CD Projekt!
CD Projekt!
Group: hellogookie
Discovered by ransomware.live: 2024-04-19
Estimated attack date: 2024-04-19
Description:
How you doin? I just remembered some passwords... do you have it? ah, whatever... just leave it here... w3: oJX&S5678536Y8as%23 gwent: GyrS^&4A89x, w3rtx: NIh\*AS^8x0Xppw thronebreaker: AN87*-2047UIOSh78^X magnet:?xt=urn:btih:44134E7ADE0F85E0...
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse ovh.net
MX Records
- alt1.aspmx.l.google.com.
- alt2.aspmx.l.google.com.
- aspmx.l.google.com.
- aspmx2.googlemail.com.
- aspmx3.googlemail.com.
- aspmx4.googlemail.com.
- aspmx5.googlemail.com.
TXT Records
- google-site-verification=miaenj1Y7jwul5RXV1Xbsd_RUMrWm41fwVfIF6LbQnY" "google-site-verification=Vw0bkR36u_lesvgzrcSv-b3TjeqzCWwbP5F_p1-d9TQ
- miro-verification=d92b9b335f49ada8f200ecc0c0041f266f143bea
- mojecertpl-site-verification-S31wrEe9jMv9nPohHtmVmuqwVkUruo4U
- openai-domain-verification=dv-GmNVNq9YwMSCoC0ORSnIc5P3
- slack-domain-verification=6URlnZmX4eYyUv8XkJp9eFyvebkwWqJnZ4FKcT6z
- v=spf1 include:_spf.cdprojektred.com include:_spf.google.com include:_spf.hcmdeck.com include:mail.zendesk.com include:_spf.getresponse.com include:_spf.psm.knowbe4.com include:spf.redpoints.com -all
- atlassian-domain-verification=5Kkf0CUUGAD5RdeiMq8bqgwz1g8HeR84jW8RwoyaaMs7oouYVzfGbVJvptBCx8eL
- docusign=42880af7-9ff4-4a94-bfd6-97d81c82ecf9
- elevenlabs=2nRg7s5VEbBc9OAhUqIrZePG2U_CN-BQzLAeF54qPHQ
- figma-domain-verification=c982deed4b37eac2e1eefa7865869b23019da927a5e48dc244de18ea220ed252-1731664395
Cloud / SaaS Services Detected
Atlassian
Slack
Zendesk
Miro
KnowBe4
DocuSign
Leak Screenshot:
