Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo INFORMA.COM

Group: clop

Discovered by ransomware.live: 2023-07-26

Estimated attack date: 2023-07-26

Description:

Home


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse safenames.net
  • hjuajigpcwb6 idp.email
  • hostmaster safenames.net
MX Records
  • us-smtp-inbound-2.mimecast.com.
  • us-smtp-inbound-1.mimecast.com.
TXT Records
  • docusign=bfcb5743-251a-4570-9ee3-831b842539fa
  • miro-verification=a809b36ccd57128930cca45fc29da6c010c25fbb
  • amazonses:YC8Hur1jj+3qzFl5u23JzxUvTex2ra5tXWT2tD08ICI=
  • miro-verification=379e7a35b2d0a9e2c172a5109e487aa616b9b0f7
  • IbohohmNlATqva4R9orcwncEZm855JQEjnx5cm7Ph9bOhp80YOJuTgQZpSuIYFgs6TIAahCtPH0/Df8ULzzSkQ==
  • adobe-sign-verification=f02ac030d66330af58912522c1b17862
  • atlassian-domain-verification=NHkkzpOydFugfvwgyyoSLIfs1haffNEUWFjdoq4O5z8UBAvRof15pUmulo7lvcWj
  • google-site-verification=0PUh81E77rH0hqSesyasMhpRDB0_QyUkuVZCFjNIBQ0
  • google-site-verification=eBA_l_4LFn8g-dPBBjkds4EfCS1tAb3503DgdE9N-i4
  • smartsheet-site-validation=Fp3k44r1cNMJdBbsPrGlZKjczK1UybiF
  • loom-site-verification=4d72321e5cc34f3285550f36301bbb52
  • jamf-site-verification=lpIfnDbYtqOHK1_arZd_LA
  • amazonses:kYcc3XcxX5C1pgG2f8BkQde20S8RByqyG8pb7FZx0e0=
  • docusign=b905ee68-3443-4f40-8223-ee86f8bda389
  • logmein-verification-code=5ae2611b-53ce-46df-9f18-7a7420f36fb6
  • docusign=f3ea3ddf-2712-4bb8-a1e4-a18346023da9
  • apple-domain-verification=H9WCJ5unZpZSO4YQ
  • google-site-verification=uDhvxISenrOfP0bnj34VG2D04AgYzDROBVihZSoq9U0
  • drpchgxhfs68zqpj59cp8fbhwp55781h
  • atlassian-domain-verification=3wHwvbTxm1CJM1uafxIGZ7ZSSrFkPfGFONLf7A5tXNjvnHaG/esF3g92NgWYiowm
  • airtable-verification=86dd7ec6dbd598a57a59d02e47e3d0a1
  • atlassian-domain-verification=Ppsbz6J3yviTP992xtvQmfd4O6I/hFjK9/pM8puGW3/9oon7JOv54PCntThYNiYn
  • google-site-verification=45w2cER_RyNwCCs47ZItpmgjSENRywTbwKNtFPJOvCo
  • mongodb-site-verification=PBeR40APY38jj60uveoQ0kLkIOczHzLN
  • v=verifydomain MS=ms43348910
  • atlassian-domain-verification=nHgDqYO1E31S5t6Yaiy/u2F2GIRP6j8s/6AvRWKwvDHnDV00UesEpr5ZRSeY37Bw
  • adobe-idp-site-verification=8167c264-e62d-41a7-b8a1-3c011f49838c
  • sending_domain83602=ee59f7e2fb2fb870c3df5222ea1d4f7ea57ac2f11d9979a7442ce42f982e79df
  • nitro-verification-code=NjAyODA2ODkzMjUxNjQxNTczMA==
  • docusign=1642e0e0-972b-44e2-8547-248f1ec6448c
  • docusign=ff710d7a-7a19-4830-b808-6970d4119d73
  • v=spf1 include:_u.informa.com._spf.smart.ondmarc.com ~all
  • pexip-ms-tenant-domain-verification=06d9c2d7-c2f0-408f-8b85-be3f1af05163
  • docusign=510763dc-3845-4673-9e6b-2760fc2d3c42
  • amazonses:xEth2JzKHno7tTVpttG3Tx2oMcBRnnvrHKliJQvQTe8=
  • stripe-verification=a8169ed2529a9a9a790ce8802cc843ee793b24c0aa991986ef48d59c01f6699f
  • docusign=5e913eb6-53ae-47bd-a87c-4f6145c15325
  • asv=82258bf1c2c5021db2988cbeb32d81d7
  • amazonses:vza9TS/+uMgZr3Xfz9eOZljajyCcjw7c8Q0KOKtyEXw=
Cloud / SaaS Services Detected
Adobe Apple Atlassian Amazon SES/WorkMail Microsoft 365 Stripe Miro LogMeIn JamF DocuSign

Leak Screenshot:

Leak Screenshot