JAYMART.CO.TH
JAYMART.CO.TH
Group: clop
Discovered by ransomware.live: 2023-03-16
Estimated attack date: 2023-03-16
Country:
Description:
Jaymart Group Holdings
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- staff thnic.co.th
MX Records
- jaymart-co-th.mail.dr.greenradar.com.
- jaymart-co-th.mail.sg.greenradar.com.
TXT Records
- globalsign-domain-verification=XEfXDH8zkXZUBKe86j1fK4_1kw9v7iLM9u5fdxC9hM
- _globalsign-domain-verification=_F-mOf1CxfEFP6BdY0ls_w8lozSso-xeuU-jZhzN9c
- MS=ms94729046
- v=spf1 ip4:115.31.142.139 include:spf.mailpam.com ip4:117.121.222.91 ip4:119.63.80.28 ip4:117.121.214.12 mx:jaymart.co.th include:_spf.beenets.com include:spf.protection.outlook.com include:amazonses.com include:sendgrid.net include:smtp.txmsv.com ~all
- duo_sso_verification=6S1WtbCiO58zSm5VO2tNLvXTOtS3o8Iq2Hgvs4R6pC7LwXEsBMesvVGOneITVVBA
- globalsign-domain-verification=jKJKbTLl-2S9cQXVnI4douHjgtxnNH5TwroyaHjYHr
Cloud / SaaS Services Detected
Amazon SES/WorkMail
Microsoft 365
SendGrid
Cisco Duo
Leak Screenshot:
