-1166656618 | 2024-11-03T07:38:48.346694
445 /
tcp
SMB Status:
Authentication: enabled
SMB Version: 2
Capabilities: raw-mode
852982233 | 2024-10-25T08:34:25.790743
3389 /
tcp
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows Server 2022
OS Build: 10.0.20348
Target Name: WIN-6MOG5M4RB2P
NetBIOS Domain Name: WIN-6MOG5M4RB2P
NetBIOS Computer Name: WIN-6MOG5M4RB2P
DNS Domain Name: WIN-6MOG5M4RB2P
FQDN: WIN-6MOG5M4RB2P
: Administrator
flees. 7
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:fb:ab:58:47:bf:9d:a0:40:18:59:4f:d9:86:af:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=WIN-6MOG5M4RB2P
Validity
Not Before: Oct 10 06:45:59 2024 GMT
Not After : Apr 11 06:45:59 2025 GMT
Subject: CN=WIN-6MOG5M4RB2P
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:e8:a7:6e:af:31:9f:98:c9:f4:6c:9b:f5:dd:2e:
5a:36:a8:b0:b1:a9:fc:8c:dc:c5:d0:cb:77:aa:51:
12:c4:79:53:59:e6:a3:7e:71:d3:65:92:1f:ad:78:
10:fa:1f:6c:06:be:37:c2:18:f1:27:e4:10:4c:97:
e6:7d:06:15:15:f2:d8:b2:7a:0a:08:ef:bc:43:46:
49:be:ef:a5:26:e1:1f:27:66:4a:cd:7a:07:ce:58:
13:1e:5f:36:b1:ec:f5:aa:08:08:ef:00:2f:35:eb:
70:6c:3b:36:8e:48:38:47:13:c9:bf:07:b8:e0:c1:
22:21:81:c0:0c:2c:6e:7e:0e:7b:ff:2c:44:ef:c4:
8d:93:2e:f9:df:fc:ae:c5:8d:01:8a:3d:d5:64:a4:
76:4b:83:26:37:59:9b:1d:a9:bb:a0:1a:05:f6:c5:
71:91:c7:48:5c:03:e3:01:8c:f0:19:df:5e:f0:b4:
08:12:e7:b2:27:5c:c6:ec:34:25:a7:8a:ed:bf:a3:
27:96:9d:0d:22:4c:ea:c8:e0:e9:e8:13:69:3e:42:
61:ee:56:ad:8e:65:ab:f4:c2:cf:7c:a9:91:7d:51:
79:6e:47:d6:1b:d9:10:68:b6:95:1a:e2:8f:d4:c3:
40:fa:50:f9:22:dc:62:0c:9f:cb:1e:aa:f5:05:3a:
ab:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
9b:30:6d:66:6d:5d:fb:a3:5c:37:28:02:f9:3c:ce:89:2f:2b:
7f:af:21:cc:7a:66:40:04:a7:5b:4c:62:5d:48:f6:e9:f6:68:
1e:ae:5e:9e:a6:3d:bf:04:37:9e:f9:d9:1f:04:21:51:2d:c1:
55:94:43:d1:83:54:00:51:75:04:cd:e8:0f:a0:70:66:7b:a3:
e9:28:0b:b0:3b:84:e5:34:3e:52:9c:c1:ac:57:fd:83:23:24:
9a:d8:7d:0b:83:84:dc:1c:7c:07:2a:c4:15:79:32:7a:bc:74:
2a:b0:40:06:f8:ef:6a:b7:d4:d4:85:b7:12:c4:d2:2e:10:0c:
bd:45:42:10:84:01:3b:2e:3a:03:bf:38:52:28:ab:41:fd:93:
e9:98:81:88:00:2f:92:14:5a:dc:fc:ca:83:46:13:c9:bf:33:
22:cb:22:b1:34:2e:5d:1c:bc:c0:4b:47:65:be:87:a5:b0:21:
84:1a:13:79:70:3f:1f:21:68:05:a1:86:c8:5a:bd:e8:20:a5:
de:b9:e1:fa:08:b7:3f:8a:3a:c7:81:ea:6d:7c:b6:99:14:39:
72:d4:a4:36:37:71:b2:f9:a1:03:ab:23:57:5d:fb:12:5b:15:
4d:40:83:d6:27:2d:c4:1e:84:87:98:9c:f6:17:47:59:42:90:
95:fa:33:ce
1489525118 | 2024-11-07T02:31:30.141361
5985 /
tcp
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Thu, 07 Nov 2024 02:31:30 GMT
Connection: close
Content-Length: 315
WinRM NTLM Info:
OS: Windows Server 2022
OS Build: 10.0.20348
Target Name: WIN-6MOG5M4RB2P
NetBIOS Domain Name: WIN-6MOG5M4RB2P
NetBIOS Computer Name: WIN-6MOG5M4RB2P
DNS Domain Name: WIN-6MOG5M4RB2P
FQDN: WIN-6MOG5M4RB2P
