Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Douglas Shaw & Associates

Group: alphv

Discovered by ransomware.live: 2021-12-30

Estimated attack date: 2021-12-30


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • d204806a.ess.barracudanetworks.com.
  • d204806b.ess.barracudanetworks.com.
TXT Records
  • 34gr85aioc7a5luib813e1heeg
  • MS=ms34406152
  • 7UVAC2OFPezEHesg/ArNHEHlzi/EATQ4mjgNTcs+5UZK/vYvCwpVZW/Ne5Eh5ME6Kq1wDCot5peh8g+Ay7yN6g==
  • apple-domain-verification=xN6gzAGPYeQgvDvOAwjOu8c_j_totaGD0R03xkcl4O0
  • v=spf1 a mx ip4:50.201.77.50 ip4:104.143.112.219 include:mail2.workamajig.com include:mailw.workamajig.com include:maile.workamajig.com include:sendgrid.net include:servers.mcsv.net include:spf.protection.outlook.com include:spf.ess.barracudanetworks.com " "include:pageproof.com include:spf-us.emailsignatures365.com ~all
  • google-site-verification=Ztf9A2sNTgRGc6m-m7WCYBXPhl-rs3Iu5jgxy3ImhLQ
  • eZ8lviVE
  • facebook-domain-verification=6dtb028b2cf8e9ggqybx3fvqcj9wae
  • rhrg3v7h8c1sn33e91kp0a0r4n
  • google-site-verification=UwqfqdtE-6uQA6hQ59ANmzlVfXw15lL25afZYGvHzvo
  • apple-domain-verification=X2_boZvnEnOkF-jQrupskokkfgyD61TiOjNMenM73Bg
Cloud / SaaS Services Detected
Apple Microsoft 365 SendGrid