Autoglass
Autoglass
Group: raworld
Discovered by ransomware.live: 2024-04-16
Estimated attack date: 2024-04-16
Country:
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 222
Third Party Employee Credentials: 0
External Attack Surface: 8
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- No emails found.
MX Records
- eu-smtp-inbound-2.mimecast.com.
- eu-smtp-inbound-1.mimecast.com.
TXT Records
- XcyjsmI28c4e+51oENNdLURTA3di0MSgEDL6zx91gN5c4Mlj7X01rsjskMIe84vhN/ZdOimT5q426WJjZde6ug==
- facebook-domain-verification=ih8kpqnv9no7twgcih4wdu1f8utixa
- google-site-verification=09DZ0pAO0YtpKn8MyfblTaanGTqEf7rOAyxFG3KyjIg
- google-site-verification=CVa4MePgR84eDa4Q5M1iRVJeYKkXdZmSnCE1PIjR3wM
- knowbe4-site-verification=6a3a60f6391c8d3d86d11742490bd65b
- nonapt96v417is6u5lpconi55s
- v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCIfrc3jo7kI2U8W/TJqSSApQoLSMgHvONPcQFR0c5jrfXOckQloTV1tFPn/FzYKJTTQAZgrrMHGdVYQlNK04sJ7IgBLJ/m4G9cRYHibtU/1gbn/4Uju1brXzfZRVCIR0UUqF1fShqgbj2y1MAUtQzUjFDpGXcgpzrDFVBREoSWCQIDAQAB
- v=spf1 ip4:212.58.50.160/27 ip4:54.240.52.141 include:spf.protection.outlook.com include:_spf.qualtrics.com include:_spf.qemailserver.com include:eu._netblocks.mimecast.com include:amazonses.com include:sendgrid.net ~all
- JrSPKOrX
- MS=ms50370720
Cloud / SaaS Services Detected
Amazon SES/WorkMail
Microsoft 365
KnowBe4
SendGrid
Mimecast
Leak Screenshot:
