Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo GVM

Group: play

Discovered by ransomware.live: 2023-12-07

Estimated attack date: 2023-12-07

Country: US

Description:

United States


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • gvminc-com.mail.protection.outlook.com.
TXT Records
  • ev5sangcr6u0u5h70hg4u460e1.
  • 924av8861la312c8f1gaqk3e62
  • MS=ms17100007
  • google-site-verification=eNrAfTmoaC5dZsy47jQhOxFJa7YMAkZuNLmNN_yOkAY
  • ev5sangcr6u0u5h70hg4u460e1
  • v=spf1 include:spf.protection.outlook.com mx ip4:204.14.234.64/28 ip4:204.14.232.64/28 ip4:182.50.78.64/28 ip4:96.43.144.64/31 ip4:96.43.148.64/31 include:_spf.salesforce.com ~all -all
  • e2ma-verification=i46
Cloud / SaaS Services Detected
Microsoft 365 Salesforce

Leak Screenshot:

Leak Screenshot