CovenantC2 Detected – 174[.]138[.]179[.]149:7443

Covenant C2 Detection Alerts

The Information provided at the time of posting was detected as “Covenant C2”. Depending on when you are viewing this article, it may no longer be the case and could be determined as being a false positive. Please do your own additional validation. – RedPacket Security

TimeStamp 2024-04-30T18:38:57.030013

covenant
Covenant C2

General Information

12885658059723778000
Cloud Provider
Cloud Region
Service
DomainsN/A
HostnamesN/A
HTTP Host174[.]138[.]179[.]149
ISPInterserver, Inc
ORGInterserver, Inc
OSN/A
HTTP HTML HASH-347495902
HTTP LOCATION/
HTTP REDIRECTS
HTTP ROBOTSN/A
HTTP ROBOTS HASHN/A
HTTP SECURITY.TXTN/A
HTTP SECURITY.TXT HASHN/A
HTTP SERVERKestrel
HTTP SITEMAPN/A
HTTP SITEMAP HASHN/A
HTTP TITLECovenant
LOCATION (AREA CODE)N/A
LOCATION (CITY)New York City
LOCATION (COUNTRY CODE)US
LOCATION (COUNTRY NAME)United States
LOCATION (LATITUDE)40.71427
LOCATION (LONGITUDE)-74.00597
LOCATION (POSTAL CODE)N/A
SSL SERIAL
SSL EXPIREDN/A
SSL FINGERPRINT (SHA1)72c08aa51c4b00ace448c0d587dc2ed581a42195
SSL ISSUED20240416140434Z
SSL EXPIRES20340415140434Z
SSL CYPHERECDHE-RSA-AES256-GCM-SHA384
SSL VERSIONTLSv1.2
SSL TRUST (REVOKED)N/A
TAGSc2, self-signed
PRODUCTCovenant
TRANSPORTtcp
PORT7443

A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.

If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below

To keep up to date follow us on the below channels.