Conditioned Air
Conditioned Air
Group: play
Discovered by ransomware.live: 2023-11-08
Estimated attack date: 2023-10-26
Country:
Description:
United States
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse godaddy.com
MX Records
- conditionedair.in.tmes.trendmicro.com.
TXT Records
- 2kimngjijd939c95udnipuetip
- v=spf1 ip4:198.74.252.98 ip4:65.141.68.130 ip4:65.152.188.126 ip4:23.21.109.197 ip4:23.21.109.212 ip4:147.160.167.0/26 include:spf.protection.outlook.com include:spf.exclaimer.net include:_spf.psm.knowbe4.com include:docebosaas.com include:mailgun.org inc" "lude:emsd1.com ip4:204.13.111.44 -all
- OLD-A 69.43.195.194
- tmes=940c2317f21d5e6031ddce79aa1ff22f
- 5l0vcusabnml1105klud0lsqr1
Cloud / SaaS Services Detected
Mailgun
KnowBe4
Leak Screenshot:
