Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo FERGUSON.COM

Group: clop

Discovered by ransomware.live: 2023-03-16

Estimated attack date: 2023-03-16

Description:

Plumbing Supplies, HVAC Parts, Pipe, Valves & Fittings – Ferguson


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse key-systems.net
  • abusereport key-systems.net
  • info domain-contact.org
MX Records
  • us-smtp-inbound-2.mimecast.com.
  • us-smtp-inbound-1.mimecast.com.
TXT Records
  • v=spf1 include:%{i}._ip.%{h}._ehlo.%{d}._spf.vali.email ~all
  • google-site-verification=IRyh8Lu9jHEjEGLub-uei8o0HB48c7lJ7d2ll7Q5BY
  • facebook-domain-verification=3ovpkdazgqwveef265xs1mbs1oddzu
  • docusign=6016f05f-805c-4d47-82b2-b461fc95aab1
  • 6wnk63wdwlv2by8m2kzsvyhsgj4mmdx8
  • adobe-idp-site-verification=71410c558f12ab8c8fdad1fcc098b26508184ab897e9b29169a4717feca09d8f
  • _6fz8varn08x1qc1vt2eev62vhdrwvx9
  • WIPvSAehYgTqHUHxCfTY32Ib7Y4rGGDxDkf9xHsXqN0=
  • p6btrng52dcqsr7shzwmxpr3mpfnc6ns
  • google-site-verification=dKjiDRjTumSzHU3jT0rnzpXrlz26LlyA_G8ex4k_lVU
  • s6j3m1w9g2gjh1jn8z6wlyywm2gk1324
  • l3pdw61hmt0zplgczcchctbqvd96h0t0
  • apple-domain-verification=GlkxPYqQ7X478l3m
  • _e5c3aaqdwpcbk1yl07j4hylnoz3uiuw
  • 2cbd9c12e97949e7b7defa2d5eda50dd
  • 02qfc5zybw12jv691x3xkrm214d9lppv
  • apple-domain-verification=36IIhpC_-fH874AD2IhrWxcWENksGwyP3146OHFUCWI
  • atlassian-domain-verification=b3iBeQ6QVGXwg3C7pLQrTaSp5v+SV10u5T3y10vcNJOVjcZ2X9NQnA1T2arBWtpz
  • i6tje38ujt340t468illf17628
  • 5qpfhx50bpgjhtl30ygf6198j1g7vff5
  • ZsO9wbWnfU2ZXwPS55YGepuo6dhepCEinJUWBfXAgo7eR9ARd425qxotb0+uNKVjOE7543+n/x3bpUlXljhcEA==
  • vv2xk81zybfvn2sgh453lrwrjv3mshj4
  • xw5j69wb74092029qvm4qd6fbtc75lfq
  • atlassian-domain-verification=kKL1O7umCzRCAwT0ber5EgILBrcr4ZhEzEFLQcT/YLiFz6bDgOtwhXzOK9EsIS5z
  • miro-verification=cac63cf99960e6713021b9b494b16e01aa3556f5
  • j4v0mbjpsyf2hcqglq8bqdtq3wvf2jnj
  • mk-org-sso-5e115714-4825-448e-bef7-e862fe820b6c
  • MS=ms46753781
  • zpdx3wy20x2v3nyqhd6pqbz1tfjwv1jh
  • rvw93cxwrghqqygj1p7kyzqzf8dqwq00
  • zapier-domain-verification-challenge=50f5de81-5abd-48cc-b2f0-3e03b5eff054
  • google-site-verification=OegSQN6ph58qXp3jsR4YJb3sMLDVBBCcsPg2HRgM7b8
  • google-site-verification=l9T83uI--EwLFbMBXz0et3AmNNxUb6za9ed6cBaSDLg
  • 00d4x0000016sxoeay
  • 9h37qdd7fh4tjz4ttczq3855qr354nj1
  • autodesk-domain-verification=b5vPCAJJbb7o9SFK75G3
  • _bmn43p8cpxrjesqvlrl2r2663nvbetz
  • 2f856mw4fzl3gwxj94f7bk0lgjnjbzg1
Cloud / SaaS Services Detected
Adobe Apple Atlassian Microsoft 365 Miro Autodesk DocuSign

Leak Screenshot:

Leak Screenshot