corruptbackup.net Threat Intelligence and Information

Jan 17, 2022 domainpage

Host Location

Screenshot

alt-text

Dig Results

  • Got answer:
  • -»HEADER«- opcode: QUERY, status: NOERROR, id: 12863
  • flags: qr rd ra QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
  • OPT PSEUDOSECTION:
  • EDNS: version: 0, flags: udp: 1232
  • QUESTION SECTION:
  • corruptbackup.net. IN A
  • ANSWER SECTION:
  • corruptbackup.net. 300 IN A 104.21.20.172
  • corruptbackup.net. 300 IN A 172.67.193.61
  • Query time: 292 msec
  • SERVER: 192.168.1.153(192.168.1.1)
  • WHEN: Wed Jan 19 04:40:52 UTC 2022
  • MSG SIZE rcvd: 78

DNS Records

  • SOA jamie.ns.cloudflare.com 173.245.58.168
  • SOA jamie.ns.cloudflare.com 108.162.192.168
  • SOA jamie.ns.cloudflare.com 172.64.32.168
  • NS jamie.ns.cloudflare.com 172.64.32.168

Whois Data

  • Domain Name: CORRUPTBACKUP.NET
  • Registry Domain ID: 2663787707_DOMAIN_NET-VRSN
  • Registrar URL: http://www.cosmotown.com
  • Updated Date: 2021-12-24T21:25:33Z
  • Creation Date: 2021-12-24T19:23:09Z
  • Registry Expiry Date: 2022-12-24T19:23:09Z
  • Registrar: Cosmotown, Inc.
  • Registrar IANA ID: 1509
  • Registrar Abuse Contact Email:
  • Registrar Abuse Contact Phone:
  • Name Server: JAMIE.NS.CLOUDFLARE.COM
  • Name Server: TREVOR.NS.CLOUDFLARE.COM
  • DNSSEC: unsigned

SSL Certificate Information

  • Certificate:
  • Data:
  • Version: 3 (0x2)
  • Serial Number:
  • 03:90:1d:39:19:8a:d5:6a:f3:df:dc:c6:06:e9:ad:01:aa:7c
  • Signature Algorithm: sha256WithRSAEncryption
  • Issuer: C = US, O = Let’s Encrypt, CN = R3
  • Validity
  • Not Before: Dec 24 20:32:23 2021 GMT
  • Not After : Mar 24 20:32:22 2022 GMT
  • Subject: CN = *.corruptbackup.net
  • Subject Public Key Info:
  • Public Key Algorithm: rsaEncryption
  • RSA Public-Key: (2048 bit)
  • Modulus:
  • 00:b1:1f:9b:77:43:8b:56:a2:1d:f1:28:8d:97:5a:
  • 5e:d0:3b:d9:b3:24:98:cb:cc:8b:22:84:9d:28:e4:
  • 79:6f:f0:fb:16:31:9f:e0:09:62:43:82:fc:cf:71:
  • c2:a6:e1:6d:bd:82:b3:0b:86:d4:e8:cf:67:41:bc:
  • 0c:97:e3:98:c8:9d:21:c0:3b:75:62:63:64:99:b1:
  • fe:a8:92:de:78:3d:35:f3:9e:16:f5:fb:1d:09:12:
  • 17:6e:0b:75:91:09:69:3c:cb:d5:6e:91:6c:a0:de:
  • 06:b5:27:5f:af:6f:60:0b:e0:49:cd:53:dc:9d:79:
  • 97:38:9d:5c:67:6f:70:f9:4e:5b:d2:16:31:21:61:
  • 41:c6:fb:67:f1:3c:f2:42:a0:af:3d:64:6d:8f:9c:
  • a0:69:ac:c0:dc:b0:c0:64:d6:2b:71:51:cb:1a:8e:
  • 58:8b:cb:9a:0f:ec:46:32:bc:ae:8f:5b:79:8c:48:
  • 10:d2:c1:b7:c7:42:af:59:3a:5d:0a:09:74:ee:c5:
  • 13:7f:78:6d:a5:ed:80:b4:1e:06:b5:6f:49:59:0c:
  • 54:6a:cb:01:b8:4c:c8:24:95:6d:61:84:11:57:83:
  • e5:e8:79:a1:c3:f0:c2:46:f5:41:c0:1f:af:f5:ba:
  • 12:78:f1:b8:7b:59:5b:c9:08:b8:d2:8c:80:c0:d7:
  • c3:55
  • Exponent: 65537 (0x10001)
  • X509v3 extensions:
  • X509v3 Key Usage: critical
  • Digital Signature, Key Encipherment
  • X509v3 Extended Key Usage:
  • TLS Web Server Authentication, TLS Web Client Authentication
  • X509v3 Basic Constraints: critical
  • CA:FALSE
  • X509v3 Subject Key Identifier:
  • 3E:01:7F:2D:18:FF:A7:28:04:1D:70:87:F8:BE:CD:21:7A:81:F9:E7
  • X509v3 Authority Key Identifier:
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
  • Authority Information Access:
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
  • X509v3 Subject Alternative Name:
  • DNS:*.corruptbackup.net, DNS:corruptbackup.net
  • X509v3 Certificate Policies:
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
  • CT Precertificate SCTs:
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : DF:A5:5E:AB:68:82:4F:1F:6C:AD:EE:B8:5F:4E:3E:5A:
  • EA:CD:A2:12:A4:6A:5E:8E:3B:12:C0:20:44:5C:2A:73
  • Timestamp : Dec 24 21:32:23.326 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:E6:B1:10:60:73:74:7A:37:6B:1A:00:
  • E2:D7:5D:37:6E:B1:79:C1:2E:5E:BE:F3:86:85:E6:42:
  • B7:66:A9:79:79:02:20:41:89:40:B6:FA:70:79:F3:2F:
  • B7:A0:F1:BE:28:32:3A:5A:A2:7F:E0:00:E7:5A:42:F3:
  • 20:03:FE:1D:5E:2D:E9
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 29:79:BE:F0:9E:39:39:21:F0:56:73:9F:63:A5:77:E5:
  • BE:57:7D:9C:60:0A:F8:F9:4D:5D:26:5C:25:5D:C7:84
  • Timestamp : Dec 24 21:32:23.314 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:EB:A3:01:36:2B:18:FA:0E:F3:A0:C6:
  • 73:5F:DC:58:2C:4E:67:10:11:1E:5A:8E:04:FF:80:6E:
  • C3:B3:19:EB:AB:02:21:00:DA:3B:27:4E:86:C3:9E:91:
  • A7:78:2D:74:DD:7E:84:E4:BF:BC:C1:38:F0:C1:E8:6B:
  • 7F:27:4F:81:38:78:EF:A4
  • Signature Algorithm: sha256WithRSAEncryption
  • b1:9c:17:a2:cc:60:0b:38:c6:65:f1:59:d6:30:0b:2e:c5:a5:
  • 83:0e:e0:83:b2:a7:41:d9:c7:1f:e9:1e:2e:f2:19:40:89:92:
  • e8:26:e0:80:81:54:33:98:2e:2e:a1:13:75:e2:b8:3c:06:60:
  • 73:ae:7d:79:ad:ba:af:e0:05:37:b9:2c:a7:5c:be:ec:5c:3c:
  • ab:7a:12:85:00:7b:86:dc:49:a1:f9:70:b5:de:fa:08:d4:c7:
  • da:f9:78:97:2f:90:41:bc:c8:39:27:41:fb:2f:8c:05:29:8f:
  • 2d:aa:ee:40:01:ba:c2:c8:d2:ac:95:44:8d:b3:3d:e0:9e:53:
  • eb:1f:32:4e:8d:33:f8:68:e9:e7:23:13:82:61:7e:74:44:9f:
  • 1c:c6:56:62:65:c1:b4:7b:95:d8:8a:b8:18:73:a7:35:00:5e:
  • 07:d8:67:5e:f4:98:2f:f1:b8:c7:88:d4:a9:a1:c4:ff:0d:14:
  • 68:f6:47:ca:5c:ef:dc:ca:83:2e:61:c0:ca:b3:f8:74:a3:78:
  • 71:dc:18:d7:68:00:06:fd:96:0d:e6:df:80:59:ae:1b:9b:98:
  • d8:1a:6e:c1:ea:36:77:01:e1:10:34:42:fe:db:88:c0:64:43:
  • 7c:74:97:38:8a:92:86:2e:30:76:d9:10:2b:f6:88:d1:74:d9:
  • 9d:62:9b:97

Sitemap

Technologies

*** Virustotal ***

*** WayBackMachine ***

Share on: