83:76:69:f2:d7:
20:b2:ee:8c:b5:6a:d3:61:52:3c:90:62:61:7d:eb:
88:a3:8f:de:4c:cd:0f:c3:7b:b5:74:7f:b9:29:be:
b0:a3:09:a4:c4:5b:d8:14:ba:c7:e6:fe:db:e3:91:
cd:33:d4:aa:69:73:a9:c0:de:96:3e:74:ca:97:5b:
f4:e8:6d:3f:24:0f:8f:b1:87:3d:a1:8f:a0:22:f2:
ef:fd:eb:d3:0a:d4:2f:53:f1:3a:d7:bc:5b:72:17:
62:75:5b:6d:6c:e4:8f:95:08:12:b1:db:e0:e2:d5:
15:c4:da:16:2c:80:16:68:2e:86:45:47:a3:a2:3a:
98:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
4a:3d:23:05:97:b1:ac:e3:14:d0:01:b4:62:78:95:dc:bb:39:
f2:53:4a:73:24:88:44:b5:03:d5:5b:5b:a7:42:2a:c5:59:ea:
9f:fe:72:73:a7:59:99:2c:40:86:a3:83:60:cd:9a:05:4a:63:
8a:46:7f:d8:6c:d9:73:4d:cf:9c:d1:00:7a:e4:ab:ac:e9:49:
86:34:4e:85:61:4c:ce:fa:61:be:bf:37:be:f8:c5:a3:31:88:
16:47:b0:24:d4:a5:57:10:e2:6d:4b:8b:af:2d:b6:dd:b9:a2:
96:02:78:c8:3a:db:d6:a1:c2:85:6f:e3:ba:a5:19:18:94:53:
3b:ff:8a:af:1e:aa:c7:6b:a1:f9:6d:83:44:10:c7:7f:55:05:
93:b6:2e:11:44:60:7c:5d:dd:95:26:20:a1:cd:70:19:09:e6:
2c:29:1d:da:b1:ed:2c:e5:88:ce:67:55:53:0d:00:ba:76:ac:
4f:cc:17:5d:9b:1f:a3:4d:2f:38:cb:d6:b1:13:bb:ce:34:dd:
b8:fe:d5:89:ed:10:bc:16:17:f2:7b:a9:20:f9:f6:0a:c1:a9:
17:6d:1b:be:e4:3a:d9:a6:2f:e6:12:bf:10:d5:33:63:28:1c:
bf:38:a3:9d:6e:a2:54:18:99:1f:3f:2f:61:8d:3c:bb:71:c4:
9a:7e:1a:26
547647208 | 2024-08-23T20:11:31.446000
5901 /
tcp
RFB 003.008
VNC:
Protocol Version: 3.8
Security Types:
2: VNC Authentication
19: VeNCrypt