Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo ENCORECAPITAL.COM

Group: clop

Discovered by ransomware.live: 2023-06-30

Estimated attack date: 2023-06-30

Description:

Encore Capital Group


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • mxb-002fe801.gslb.pphosted.com.
  • mxa-002fe801.gslb.pphosted.com.
TXT Records
  • v8zszg55d1ykd8s3rn0khkv0xr5gf3jn
  • bjzzzqjx1vm6dh6rr0b9nd3bm9fr4mmj
  • adobe-idp-site-verification=c919bfc4b0b2da2cfc3a701d9ef7e159a7f09833757cfd3beef83447d3086d5d
  • LMLBVQ5IIGC45N2G50TV3F43H1
  • 0XZHN9V7MTXIB4MXB2LGT0AHKT2F9ENUSIJCR5A3
  • v=verifydomain MS=1154761
  • v=spf1 -a ip4:174.69.168.210 ip4:174.69.168.211 ip4:128.177.118.61 ip4:128.177.118.62 ip4:192.112.148.40 ip4:192.112.148.41 ip4:204.138.244.41 ip4:204.138.244.42 include:spf.protection.outlook.com include:spf-002fe801.pphosted.com include:spf-004ca301.pph" "osted.com ~all
  • ZOOM_verify_baFlBxx7kMC9xnzCkvERMI
  • globalsign-domain-verification=1b820ba42c2cbe3888a00130aa2b8e22
  • _globalsign-domain-verification=hrB8AMKQ7QIjOpVOUOAPGMcltnLEbAUlVHF9-x5nTw
  • encorecapital.com
  • atlassian-domain-verification=uv5TG5f5VAdceVULY3sIzUnqxFF118IhMvcn7DncrWkT1Zz2cIto3CCU3JeIkUut
  • yw/x5ksyinwRQ4Rz3djp5nkLyyGxEKCHuvpzznZgaxcV+jZpHFLLaIdb+QEP6KQWWIXxLoSuod6MGUgwqAPZiA==
  • 8pb5bqnvz29bnzj8bxkwynbhqs1g0wtv
Cloud / SaaS Services Detected
Adobe Atlassian Microsoft 365 Proofpoint Zoom

Leak Screenshot:

Leak Screenshot