investorcovid.com Threat Intelligence and Information

Host Location

Dig Results

• Got answer:
• -»HEADER«- opcode: QUERY, status: NOERROR, id: 14410
• flags: qr rd ra QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
• OPT PSEUDOSECTION:
• EDNS: version: 0, flags: udp: 1232
• QUESTION SECTION:
• investorcovid.com. IN A
• ANSWER SECTION:
• investorcovid.com. 294 IN A 45.88.202.115
• Query time: 20 msec
• SERVER: 192.168.1.153(192.168.1.1)
• WHEN: Mon Jun 27 09:04:47 UTC 2022
• MSG SIZE rcvd: 62

DNS Records

• SOA ns3.epik.com 52.55.168.70
• NS ns3.epik.com 52.55.168.70
• NS ns4.epik.com 91.149.194.188
• A investorcovid.com 45.88.202.115

Whois Data

• Domain Name: INVESTORCOVID.COM
• Registry Domain ID: 2632858264_DOMAIN_COM-VRSN
• Registrar URL: http://porkbun.com
• Updated Date: 2022-04-18T23:06:25Z
• Creation Date: 2021-08-10T16:41:57Z
• Registry Expiry Date: 2022-08-10T16:41:57Z
• Registrar: Porkbun LLC
• Registrar IANA ID: 1861
• Registrar Abuse Contact Email: abuse@porkbun.com
• Registrar Abuse Contact Phone: 5038508351
• Name Server: NS3.EPIK.COM
• Name Server: NS4.EPIK.COM
• DNSSEC: unsigned
• Domain Name: INVESTORCOVID.COM
• Registry Domain ID: 2632858264_DOMAIN_COM-VRSN
• Registrar URL: http://www.porkbun.com
• Updated Date: 2021-08-10 16:41:57
• Created Date: 2021-08-10 16:41:57
• Registrar Registration Expiration Date: 2022-08-10 16:41:57
• Registrar: Porkbun LLC
• Registrar IANA ID: 1861
• Registrar Abuse Contact Email: abuse@porkbun.com
• Registrar Abuse Contact Phone: +1.5038508351
• Registry Registrant ID:
• Registrant Name: Whois Privacy
• Registrant Organization: Private by Design, LLC
• Registrant City: Sanford
• Registrant State/Province: NC
• Registrant Postal Code: 27330
• Registrant Country: US
• Registrant Phone: +1.9712666028
• Registrant Phone Ext:
• Registrant Fax:
• Registrant Fax Ext:
• Registry Admin ID:
• Admin Name: Whois Privacy
• Admin Organization: Private by Design, LLC
• Admin City: Sanford
• Admin State/Province: NC
• Admin Postal Code: 27330
• Admin Country: US
• Admin Phone: +1.9712666028
• Admin Phone Ext:
• Admin Fax:
• Admin Fax Ext:
• Registry Tech ID:
• Tech Name: Whois Privacy
• Tech Organization: Private by Design, LLC
• Tech City: Sanford
• Tech State/Province: NC
• Tech Postal Code: 27330
• Tech Country: US
• Tech Phone: +1.9712666028
• Tech Phone Ext:
• Tech Fax:
• Tech Fax Ext:
• Name Server: ns3.epik.com
• Name Server: ns4.epik.com

SSL Certificate Information

• Certificate:
• Data:
• Version: 3 (0x2)
• Serial Number:
• 03:87:88:4c:1d:d6:82:de:0a:08:fb:80:26:89:92:20:44:7f
• Signature Algorithm: sha256WithRSAEncryption
• Issuer: C = US, O = Let’s Encrypt, CN = R3
• Validity
• Not Before: Apr 28 22:30:19 2022 GMT
• Not After : Jul 27 22:30:18 2022 GMT
• Subject: CN = investorcovid.com
• Subject Public Key Info:
• Public Key Algorithm: id-ecPublicKey
• Public-Key: (384 bit)
• pub:
• 04:e8:19:4d:70:91:4b:a9:e2:40:12:93:d8:29:eb:
• aa:8d:ff:ad:3a:82:c2:50:7b:5d:9e:03:b0:b5:de:
• e1:18:cd:6f:f5:75:cd:f0:cc:5b:18:82:89:52:af:
• 63:87:99:75:70:54:ac:62:aa:87:23:b2:33:4a:5a:
• d1:e0:8b:73:6f:54:85:a0:79:82:d3:1d:0e:f1:b7:
• 7e:b7:04:81:b9:dd:f2:ed:29:e7:59:84:68:e6:77:
• c3:cf:9a:cc:d3:20:f9
• ASN1 OID: secp384r1
• NIST CURVE: P-384
• X509v3 extensions:
• X509v3 Key Usage: critical
• Digital Signature
• X509v3 Extended Key Usage:
• TLS Web Server Authentication, TLS Web Client Authentication
• X509v3 Basic Constraints: critical
• CA:FALSE
• X509v3 Subject Key Identifier:
• A2:26:8E:E7:5D:93:2B:DD:E5:8E:DD:2A:2A:07:5C:05:1C:50:8D:CE
• X509v3 Authority Key Identifier:
• keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
• Authority Information Access:
• OCSP - URI:http://r3.o.lencr.org
• CA Issuers - URI:http://r3.i.lencr.org/
• X509v3 Subject Alternative Name:
• DNS:investorcovid.com
• X509v3 Certificate Policies:
• Policy: 2.23.140.1.2.1
• Policy: 1.3.6.1.4.1.44947.1.1.1
• CPS: http://cps.letsencrypt.org
• CT Precertificate SCTs:
• Signed Certificate Timestamp:
• Version : v1 (0x0)
• Log ID : DF:A5:5E:AB:68:82:4F:1F:6C:AD:EE:B8:5F:4E:3E:5A:
• EA:CD:A2:12:A4:6A:5E:8E:3B:12:C0:20:44:5C:2A:73
• Timestamp : Apr 28 23:30:19.363 2022 GMT
• Extensions: none
• Signature : ecdsa-with-SHA256
• 30:44:02:20:4E:10:4D:A2:9B:0A:E9:26:64:36:F4:64:
• 01:17:E4:B2:B2:A9:02:43:CE:25:B6:A4:99:D9:DC:DA:
• 06:F0:AD:84:02:20:25:4A:8D:F8:E3:D9:AC:12:77:1C:
• D1:14:4A:26:AA:CD:66:16:2A:C4:66:99:4E:07:9C:D2:
• 5E:D4:4C:A7:CB:35
• Signed Certificate Timestamp:
• Version : v1 (0x0)
• Log ID : 46:A5:55:EB:75:FA:91:20:30:B5:A2:89:69:F4:F3:7D:
• 11:2C:41:74:BE:FD:49:B8:85:AB:F2:FC:70:FE:6D:47
• Timestamp : Apr 28 23:30:19.403 2022 GMT
• Extensions: none
• Signature : ecdsa-with-SHA256
• 30:45:02:21:00:EE:A3:29:82:67:2E:62:B7:4C:76:91:
• 49:7A:97:8D:4A:92:9E:4C:4A:96:25:4F:88:19:83:DC:
• 79:17:5F:3F:20:02:20:05:E1:26:8E:71:C2:42:A7:89:
• 25:29:01:FA:69:8E:6F:B4:F7:6E:6E:DD:B8:A6:FF:44:
• 95:1D:43:55:B6:9E:6E
• Signature Algorithm: sha256WithRSAEncryption
• 12:8e:e2:6c:58:54:05:de:34:05:59:67:f4:53:85:f4:c0:58:
• bf:61:ad:a4:8f:df:52:24:5e:6a:e9:cd:9f:81:5b:11:47:d8:
• 65:23:8c:3c:ec:e6:36:dc:d4:94:d2:ae:a8:e5:c2:95:c7:bd:
• 46:95:20:21:31:e3:1c:5a:dd:62:c9:3f:5e:a7:62:03:3f:44:
• bf:9d:c3:6a:59:56:8c:08:44:ac:47:ab:92:e0:ab:ee:fb:d5:
• 3f:55:59:57:32:0c:9b:b7:a9:81:e3:e4:a6:9f:97:18:ae:9c:
• 63:e5:b6:3d:dd:72:ca:30:df:ef:61:54:41:fc:38:07:db:cc:
• 02:e4:a0:ef:eb:53:cd:da:79:d3:e3:31:c1:50:79:39:b5:d7:
• 21:91:ae:54:9d:cc:ee:82:f8:bc:c8:2e:6e:b3:6b:97:40:c6:
• d6:53:22:2e:16:42:40:1a:2b:28:db:f4:60:ac:fc:fe:80:69:
• 07:5a:a9:0e:ef:9a:8c:4f:94:4f:8a:43:37:f1:82:2e:5e:c9:
• 19:da:0a:b0:05:bc:a4:2d:16:ca:5c:74:6f:61:e8:9c:5b:ea:
• de:94:00:92:0a:d9:f3:76:d0:ac:8b:6c:32:56:a4:73:35:04:
• ad:94:46:d7:a5:d3:a1:f1:ac:7c:f6:63:73:ae:e3:15:5d:b2:
• 2a:e7:07:a0

Sitemap

Technologies

Additional Links

*** Virustotal ***

*** WayBackMachine ***