Canderel Management
Canderel Management
Group: play
Discovered by ransomware.live: 2023-11-29
Estimated attack date: 2023-11-09
Country:
Description:
Quebec, Canada
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse wildwestdomains.com
MX Records
- us-smtp-inbound-2.mimecast.com.
- us-smtp-inbound-1.mimecast.com.
TXT Records
- Foxit-domain-verification=c4a829f6b495ac676ac16e43b8165bba
- _lcmxrcutrerg3osly3v1yg5fy3obkvk
- qxjkcw3y2l2z79vtg27q3f8ts87cml9c
- mgqcqph1vczd33ykpsqvgy7zbb6kssl5
- MS=ms28355102
- w/hGKXzNT04B9fT87jGqG9gbPNW/fuJ3Ow5wacS9MvJ+D7Wrvyb3twiPkACqhlAqsz2+2k66O8Gfhb3FSDxLTQ==
- _dnsauth.canderel.com=hy215r3q0075bzv6d7619kfs8dcs914q
- docusign=c5f29f6f-82d3-48d5-9321-8ebba0129419
- adobe-idp-site-verification=63e3c00f6fa98225b3eb7537ea50f32344790d20e29257167c2abe2aeb58430f
- apple-domain-verification=gfGNOl3Gw66mki1U
- v=spf1 +a a:mxok.canderel.com ip4:10.194.34.144 ip4:52.0.174.125/32 ip4:34.193.201.44 ip4:52.5.188.177 ip4:23.20.127.83 ip4:18.208.228.132 ip4:3.80.197.70 ip4:104.156.166.224/29 include:spf.protection.outlook.com include:spf-ca.letsignit.com include:us._" "netblocks.mimecast.com include:asp-spf1.yardi.com include:asp-spf2.yardi.com include:dayforcehcm.com ~all
Cloud / SaaS Services Detected
Adobe
Apple
Microsoft 365
Mimecast
DocuSign
Leak Screenshot:
