covidtoken.xyz Threat Intelligence and Information

Jan 17, 2022 domainpage

Host Location

Dig Results

  • Got answer:
  • -»HEADER«- opcode: QUERY, status: NOERROR, id: 45187
  • flags: qr rd ra QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
  • OPT PSEUDOSECTION:
  • EDNS: version: 0, flags: udp: 1232
  • QUESTION SECTION:
  • covidtoken.xyz. IN A
  • ANSWER SECTION:
  • covidtoken.xyz. 300 IN A 172.67.181.137
  • covidtoken.xyz. 300 IN A 104.21.18.93
  • Query time: 192 msec
  • SERVER: 192.168.1.153(192.168.1.1)
  • WHEN: Thu Jan 20 10:45:24 UTC 2022
  • MSG SIZE rcvd: 75

DNS Records

  • SOA lila.ns.cloudflare.com 108.162.192.186
  • SOA lila.ns.cloudflare.com 172.64.32.186
  • SOA lila.ns.cloudflare.com 173.245.58.186
  • NS lila.ns.cloudflare.com 108.162.192.186

Whois Data

  • Domain Name: COVIDTOKEN.XYZ
  • Registry Domain ID: D223580128-CNIC
  • Registrar URL: https://www.hostinger.com/
  • Updated Date: 2021-03-03T11:58:17.0Z
  • Creation Date: 2021-02-26T11:58:07.0Z
  • Registry Expiry Date: 2022-02-26T23:59:59.0Z
  • Registrar: Hostinger, UAB
  • Registrar IANA ID: 1636
  • Registrant Organization: Privacy Protect, LLC (PrivacyProtect.org)
  • Registrant State/Province: MA
  • Registrant Country: US
  • Registrant Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.
  • Admin Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.
  • Tech Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.
  • Name Server: TONY.NS.CLOUDFLARE.COM
  • Name Server: LILA.NS.CLOUDFLARE.COM
  • DNSSEC: unsigned
  • Billing Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.
  • Registrar Abuse Contact Email: domains@hostinger.com
  • Registrar Abuse Contact Phone: +370.68424669
  • https://www.centralnic.com/support/rdap «<
  • blacklisted. All data is (c) CentralNic Ltd (https://www.centralnic.com)

SSL Certificate Information

  • Certificate:
  • Data:
  • Version: 3 (0x2)
  • Serial Number:
  • 0c:92:0d:d7:20:88:48:77:f2:30:23:d1:a9:12:78:0e
  • Signature Algorithm: ecdsa-with-SHA256
  • Issuer: C = US, O = “Cloudflare, Inc.”, CN = Cloudflare Inc ECC CA-3
  • Validity
  • Not Before: Feb 26 00:00:00 2021 GMT
  • Not After : Feb 25 23:59:59 2022 GMT
  • Subject: C = US, ST = California, L = San Francisco, O = “Cloudflare, Inc.”, CN = sni.cloudflaressl.com
  • Subject Public Key Info:
  • Public Key Algorithm: id-ecPublicKey
  • Public-Key: (256 bit)
  • pub:
  • 04:e2:07:2d:8f:72:f9:40:8b:ec:b9:fb:f8:43:8f:
  • 56:00:36:70:cc:54:14:4c:de:35:54:4a:1e:be:68:
  • f5:3f:33:68:37:a1:6c:c2:2f:72:f0:d6:8b:74:a2:
  • 65:6a:5a:9c:86:72:1b:44:40:bc:24:d3:c1:27:9a:
  • 56:af:38:4a:ee
  • ASN1 OID: prime256v1
  • NIST CURVE: P-256
  • X509v3 extensions:
  • X509v3 Authority Key Identifier:
  • keyid:A5:CE:37:EA:EB:B0:75:0E:94:67:88:B4:45:FA:D9:24:10:87:96:1F
  • X509v3 Subject Key Identifier:
  • FD:48:82:78:CC:3E:6D:77:46:84:14:1A:40:84:EF:59:93:31:3B:DF
  • X509v3 Subject Alternative Name:
  • DNS:covidtoken.xyz, DNS:*.covidtoken.xyz, DNS:sni.cloudflaressl.com
  • X509v3 Key Usage: critical
  • Digital Signature
  • X509v3 Extended Key Usage:
  • TLS Web Server Authentication, TLS Web Client Authentication
  • X509v3 CRL Distribution Points:
  • Full Name:
  • URI:http://crl3.digicert.com/CloudflareIncECCCA-3.crl
  • Full Name:
  • URI:http://crl4.digicert.com/CloudflareIncECCCA-3.crl
  • X509v3 Certificate Policies:
  • Policy: 2.23.140.1.2.2
  • CPS: http://www.digicert.com/CPS
  • Authority Information Access:
  • OCSP - URI:http://ocsp.digicert.com
  • CA Issuers - URI:http://cacerts.digicert.com/CloudflareIncECCCA-3.crt
  • X509v3 Basic Constraints: critical
  • CA:FALSE
  • CT Precertificate SCTs:
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 29:79:BE:F0:9E:39:39:21:F0:56:73:9F:63:A5:77:E5:
  • BE:57:7D:9C:60:0A:F8:F9:4D:5D:26:5C:25:5D:C7:84
  • Timestamp : Feb 26 15:56:26.976 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:BB:0B:22:B8:08:3E:E3:86:A3:90:2B:
  • 5F:7B:41:BB:31:92:15:FB:EB:D8:A4:FC:6B:D9:8B:BE:
  • 79:71:1B:94:F9:02:20:17:54:24:A8:5B:57:24:5E:F9:
  • 0A:03:1C:D6:D9:74:A1:80:83:E2:10:43:0D:F9:FD:BE:
  • 49:ED:95:EE:80:F5:5F
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 22:45:45:07:59:55:24:56:96:3F:A1:2F:F1:F7:6D:86:
  • E0:23:26:63:AD:C0:4B:7F:5D:C6:83:5C:6E:E2:0F:02
  • Timestamp : Feb 26 15:56:27.032 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:8E:2A:27:48:1D:65:9D:66:B3:61:E7:
  • 35:40:27:05:43:2F:7F:13:34:56:86:09:78:1C:24:7E:
  • A7:AD:1C:79:E5:02:21:00:8F:73:BE:7D:B2:A3:48:79:
  • 91:D0:37:E6:96:92:71:AC:B1:71:0C:B3:CE:E4:8F:E0:
  • 2F:DB:C9:AA:33:E9:9E:31
  • Signature Algorithm: ecdsa-with-SHA256
  • 30:46:02:21:00:9e:c7:68:22:bf:71:0f:b6:cd:e9:bf:fe:45:
  • e8:71:29:f9:99:cf:fb:91:48:c6:66:d7:3d:9c:fb:53:37:bd:
  • b2:02:21:00:8b:fd:f9:ab:d7:59:55:8d:08:63:47:f3:5e:4d:
  • 2f:f1:55:28:d9:6c:79:91:b8:a6:97:67:d1:3f:ff:d9:ec:3b

Sitemap

Technologies

*** Virustotal ***

*** WayBackMachine ***

Share on: