kcovid.com Threat Intelligence and Information

Dig Results

• Got answer:
• -»HEADER«- opcode: QUERY, status: NOERROR, id: 26560
• flags: qr rd ra QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
• OPT PSEUDOSECTION:
• EDNS: version: 0, flags: udp: 1232
• QUESTION SECTION:
• kcovid.com. IN A
• ANSWER SECTION:
• kcovid.com. 299 IN A 45.88.202.115
• Query time: 16 msec
• SERVER: 192.168.1.153(192.168.1.1)
• WHEN: Tue Jul 19 00:35:56 UTC 2022
• MSG SIZE rcvd: 55

DNS Records

• SOA ns3.epik.com 52.55.168.70
• NS ns4.epik.com 91.149.194.188
• NS ns3.epik.com 52.55.168.70
• A kcovid.com 45.88.202.115

  Whois Data

• Domain Name: KCOVID.COM
• Registry Domain ID: 2626275137_DOMAIN_COM-VRSN
• Registrar URL: http://porkbun.com
• Updated Date: 2022-07-09T10:48:52Z
• Creation Date: 2021-07-12T21:39:18Z
• Registry Expiry Date: 2023-07-12T21:39:18Z
• Registrar: Porkbun LLC
• Registrar IANA ID: 1861
• Registrar Abuse Contact Email: [email protected]
• Registrar Abuse Contact Phone: 5038508351
• Name Server: NS3.EPIK.COM
• Name Server: NS4.EPIK.COM
• DNSSEC: unsigned
• Domain Name: KCOVID.COM
• Registry Domain ID: 2626275137_DOMAIN_COM-VRSN
• Registrar URL: http://www.porkbun.com
• Updated Date: 2022-07-09 10:48:52
• Created Date: 2021-07-12 21:39:18
• Registrar Registration Expiration Date: 2023-07-12 21:39:18
• Registrar: Porkbun LLC
• Registrar IANA ID: 1861
• Registrar Abuse Contact Email: [email protected]
• Registrar Abuse Contact Phone: +1.5038508351
• Registry Registrant ID:
• Registrant Name: Whois Privacy
• Registrant Organization: Private by Design, LLC
• Registrant City: Sanford
• Registrant State/Province: NC
• Registrant Postal Code: 27330
• Registrant Country: US
• Registrant Phone: +1.9712666028
• Registrant Phone Ext:
• Registrant Fax:
• Registrant Fax Ext:
• Registry Admin ID:
• Admin Name: Whois Privacy
• Admin Organization: Private by Design, LLC
• Admin City: Sanford
• Admin State/Province: NC
• Admin Postal Code: 27330
• Admin Country: US
• Admin Phone: +1.9712666028
• Admin Phone Ext:
• Admin Fax:
• Admin Fax Ext:
• Registry Tech ID:
• Tech Name: Whois Privacy
• Tech Organization: Private by Design, LLC
• Tech City: Sanford
• Tech State/Province: NC
• Tech Postal Code: 27330
• Tech Country: US
• Tech Phone: +1.9712666028
• Tech Phone Ext:
• Tech Fax:
• Tech Fax Ext:
• Name Server: ns3.epik.com
• Name Server: ns4.epik.com

SSL Certificate Information

• Certificate:
• Data:
• Version: 3 (0x2)
• Serial Number:
• 04:6f:83:52:b3:8b:7c:60:7b:2f:06:dd:82:5f:5c:42:6e:2d
• Signature Algorithm: sha256WithRSAEncryption
• Issuer: C = US, O = Let’s Encrypt, CN = R3
• Validity
• Not Before: Apr 28 08:03:55 2022 GMT
• Not After : Jul 27 08:03:54 2022 GMT
• Subject: CN = kcovid.com
• Subject Public Key Info:
• Public Key Algorithm: id-ecPublicKey
• Public-Key: (384 bit)
• pub:
• 04:0b:4f:24:5c:f0:6d:35:1c:19:b1:1c:3f:fe:ac:
• 3b:60:6e:b9:20:79:3b:95:35:cf:11:56:a0:51:2d:
• ee:dd:e7:42:5e:f0:31:45:4a:b7:70:0f:42:ee:5c:
• 57:03:de:53:d7:ee:76:b1:9c:a1:04:b0:0c:ab:98:
• 10:2c:30:72:37:05:7d:7e:f3:91:6f:b8:45:64:e8:
• 87:db:36:02:73:ac:ac:27:1b:0e:bd:5b:51:d5:21:
• 39:11:52:d6:9a:d1:16
• ASN1 OID: secp384r1
• NIST CURVE: P-384
• X509v3 extensions:
• X509v3 Key Usage: critical
• Digital Signature
• X509v3 Extended Key Usage:
• TLS Web Server Authentication, TLS Web Client Authentication
• X509v3 Basic Constraints: critical
• CA:FALSE
• X509v3 Subject Key Identifier:
• 5B:DD:4F:62:7D:D1:3D:09:7A:3C:1A:03:82:59:5C:94:77:69:47:D4
• X509v3 Authority Key Identifier:
• keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
• Authority Information Access:
• OCSP - URI:http://r3.o.lencr.org
• CA Issuers - URI:http://r3.i.lencr.org/
• X509v3 Subject Alternative Name:
• DNS:kcovid.com
• X509v3 Certificate Policies:
• Policy: 2.23.140.1.2.1
• Policy: 1.3.6.1.4.1.44947.1.1.1
• CPS: http://cps.letsencrypt.org
• CT Precertificate SCTs:
• Signed Certificate Timestamp:
• Version : v1 (0x0)
• Log ID : 41:C8:CA:B1:DF:22:46:4A:10:C6:A1:3A:09:42:87:5E:
• 4E:31:8B:1B:03:EB:EB:4B:C7:68:F0:90:62:96:06:F6
• Timestamp : Apr 28 09:03:56.176 2022 GMT
• Extensions: none
• Signature : ecdsa-with-SHA256
• 30:46:02:21:00:86:93:2F:22:47:EE:28:32:1B:00:00:
• EB:62:C5:99:43:F9:5B:FF:46:AA:A0:4B:9A:2E:64:A8:
• 41:17:85:25:BE:02:21:00:B0:40:07:6C:FB:E9:22:2B:
• 1C:EC:00:59:E0:46:08:3E:39:15:D2:D0:D8:2D:B7:6F:
• 67:D2:F8:B8:8D:20:CB:78
• Signed Certificate Timestamp:
• Version : v1 (0x0)
• Log ID : 29:79:BE:F0:9E:39:39:21:F0:56:73:9F:63:A5:77:E5:
• BE:57:7D:9C:60:0A:F8:F9:4D:5D:26:5C:25:5D:C7:84
• Timestamp : Apr 28 09:03:56.169 2022 GMT
• Extensions: none
• Signature : ecdsa-with-SHA256
• 30:46:02:21:00:B7:CE:DF:1B:F9:EF:CC:97:AE:C6:6D:
• F1:77:59:67:8A:99:B6:A2:51:17:A2:37:0A:C9:3D:F6:
• F3:FF:D9:0B:AE:02:21:00:FD:E5:17:86:7B:1B:F6:7C:
• 5D:9A:9F:AA:6C:30:C7:B5:DF:61:73:81:BC:1C:D1:47:
• 50:C8:69:01:53:AB:19:52
• Signature Algorithm: sha256WithRSAEncryption
• 9a:8a:ae:72:d5:48:3b:94:6d:2e:ab:a7:d7:49:6f:63:48:73:
• ed:0d:19:87:1e:87:1a:0d:1e:5a:61:72:1a:81:6c:f6:c4:cc:
• 4f:23:1e:b0:43:3c:42:23:2d:8d:bc:2d:60:e8:a8:a2:8a:05:
• c0:9e:ed:f9:67:5e:87:07:24:0e:de:d4:d8:f2:7e:f4:5b:5f:
• c6:7a:66:6f:9f:f1:81:07:54:47:fa:25:56:9c:f0:1f:54:05:
• 5d:9f:41:4d:66:92:cc:33:ef:14:8d:b9:10:6b:6e:96:2a:d6:
• 52:26:61:a3:b1:be:21:22:e7:49:e0:b2:b3:c7:e6:f1:3a:1f:
• ef:04:3a:4b:b0:49:6c:2d:ec:84:72:8d:ec:2d:b8:be:28:d1:
• e8:4d:e4:89:af:5f:ef:61:ce:19:43:41:2e:be:d4:1e:75:ad:
• c7:f6:c5:e0:bc:1f:31:26:49:76:9a:ba:33:c9:4f:31:03:04:
• 08:1a:04:a9:ef:14:f1:1a:eb:39:e3:d2:b0:ca:ef:a4:35:eb:
• da:7a:0a:9e:18:f3:ce:fd:83:65:a4:ca:28:c7:61:b6:8b:dd:
• d4:4d:a8:1c:3e:79:0f:ef:36:63:e6:69:98:9a:57:61:b8:22:
• 9b:6d:4e:17:71:03:d0:c8:a7:57:f8:b6:06:a9:c2:44:82:c8:
• 8f:e8:0f:2c

Sitemap

Technologies

Additional Links

** Virustotal **

** WayBackMachine **