Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo CINEPLEX.COM

Group: clop

Discovered by ransomware.live: 2023-03-23

Estimated attack date: 2023-03-23


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse easydns.com
MX Records
  • mxb-00189a01.gslb.pphosted.com.
  • mxa-00189a01.gslb.pphosted.com.
TXT Records
  • _pmw2y461abv95uxgzhv9ayh73vfqn4m
  • v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com ~all
  • 41vyuz3l7R6SdyAFVCyY84EEXp5Uqapkfiko4jVWwIGw6Nxjqk8z8Lhh0NIXW2tlIYVYdmb6U0AobJiDytTT7g==
  • globalsign-domain-verification=14DC10CBC1A2723F3A46CFFD402E366E
  • globalsign-domain-verification=fc488da36bb66dfe395d263fba258132
  • google-site-verification=ksWx25FVdi-IJDeLFS2iM1C5-Yn-xsrRkxFHOyBpftY
  • MS=E679265455547A58BE3ACC8BA8D5EBD79C1A4705
  • facebook-domain-verification=r4af5x9zdaxva8i6pno02ajj0pdc1j
  • google-site-verification=pu0RYEXhS4R7xeBe-AfzBSKpsoBt-WhZ8xWJnA1ZIcg
  • _globalsign-domain-verification=vGWbV_sPLQcVg36_ILEz35QseHA6XpC3Rb8_ypVrbp
  • cloudflare-verify.cineplex.com
  • docusign=65a6b2b0-797d-4e75-9ecd-1effea8d868b
  • globalsign-domain-verification=CA49A879665F491DD1BD7072797483A7
  • globalsign-domain-verification=AE278C5339FA8A6860D227493194E1FD
  • z4drx4b4qpzw30qbpvlhml7ccls32f7k
Cloud / SaaS Services Detected
DocuSign Proofpoint

Leak Screenshot:

Leak Screenshot