Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo GROUPAMANA.COM

Group: clop

Discovered by ransomware.live: 2023-03-07

Estimated attack date: 2023-03-07

Description:

Homepage - AMANA.


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • eu-smtp-inbound-2.mimecast.com.
  • eu-smtp-inbound-1.mimecast.com.
TXT Records
  • v=spf1 ip4:192.29.122.247 ip4:86.96.197.5 ip4:86.96.197.6 a include:eu._netblocks.mimecast.com include:spf.UAE.exclaimer.net include:spf_c.oraclecloud.com include:oci.bigmachines.com -all
  • dropbox-domain-verification=45w3l6am06g6
  • 0ed1fe018ac4ee446c0c774dba84411eab7658aff2
  • atlassian-domain-verification=isuwLWsNaGow9iOTtK1wz9oWkIllkNLpw6nsNJIcNgW554I8G4TCfslaALmb8kqu
  • v=verifydomain MS=6057644
  • docusign=3ebf15d8-9e70-43c6-8c4e-f572a5c442aa
Cloud / SaaS Services Detected
Atlassian Box Dropbox Microsoft 365 Oracle Cloud Mimecast DocuSign

Leak Screenshot:

Leak Screenshot