Hostnames |
scada.coffeygroup.com www.scada.coffeygroup.com |
Domains | coffeygroup.com |
Cloud Provider | Azure |
Cloud Region | northeurope |
Cloud Service | AzureCloud |
Country | Ireland |
City | Dublin |
Organization | Microsoft Corporation |
ISP | Microsoft Corporation |
ASN | AS8075 |
1489525118 | 2024-03-31T13:52:39.891550443 / tcp
HTTP/1.1 404 Not Found Content-Type: text/html; charset=us-ascii Server: Microsoft-HTTPAPI/2.0 Date: Sun, 31 Mar 2024 13:52:39 GMT Connection: close Content-Length: 315
Certificate: Data: Version: 3 (0x2) Serial Number: 30:1a:75:83:41:4c:61:3a:d8:36:de:23:fc:03:05:fc Signature Algorithm: sha256WithRSAEncryption Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA Validity Not Before: Nov 27 00:00:00 2023 GMT Not After : Nov 26 23:59:59 2024 GMT Subject: CN=scada.coffeygroup.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:f0:e6:07:25:c5:52:d5:7a:76:ec:38:57:01:b6: 20:b3:30:58:26:b0:f2:2f:93:98:fe:78:fc:e7:46: 17:53:25:46:47:9f:1b:17:0c:2e:8a:40:47:3c:6e: e6:e9:0c:27:d2:3b:95:66:7b:84:9b:da:a4:df:f2: 84:4e:73:2c:01:7f:0f:1a:ea:9b:44:65:5c:07:11: 31:db:da:07:f1:67:9c:8e:31:9f:ee:6d:35:46:22: df:d6:ea:ed:9b:78:b4:5d:ae:aa:78:04:f6:5f:9a: 7c:2f:22:0f:38:b4:cf:81:19:fd:7e:c2:83:05:5c: 98:98:50:0d:dc:e1:e8:b7:eb:53:72:bb:17:b6:71: 72:ba:97:ab:a9:94:94:0a:61:8b:a0:c5:fb:4c:3f: dd:9d:01:99:96:f9:25:0e:95:07:46:f4:43:08:74: c9:ca:32:0c:80:4c:45:eb:d1:52:c3:cf:b6:80:31: 14:75:a5:dd:83:db:8c:f0:3f:31:21:64:0e:1f:5c: c3:38:3b:97:22:01:e1:9a:48:e1:61:05:1d:a0:1b: c4:a5:0a:66:94:82:fd:4a:5b:e2:df:c7:86:91:d8: b3:36:74:1a:cf:f1:84:90:43:13:b2:14:46:fe:09: 75:8a:a4:b7:d0:a0:d0:68:e8:67:bc:18:61:ac:b8: a4:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1 X509v3 Subject Key Identifier: E3:4F:09:6A:64:DA:4E:7C:B5:9F:99:9B:59:F6:25:54:90:F9:6A:D8 X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.7 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 Authority Information Access: CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt OCSP - URI:http://ocsp.sectigo.com X509v3 Subject Alternative Name: DNS:scada.coffeygroup.com, DNS:www.scada.coffeygroup.com CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Nov 27 10:04:52.985 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:2A:FA:64:BB:88:10:A6:FD:95:39:99:33: 7C:03:4E:3B:88:D3:ED:B3:AD:0E:3C:76:3F:F9:14:3F: 0D:C1:47:51:02:21:00:F4:FF:08:1C:6A:46:57:F8:E3: 1B:5C:30:52:93:72:D4:1C:D4:E4:16:A7:93:52:58:34: D4:90:B0:8C:AD:C7:B1 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12: ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E Timestamp : Nov 27 10:04:53.115 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:80:43:A9:3B:C4:7F:F1:DE:D4:3E:C7: 76:56:CA:52:4E:1C:75:CA:EA:51:CD:6F:0A:88:28:B3: A1:FF:33:55:9B:02:21:00:91:FA:90:C5:C4:AF:2B:B2: B3:9F:68:E1:E2:73:26:D3:9E:3D:13:0F:74:2E:56:B6: BB:02:CE:B8:F2:5A:E9:11 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Nov 27 10:04:53.028 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:D4:C5:44:A4:2D:3D:42:53:0C:F6:3C: F6:6D:CD:13:73:3D:ED:02:EC:FB:12:13:1B:FE:78:5D: 77:E3:E7:7F:A9:02:21:00:AA:3B:ED:65:31:96:84:F4: BB:4C:89:FB:5A:60:99:55:27:7B:30:71:BC:96:65:D2: 14:4D:C7:33:5F:CB:23:51 Signature Algorithm: sha256WithRSAEncryption Signature Value: 4c:63:7d:ef:b0:07:72:04:27:96:0c:98:41:c7:1a:ca:2c:0c: bb:63:0c:da:79:6f:63:7f:79:80:af:ff:28:d5:49:fd:51:e0: cb:f8:1d:2f:b8:07:d2:6a:83:07:0d:2d:41:9f:e4:d5:fc:59: a3:10:e4:c3:09:7c:8b:15:90:92:7c:94:e1:cc:04:7f:44:07: 9d:05:02:63:00:fd:92:0a:4b:6f:a3:ec:f7:d5:84:67:3c:99: 28:1b:14:b6:ae:bc:98:8a:08:f8:0f:a4:1d:13:6f:93:ca:ff: 5f:6e:62:8f:7d:84:48:02:e7:f2:fe:32:89:cb:46:1e:1f:a8: 4e:09:d2:8f:5e:1b:df:77:97:c3:4a:4c:7e:b3:f0:5b:e4:bb: be:9a:53:78:b1:b5:e8:8c:69:06:c2:bb:94:51:97:47:9c:ad: 03:b3:cd:b5:e0:35:67:0c:28:b4:b2:0c:ca:d9:1f:f5:fc:8a: aa:52:7c:d8:78:c0:78:63:64:0f:2a:06:f7:00:a9:aa:46:4a: 81:fe:c2:9a:0e:86:ff:ba:d4:ba:8d:fa:af:e2:b6:64:08:44: df:67:a8:3b:76:e0:78:df:8e:24:66:cc:b7:a6:6d:b0:05:2f: 49:fa:1f:ca:15:45:2a:9d:4e:05:c1:0f:92:4a:0d:9c:27:b9: 26:5d:c0:dd
1340712893 | 2024-04-24T09:46:18.4159941194 / udp
@\xbb\xe2h\xd97\x90\xce\xa9\x01\x00\x00\x00\x00\xd9\xce:\xbe\xf6\x98\xa5m\x00\x00\x00\x00
916452194 | 2024-04-19T16:17:26.5887353389 / tcp
Remote Desktop Protocol \x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00 Remote Desktop Protocol NTLM Info: OS: Windows 10 (version 1809)/Windows Server 2019 (version 1809) OS Build: 10.0.17763 Target Name: COFFEYGROUP NetBIOS Domain Name: COFFEYGROUP NetBIOS Computer Name: SCADA DNS Domain Name: coffeygroup.com DNS Tree Name: coffeygroup.com FQDN: Scada.coffeygroup.com
Certificate: Data: Version: 3 (0x2) Serial Number: 50:3c:00:21:4c:f5:c2:9d:4c:e0:0c:4c:45:7b:6f:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=Scada.coffeygroup.com Validity Not Before: Jan 31 04:54:19 2024 GMT Not After : Aug 1 04:54:19 2024 GMT Subject: CN=Scada.coffeygroup.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:bf:e8:f1:3d:bb:6e:3a:07:06:51:ed:85:f4:36: b0:f3:9f:82:d9:5a:fe:e1:eb:6d:37:c9:53:af:e8: f0:39:2e:30:96:42:6e:8f:14:be:48:02:ac:07:67: 67:48:2d:d0:d1:eb:bf:33:b2:d9:5d:aa:84:94:34: a9:38:8d:c1:b9:72:93:7e:ae:29:31:a6:27:4f:32: ac:10:6e:a3:43:fb:52:fa:ba:af:ff:16:c1:ec:fd: 6f:0f:02:1b:ae:e1:38:00:b1:0c:0d:78:78:d0:da: 66:5d:70:2a:fc:09:4e:60:a4:fd:29:e4:cf:65:62: 80:46:8d:43:7d:68:c7:c4:36:a6:ad:52:bd:39:ec: 09:f6:14:88:cd:ce:e3:1b:da:c2:fa:b3:ed:7a:8b: 54:42:e9:52:0c:7c:ee:d1:f4:85:2c:6c:53:ca:b3: c4:1a:d7:e3:da:07:b0:a8:b7:dc:f9:1a:c9:85:75: d5:83:13:68:36:3c:a9:b7:72:60:52:fa:99:55:f5: 91:65:aa:2b:bc:9a:b9:20:33:fa:cc:ae:c0:73:c8: df:4d:26:87:c9:d2:08:2e:1a:43:d9:2f:3b:d0:f5: 21:d5:a8:5b:de:45:b4:ae:e9:e6:a1:33:0d:c1:fa: 7d:93:20:c5:e4:eb:0c:15:69:c0:f0:e4:1c:99:ab: 7d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication X509v3 Key Usage: Key Encipherment, Data Encipherment Signature Algorithm: sha256WithRSAEncryption Signature Value: 4c:de:7f:e4:57:56:0e:a4:40:c9:c7:29:4c:35:e5:79:57:79: c5:68:20:87:96:23:3b:ac:c5:bd:99:69:ba:0a:11:11:fd:3c: 93:8b:51:dc:3b:d2:9e:42:00:15:c4:55:2a:f7:93:34:d8:a5: e4:44:f8:6d:60:a9:51:42:06:e8:a3:6e:a4:78:b2:3f:24:01: 4d:7e:b0:39:0c:55:c2:26:24:a3:e9:ba:ce:a3:3a:bb:09:2d: ef:55:48:ac:46:e8:b8:f8:71:14:f8:97:e5:eb:a9:e0:2d:6f: cf:6b:a8:d0:d8:92:ba:4d:11:b5:24:bd:74:35:71:ff:05:c1: ac:cd:9d:39:5d:44:44:ff:b8:73:07:38:fd:04:89:e0:03:1c: ed:c3:72:de:7f:4e:65:a7:5d:44:ad:76:9e:2b:25:cb:d4:57: 83:bf:71:00:8c:eb:7f:d5:1a:16:79:27:8d:2d:ef:9a:ed:a1: 46:44:42:f4:c1:f5:ab:6b:c8:c4:6a:63:8d:99:d3:47:34:7a: 63:a2:b9:8d:07:68:36:28:27:ff:24:39:65:a4:64:4c:39:de: 2a:36:dc:14:c5:7f:6a:30:61:2e:cc:2b:0c:92:47:ca:a7:da: ae:91:26:c8:72:5f:92:d3:b9:62:61:79:4b:6c:6a:7a:e0:be: b1:46:bf:2a