CONEX
CONEX
Group: nokoyawa
Discovered by ransomware.live: 2023-05-23
Estimated attack date: 2023-01-20
Description:
CONEX is a customs procedure management software specialist. Our SaaS platform, complete and modular, is dedicated to the treatment of all types of declarations. It’s our core business, and we master all the components of it. We cover all your interconnection needs with customs administrations...
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse support.gandi.net
- 1770aa48c4bd28cba17a05cfa8bbf496-662535 contact.gandi.net
- 3ad143f25b4dfe9817e66811d98effdc-662537 contact.gandi.net
MX Records
- vade-mx-fr01.hornetsecurity.com.
- vade-mx-eu-fallback02.hornetsecurity.com.
- vade-mx-fr02.hornetsecurity.com.
- vade-mx-eu-fallback01.hornetsecurity.com.
TXT Records
- v=spf1 include:spf.protection.outlook.com include:simplydesk.com include:spf.cloud.vadesecure.com ip4:198.37.150.110 ip4:90.84.47.63 ip4:209.206.8.8 i" "p4:216.252.182.56 ip4:195.6.20.103 ip4:195.6.9.103 ip4:168.63.40.48 ip4:168.63.40.41 ip4:104.46.88.232 ip4:40.113.83.14 -all
- Fhgl2CaOTZk4hs9pqjLIhLQGimk=
- google-site-verification=yQAZ73sxdZQAFmEact7UDUXTBZ9NYOYA8cGNvOY2oh8
- _paranoidlab=4855855662f90f7dc46c6026a959c25f
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.
Leak Screenshot:
