FIRST-CENTRAL.COM
FIRST-CENTRAL.COM
Group: clop
Discovered by ransomware.live: 2023-03-23
Estimated attack date: 2023-03-23
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- domainabuse tucows.com
MX Records
- je-smtp-inbound-2.mimecast-offshore.com.
- je-smtp-inbound-1.mimecast-offshore.com.
TXT Records
- v=spf1 include:spf.first-central.com include:spf.protection.outlook.com include:eu._netblocks.mimecast.com include:kallidus-suite.com include:cli-mailers.digitalcraftsmen.com include:amazonses.com -all
- ibmid=3ff8f1d1-7e65-4710-98aa-7e66cd7e9cb1
- 6oWosQApBE5R43RKVDAuIMp8oyTjCHtR79eye5qVutA3aw
- atlassian-domain-verification=0LBInumKZ0Kk8llynAPb8JmS9SpBRPT/7Oow7XmUBf71FJDBWYzuSvx48z2yWFF9
- miro-verification=5aec9a4b12c565241ccb5eac1654479609ce5b21
- MS=ms72743975
- teamviewer-sso-verification=a3c5f3cbdfed4d0e96d1af4bd8d7008c
- docker-verification=6a511e0b-6f61-4e9e-8872-4fb6486c14d7
- apple-domain-verification=ViRe6tMwMgXN1KAV
Cloud / SaaS Services Detected
Apple
Atlassian
Amazon SES/WorkMail
Microsoft 365
Miro
Teamviewer
Mimecast
Leak Screenshot:
