Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo CLOUDMED.COM

Group: clop

Discovered by ransomware.live: 2023-03-23

Estimated attack date: 2023-03-23

Description:

403 Forbidden


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse gcd.com
MX Records
  • r1rcm-com.mail.protection.outlook.com.
TXT Records
  • sfp_c.oraclecloud.com
  • smartsheet-site-validation=YgjKZXqULZMfALJsqmf7IcdlHtrIpHin
  • _w69ixkmiuo0smxm3synnoglilmifma6
  • dljqnjrp2kra0mss5pddsloqsu
  • google-site-verification=vQgyIfk7231vSKJP7h6PMWcHfnyjo8-iXLCJUZ1JrKk
  • k22dt84rdb3v7ck3rj2ohodavt
  • miro-verification=7781ef054f831d0aeeb4f1e0ee614678471a8072
  • box-domain-verification=4badbb69a77e3b58aae79e3a4f55cb534f83344a09fe6d9646f846f475c195b0
  • ZOOM_verify_FkS8YqsnSm6VE7lEvh_EIA
  • atlassian-domain-verification=oGxBrDEP2r58NqHs1FWoeEyYkT9sfa7d8gn8fDev5FwQd+AEwwmoPhzDcwmRK5QW
  • knowbe4-site-verification=e6df89e8d4248b86dd6afbe82d7618a8
  • google-site-verification=GbLyA7tmH8FbNU0AQGHfEhMCU_qGHCp0bqzCkapF9lE
  • pardot1009102=ada94d531a004163e31f42a943727f42c41d4bb8b5f436d370539c20cd642d6c
  • MS=ms98579223
  • mongodb-site-verification=bGJiESN6GIH0e9QFztZGf2EfBjlA6JL6
  • MS=ms85530832
  • v=spf1 include:spf.protection.outlook.com include:aspmx.pardot.com include:spf-006fe701.pphosted.com include:spf_c.oraclecloud.com -all
  • smartsheet-site-validation=PITGsslHa-rqmRJ_xC-PgIppHqdpP67n
  • asv=8902f939a5a51cf40277530ea4eb5c95
  • ms-domain-verification=0778b898-ed48-438e-9d29-a3ef6c8f2bfb
Cloud / SaaS Services Detected
Atlassian Box Microsoft 365 Salesforce Miro Oracle Cloud KnowBe4 Proofpoint Zoom

Leak Screenshot:

Leak Screenshot