Forshey Prostok LLP
Forshey Prostok LLP
Group: qilin
Discovered by ransomware.live: 2024-10-02
Estimated attack date: 2024-10-02
Country:
Description:
We have over 300 GB of clients and financial files downloaded from their servers , company has 48 hours to contact us .
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse godaddy.com
MX Records
- forsheyprostok-com.mail.protection.outlook.com.
TXT Records
- MS=ms57942106
- v=spf1 mx ip4:131.150.75.26 ip4:24.240.250.162 ip4:162.243.72.223 a:dispatch-us.ppe-hosted.com include:_spf.createsend.com include:spf.protection.outlook.com -all
- A2Oao2IkfbhG+O2hcpqD9X45DgNxkTzJf70iGYHml69vRvKkvvSX5qTwIyQwTiAC2AtI8peMNMBMnuWfYY0xvw==
- MS=ms22826353
Cloud / SaaS Services Detected
Microsoft 365
Proofpoint Essentials
Leak Screenshot:
