Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo HOMEWOODHEALTH.COM

Group: clop

Discovered by ransomware.live: 2023-03-16

Estimated attack date: 2023-03-16

Description:

Homewood Health


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • homewoodhealth-com.mail.protection.outlook.com.
TXT Records
  • MS=1AA73DBE8571264433BA2A036C39CE2718B8E506
  • google-site-verification=maxZmtqNaxeL3v-8GYqdlhWyvnq6onQAHK5ecMx7dxE
  • google-site-verification=VRu0tod7MngUkEijUWeMkTsc7xzbdpnCkaLQEa2xkgs
  • postman-domain-verification=dc882bf2911240980d0a31723af144b1d68474b4689cfdfbc7817b231ca9b305ec47f6bcc3b7b488b87aab0639ab4ad111a9befe4d82bb82685ac70f6b0c3a86
  • pardot329671=b50cd3922d6f3d95cf010e29e1f61aa4b7f7b55877a3b76543e3139b2027adda
  • v=spf1 ip4:216.171.102.210 ip4:216.171.102.222 ip4:216.171.102.211 ip4:206.47.93.2 include:_spf.ultipro.com include:aspmx.pardot.com include:spf.protection.outlook.com -all
Cloud / SaaS Services Detected
Salesforce

Leak Screenshot:

Leak Screenshot