CARESOURCE.COM
CARESOURCE.COM
Group: clop
Discovered by ransomware.live: 2023-06-29
Estimated attack date: 2023-06-29
Description:
CareSource - Health Care with Heart
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse directnic.com
- dnsmgmt caresource.com
MX Records
- mxb-0035e402.gslb.pphosted.com.
- mxa-0035e402.gslb.pphosted.com.
TXT Records
- dynatrace-site-verification=c62cabde-0966-4a52-9a4b-98e63d3789b0__19kodkuchfql74pld0r20gv0eo
- google-site-verification=b6JdhBLp-URSvdEIOyqwdpOO7dSM9iUXv4wCpC21QRA
- apple-domain-verification=2iB7uBzSuQJevsMB
- dynatrace-site-verification=d1efe36d-a1a0-4065-94e0-4dc2e9212fb3__it3f2v0gjufialsopdhbrr49ui
- docker-verification=905b61bc-578d-4472-b470-752c5e064511
- MS=ms37480773
- docusign=c5db5381-1058-4d4f-bfb8-33eec7e567c2
- thpc4fydkqdfz3s8zl7nr7yx6yhwh758
- 92MVG4NNKK67R6LH51TDSIJKCG4HEX3YH5PQ556AH
- mongodb-site-verification=EGs0bdZiIHAoj35lbzVWUERsDaPqhZB9
- docusign=5e7dedf3-c07d-4282-a1e7-86c7cef8e9c4
- 3rYmSiwIUJVQuccEYVi6wMCbvnNLEPSBlrh1SVee1sC8HvfdP2JiPoSGpIcruNFG9f8jG679SsMU7s/Hj9Dmkw==
- v=spf1 include:spf-0035e402.pphosted.com include:spf.car45402.zixworks.com include:spf.zixport.com include:spf-0035e404.pphosted.com -all
- google-site-verification=dTme0B6MRDFhaVcNPYYsgt64TkOTFAOGmkzGZQb-IQU
- facebook-domain-verification=3j9wnykh21jdsbkn3jwse60sijil0z
- mixpanel-domain-verify=3c7d9d65-6339-4dae-b83f-7b6a9418525c
Cloud / SaaS Services Detected
Apple
Microsoft 365
DocuSign
Proofpoint
Leak Screenshot:
