AvidXchange
AvidXchange
Group: ransomhouse
Discovered by ransomware.live: 2023-05-02
Estimated attack date: 2023-05-02
Description:
We’re the ones who believe there’s a faster, more efficient way for middle-market businesses to process invoices and make payments; and who, as your ally, want to liberate your AP from all that paperwork that’s slowing down your business and costing you money.
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse godaddy.com
MX Records
- mx1.avidxchange.iphmx.com.
- mx2.avidxchange.iphmx.com.
TXT Records
- docker-verification=68b3487d-8a44-452b-a6bb-3bf7d6d6c2c6
- Dynatrace-site-verification=abc6cdf5-6aeb-4db3-b3b4-e12bc3a175fd__l193gn0mm5eqc3f82qpsq3pa7n
- apple-domain-verification=igmf1FOCLnrEYRGt
- google-site-verification=2mCYrFXjhEKCphG6HQ4AwNNm6Zao7BJN--Da2i-kBjQ
- mgverify=e612727486dea1738e0e0c41253e839ffe6031e83ed32d88fc52f2d973d3e23b
- smartsheet-site-validation=KEz6H4gzB9pDbeEbKaR7AEYMWhDFa_fj
- docusign=82f1e17b-bfbd-4720-875e-215869c36656
- wiz-domain-verification=5188898be5b8c75863938311c97623b97f18e3a9c0dff0e976180fd9fc8fe4c5
- adobe-idp-site-verification=ecf9572e2c0595967c0ffa939e1b241b7a040d3f6a31555ccc27a8c6c07445eb
- v=spf1 ip4:149.72.231.47 ip4:40.88.237.229 ip4:20.81.54.65 a:mx1.avidxchange.iphmx.com include:ac1a53.workshop-spf.net include:_spf-ssg-a.microsoft.com include:sendgrid.net include:mktomail.com include:_spf.salesforce.com -all
- sending_domain478872=44f07576b1d5382e46cc0780dad0a1bb88c1c0ddb7c09bc4e599a477abcacd90
- cursor-domain-verification-5w2z2f=OocdqEl3JUbZWZKhk2TdhI1s6
- google-site-verification=TeS8oDCIeW9xd-_1hlu4RcR2KmRwTJeUJf27TeyF_nU
Cloud / SaaS Services Detected
Adobe
Apple
Salesforce
Marketo
SendGrid
DocuSign
Leak Screenshot:
