445693763 | 2024-09-13T23:21:44.055108
80 /
tcp
HTTP/1.1 403 Forbidden
Server: Microsoft-IIS/10.0
Date: Fri, 13 Sep 2024 23:21:43 GMT
Content-Length: 0
738979652 | 2024-09-13T15:20:01.813904
443 /
tcp
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache
Pragma: no-cache
Location: https://50.195.49.125/owa/
Server: Microsoft-IIS/10.0
X-FEServer: CAM-SRV01
X-RequestId: d1191f9b-932c-41fa-ab60-555f0d075267
Date: Fri, 13 Sep 2024 15:19:50 GMT
Connection: close
Content-Length: 0
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3915933502186778182 (0x365830c5d1e4ee46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http:\/\/certs.godaddy.com\/repository\/, CN=Go Daddy Secure Certificate Authority - G2
Validity
Not Before: Dec 14 20:33:51 2023 GMT
Not After : Jan 7 18:25:28 2025 GMT
Subject: CN=mail.cubic-corp.us
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:c1:fa:20:7c:6c:0b:e6:55:20:38:b0:3a:1e:24:
a8:ed:1f:87:8e:f7:9a:0c:30:d0:16:2b:34:9a:61:
a3:f7:b7:c2:e0:f0:3c:b4:9f:86:05:3f:fd:63:57:
fb:47:99:98:b7:c2:e9:54:2d:38:23:4f:9f:18:cc:
7f:71:98:87:e2:a3:c5:0d:be:0c:70:a8:8b:b0:d9:
6f:be:73:3d:33:3e:a9:a8:f7:9b:96:20:d2:da:9b:
7d:30:b8:ad:6f:18:39:59:9b:d2:dc:8e:5e:ea:b6:
77:cb:e4:95:bd:04:26:3b:11:e1:89:be:04:ea:78:
82:b9:c3:95:b8:37:4b:b4:6b:28:57:73:b9:f2:1f:
2e:af:8f:92:03:6e:83:0e:db:94:ad:18:dd:e3:96:
c0:42:bc:07:5f:77:d0:81:d1:de:28:63:92:9e:eb:
a5:cb:f6:45:e6:99:de:24:a7:c4:79:94:fc:56:2d:
fc:25:dd:c1:80:35:48:e1:2b:21:be:e0:94:08:9c:
a2:d4:db:07:9f:a5:43:f2:56:fb:a8:6e:e7:79:89:
fd:fc:9b:3a:6f:a1:43:e8:73:d9:8d:41:18:45:3f:
b3:1a:24:42:3e:a5:e2:01:1f:db:3f:50:e1:31:f2:
b4:59:d5:23:b1:f3:e5:12:fb:18:54:6d:28:ff:23:
97:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 CRL Distribution Points:
Full Name:
URI:http://crl.godaddy.com/gdig2s1-13558.crl
X509v3 Certificate Policies:
Policy: 2.16.840.1.114413.1.7.23.1
CPS: http://certificates.godaddy.com/repository/
Policy: 2.23.140.1.2.1
Authority Information Access:
OCSP - URI:http://ocsp.godaddy.com/
CA Issuers - URI:http://certificates.godaddy.com/repository/gdig2.crt
X509v3 Authority Key Identifier:
40:C2:BD:27:8E:CC:34:83:30:A2:33:D7:FB:6C:B3:F0:B4:2C:80:CE
X509v3 Subject Alternative Name:
DNS:cubic-corp.us, DNS:www.mail.cubic-corp.us, DNS:cam-srv01.cubic-corp.us, DNS:autodiscover.cubic-corp.us, DNS:mail.cubic-corp.us
X509v3 Subject Key Identifier:
1B:43:2B:D8:01:71:05:0F:95:E5:7D:5C:63:A1:BD:2F:48:F3:0B:69
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
Timestamp : Dec 14 20:33:51.789 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:31:39:C9:7B:68:8F:3A:2C:EC:C3:24:C3:
9D:94:3C:F2:A4:7A:27:B6:7F:5B:AF:1A:E6:E0:70:4C:
25:52:20:92:02:20:61:63:AB:C0:5E:34:83:4F:B7:28:
63:61:75:74:6E:0A:FC:E6:9E:1E:43:63:64:63:CB:BF:
42:29:BE:8D:35:F7
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
Timestamp : Dec 14 20:33:52.056 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:F7:7F:0E:CA:08:A6:8F:FF:57:A5:43:
CF:BE:AA:64:E8:09:FF:6F:B5:2D:F0:F6:23:8B:90:93:
DD:21:38:EC:6D:02:20:6E:E7:68:B5:B2:E9:73:A1:85:
F8:19:D8:DC:F1:0A:90:F4:EC:67:93:8E:0C:0C:6D:64:
F8:D9:98:16:5A:43:C8
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
Timestamp : Dec 14 20:33:52.278 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:3D:66:B4:9D:CE:8C:92:23:46:2E:B0:E7:
72:76:88:74:55:3C:79:F9:0D:DC:1A:A4:6D:2F:51:10:
59:E1:FD:38:02:20:66:8E:42:2F:2C:B9:B6:A4:A5:CE:
38:D5:61:CB:23:D0:92:21:54:A9:76:9C:FD:5E:CC:30:
CB:CC:91:D5:A8:2C
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
79:00:d6:2f:87:b9:7d:e2:b4:38:16:2e:8d:85:e7:e2:be:e8:
ea:65:7d:9f:e8:1a:3a:9b:fd:b7:60:1c:83:0f:06:38:69:96:
03:b3:ae:8b:42:98:ab:6b:75:91:ad:b0:ea:a9:49:da:53:94:
de:a5:00:f9:f9:c2:5e:64:e0:26:ac:a2:fe:7e:4f:36:84:1f:
08:21:36:84:28:c5:58:6e:c5:d0:66:ab:fc:69:57:a7:31:04:
c4:0b:c2:66:82:f3:10:e3:3b:fb:3c:5a:ef:93:d6:b8:d0:b7:
00:29:41:0a:51:a8:38:a7:24:98:ba:71:33:cf:72:41:9b:7b:
a3:1a:c2:1b:81:50:93:37:43:01:a4:4e:35:f3:71:bf:d6:aa:
6f:7c:a3:44:39:bd:e3:50:97:08:ef:52:75:a3:09:b6:b2:5a:
8a:89:da:67:69:db:3c:90:52:4b:a6:86:e8:a6:fc:17:fe:fa:
69:20:d1:a5:73:c6:e2:cc:38:2f:d4:04:3b:18:1e:1f:8c:3b:
a9:76:c0:83:de:5f:ab:84:f3:a1:d6:18:10:a6:9a:4a:3a:38:
08:77:b2:4b:b4:1c:d1:8e:71:ad:d6:36:c4:1f:25:a0:92:c9:
71:61:53:a6:22:28:4b:30:bc:b1:68:75:74:02:33:0c:ef:e8:
b8:e8:46:a4
1786434638 | 2024-09-14T02:17:04.430812
444 /
tcp
HTTP/1.0 200 OK
Server: SonicWALL
Expires: -1
Cache-Control: no-cache
Content-type: text/html; charset=UTF-8;
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' blob: data: ws: wss: sonicwall.com *.sonicwall.com;
Strict-Transport-Security: max-age=31536000; includeSubDomains
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1109959664 (0x4228a3f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, ST=California, L=Sunnyvale, O=HTTPS Management Certificate for SonicWALL (self-signed), OU=HTTPS Management Certificate for SonicWALL (self-signed), CN=192.168.168.168
Validity
Not Before: Jan 1 00:00:01 1970 GMT
Not After : Jan 19 03:14:07 2038 GMT
Subject: C=US, ST=California, L=Sunnyvale, O=HTTPS Management Certificate for SonicWALL (self-signed), OU=HTTPS Management Certificate for SonicWALL (self-signed), CN=192.168.168.168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:dd:ac:8e:df:c3:38:23:d7:77:e3:f2:f1:5d:64:
38:34:b6:65:9a:1a:41:e6:2a:08:7f:2f:75:aa:8b:
22:6a:ff:ef:32:28:4f:5f:b8:19:d5:5a:f8:3f:ca:
d5:eb:fb:cc:24:3b:79:5a:70:53:b0:37:7a:3c:33:
59:4b:57:98:73:18:52:3b:f9:c5:79:d7:c1:6d:62:
bf:8a:7d:03:d1:04:81:75:77:e5:ee:fd:88:54:72:
36:ce:c8:ab:95:44:d4:71:bd:af:b9:87:d5:86:f4:
ff:51:2b:dd:a4:68:3d:c8:73:f5:aa:f1:ac:58:2d:
72:6f:72:d5:b3:b9:76:8c:a5:86:fd:1c:57:28:2b:
9b:ef:c7:2f:33:1f:23:fc:0d:43:62:80:c3:ec:c7:
20:ba:44:39:3d:7c:13:20:d8:9d:73:ef:53:6d:7f:
af:0d:1a:93:e9:13:21:bf:ea:f3:a8:21:ac:b0:43:
be:04:3a:d9:d7:fa:1e:37:01:27:3d:d0:44:7d:46:
82:81:21:17:cc:99:14:1c:a4:f0:0b:f2:1b:d8:f0:
e6:5a:eb:1f:f5:46:b6:be:07:5c:56:80:ae:e8:9f:
03:ab:b3:10:92:12:39:02:93:39:e1:4f:5e:28:56:
42:67:45:73:f0:ae:c5:a2:71:e1:f0:9f:ab:15:32:
51:73
Exponent: 65537 (0x10001)
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
9c:46:81:03:71:f9:a5:6c:52:bc:a6:57:68:5a:9a:46:8a:a6:
99:0b:a7:de:c1:ac:15:8d:e6:3d:d1:a8:c5:15:40:f2:44:a4:
2d:15:0e:1b:76:71:77:29:be:b7:ba:a5:de:b4:c8:e3:57:de:
98:1d:dd:df:8d:7b:40:bf:bd:b7:29:b3:f2:4f:0e:2e:ca:84:
78:9d:40:4c:2b:9d:e5:cd:f2:d2:24:ec:d3:06:ff:39:61:99:
54:37:db:25:85:97:08:f1:c3:2f:35:90:b3:9f:66:4c:c8:a9:
f4:fa:82:3f:c4:58:98:d1:9a:5a:ce:4b:41:5d:90:9c:4e:69:
7e:ce:41:38:ce:b7:96:53:91:c2:5e:87:f8:77:a1:fe:27:f0:
3d:17:b4:81:6b:f8:cb:15:25:0f:31:ec:fd:73:22:76:c8:8b:
87:08:07:06:db:cb:fe:64:2e:a5:53:8e:a9:a5:1c:4b:64:2b:
e5:3b:d6:8d:0c:c0:ac:e5:95:ed:b5:53:7e:bd:4a:e2:64:78:
c0:c1:48:ec:b6:7f:69:0e:0e:52:da:2c:4e:c9:4c:24:5e:de:
a0:18:e9:fe:1c:83:8a:80:2b:83:3a:d0:4b:08:51:93:b2:03:
f5:59:b3:89:1d:0e:a2:33:51:22:90:11:5a:6e:77:d7:43:25:
67:f5:ce:4f
941448006 | 2024-09-05T20:13:44.233978
1723 /
tcp
PPTP:
Firmware: 0
Hostname:
Vendor: Microsoft
-974053182 | 2024-09-13T14:22:26.384722
3389 /
tcp
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows 10 (version 1809)/Windows Server 2019 (version 1809)
OS Build: 10.0.17763
Target Name: CUBIC
NetBIOS Domain Name: CUBIC
NetBIOS Computer Name: CAM-SRV01
DNS Domain Name: cubic-corp.us
DNS Tree Name: cubic-corp.us
FQDN: CAM-SRV01.cubic-corp.us
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:16:33:32:4e:65:c3:a4:4b:9b:56:11:29:09:65:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CAM-SRV01.cubic-corp.us
Validity
Not Before: Jul 12 11:32:42 2024 GMT
Not After : Jan 11 11:32:42 2025 GMT
Subject: CN=CAM-SRV01.cubic-corp.us
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:a4:c2:5d:e3:5b:ad:b2:6e:10:b0:7e:db:53:0a:
c7:54:79:0a:67:fc:8a:93:9c:e6:5d:59:e8:74:02:
18:85:eb:e1:95:ae:c6:33:71:22:1a:23:de:c9:af:
90:99:8b:04:b8:4b:51:f2:fb:c0:78:ff:a9:95:7b:
c7:e8:18:35:e2:32:45:9b:d0:e1:8d:2f:2f:13:79:
38:07:11:e4:4d:c4:ba:da:c5:a6:fd:cf:10:c3:50:
e4:d8:f7:f3:15:3a:57:7b:46:24:8c:b0:f8:d4:24:
11:2c:fc:4f:38:06:38:04:22:16:c6:51:da:bc:b4:
3e:f2:8f:d5:5c:a8:20:44:8e:2e:28:f3:b9:c4:3f:
9a:46:7d:4b:78:cd:ab:12:e3:ae:7d:a7:41:a2:5a:
89:97:52:0e:bb:90:e6:d6:c6:bc:a5:64:b4:e9:8a:
22:78:5d:5a:50:14:34:62:e2:f9:5a:39:a8:05:6f:
78:1e:b2:8c:6e:71:c2:33:be:92:e7:af:4a:7f:cd:
7f:76:58:c8:a6:d2:85:c7:66:0d:14:6b:e6:3e:fa:
33:b6:99:ec:55:dc:d1:69:10:c2:4a:80:b3:78:a3:
ba:92:fa:1b:f9:30:21:3e:38:49:a1:8e:aa:f7:8f:
0d:19:77:22:ca:b3:d5:b7:54:22:1b:ab:31:a0:18:
a6:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
6e:65:e3:c7:a8:3e:3a:d7:13:1c:40:e9:4d:30:9a:12:4d:cd:
09:15:b3:10:70:99:76:44:c4:74:c1:8d:4a:07:95:09:b8:6e:
1c:ff:b9:26:a0:96:2c:f7:86:15:66:d8:64:67:22:de:99:fd:
60:f4:36:73:a6:28:43:0b:41:40:8d:ea:e6:b9:86:e7:32:03:
b0:fd:61:72:ee:67:bb:a0:25:f3:e4:1d:65:cd:92:41:be:58:
87:39:c7:f2:94:1c:4a:a5:3b:ed:92:6f:c2:13:bd:8e:7c:51:
7c:94:7c:f2:f1:35:87:31:c0:79:e0:45:0b:ad:1f:91:b0:e2:
b4:79:66:cf:58:84:52:8d:2a:29:cc:49:65:ca:d0:76:7e:a2:
66:e8:7c:09:d2:ed:74:44:66:14:07:ba:53:1b:20:ca:d0:48:
17:e0:a1:f8:7c:b4:ba:c9:79:bd:cb:f3:8a:47:d6:eb:85:86:
80:02:d0:2d:52:24:e8:bd:61:fb:42:bc:a1:de:a8:75:c9:e4:
b2:6e:d5:31:65:e2:e5:76:dd:af:1b:67:67:5d:e1:73:f0:fa:
ea:51:54:7b:f9:d2:4a:28:8e:33:6a:55:68:fb:1a:6d:84:55:
89:b5:af:d0:ad:ba:b2:a3:88:f2:9b:91:b4:81:e8:14:ad:62:
1b:77:28:53
1266841730 | 2024-09-13T20:50:37.804751
5900 /
tcp
HTTP/1.1 200 OK
Server: APS
Content-Type: text/html
Cache-Control: no-cache, no-store, must-revalidate, private
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; connect-src *; script-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:; style-src 'self' 'unsafe-inline'; font-src 'self' data:; child-src 'self'; object-src 'none'
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
Content-Length: 3585
