Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo GRUPOVANTI.COM

Group: clop

Discovered by ransomware.live: 2023-03-23

Estimated attack date: 2023-03-23

Description:

Inicio - Grupo Vanti


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • gw4206.fortimail.com.
TXT Records
  • google-gws-recovery-domain-verification=42357712
  • google-gws-recovery-domain-verification=43129622
  • google-gws-recovery-domain-verification=43129626
  • google-site-verification=0lVHY0rdtM6Vnrr2gmc4Z2JRpviDrMWujDOpxwrouPk
  • google-site-verification=DRJ3aEJfCKceEFRutWibAW9E139QtKaAfmFOiR8MG8s
  • google-site-verification=PCX_uN7D9974YjULJz5G4XxDk1LNOWc2mmd6x1ivaIQ
  • hh7kfz384s49x3msvdckm9qsngpb7skj
  • v=spf1 ip4:190.254.11.84/30 ip4:190.61.45.44 ip4:173.243.134.206 ip4:190.131.251.169 include:spf.protection.outlook.com include:carvajalcomunicacion.com include:_spf-sfdc.sapsf.com include:_spf.cmail.ondemand.com include:sendgrid.net ~all
  • workplace-domain-verification=HGWvBfku8FwRm3L4WdKqK8i8deixgz
  • MS=ms16515603
  • UHFRC4816015SOPNZIQXQCREVN7BK0C65955574V
  • atlassian-domain-verification=MohMpetXRTkaaxwlmNCJ/mtGksGK8qOx65Sgd6DsbdW7v6o/FtUmiFAiqxZVJHII
  • atlassian-domain-verification=j3meSnvBnFRSUXIw57UaAeHg4aItZM6SkMdERq805PDGQSAPuv3mJbPryt3sbl3l
  • facebook-domain-verification=xyjstucq383hn3e345d7viwthicuty
Cloud / SaaS Services Detected
Atlassian Microsoft 365 SendGrid

Leak Screenshot:

Leak Screenshot