Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo JHU.EDU

Group: clop

Discovered by ransomware.live: 2023-07-10

Estimated attack date: 2023-07-10

Country: US

Description:

Home - Johns Hopkins University


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • smtp.johnshopkins.edu.
TXT Records
  • facebook-domain-verification=fui05pg5padt3lqjitadnizlq80543
  • docusign=47d09d1e-f20e-45ae-8348-9e0cde59d212
  • e2ma-verification=e15fb
  • asv=5da62ba592bab3d1542dbbf409a762ee
  • be53a892b3bf7129c12261ba89e8317ddc94023220d76fd9fa150b6d4b8f5c24
  • facebook-domain-verification=og2369fpji19hzsapehl97bxys6cna
  • docusign=e0788c6f-1ca1-40be-b4f8-7e1516c85ef1
  • google-site-verification=Hdg6lOHShC5P7Lb-ffkmurUN4E5BFTJ3NLZJu_9veDk
  • atlassian-domain-verification=v82iuU5jtUo6DLhV8wuZZxOk5KYBZdPh/5H+/GFe2/qw/ulV5gYzSVyg1UvD5xyw
  • xr53hrygrc5x351yc9rts2ggkv08kb3k
  • cisco-ci-domain-verification=4076af602b47f3714aa27fbdc0e14da0ca421ee8838942eabd7409b638930e39
  • 6d0krd2r1m6d4rfp4y16ryvjq72x1wj4
  • docusign=73173acb-df50-4cbd-b139-cc9adedeae7d
  • addevent=verification
  • apple-domain-verification=42Nv9AYu4nSWv2l4
  • google-site-verification=PogZzKp2fPlmh5CJooxo4w6DOBZvtzxL0aBOsSiGZwI
  • STKWsca/U+sp2fESD+L8E88fJJ/CVjPAf5Td1GTp3H+Qp45vNgVnofYNV9mj4wsk8YaFZSVLsFxNzJNg9vAlYA==
  • ERF+yrd/ZMTjPnD5bs/nBFo+y0qQgnrv6og7UQaJONReXkEFyLl3peWV1tnVep8tHaJ1RgDgxvRplFYItpeyMw==
  • AppId=000000004C0DFC04
  • google-site-verification=czjH79sUqAY6z7WdhXo0K3Z_uB8PQrWPoYZFLyG2ZyI
  • google-site-verification=5Zsy53rEK-hXGheCVnv_KOA9ga3WMOe8LQlInYaE668
  • google-site-verification=_78PEuF0BsnxniCMxdFGUXI8-rKuzXbA8w65yi5lRIs
  • apple-domain-verification=puEi9pYMYXEBi6bg
  • docusign=29c2d014-367b-4c7c-a9fe-d6512a2f37b1
  • facebook-domain-verification=w4q5d6dqct374zdq9lk2a8yfsucsne
  • airtable-verification=79c988870bd1359906d21b0f994f3e00
  • facebook-domain-verification=llmgbgm34s61kngl4fu1njobuwv9dc
  • google-site-verification=OYMuhxFsKdAKd7rlfSh6j9u2RU7ZlLOIMb-apkt_TLE
  • wkq43htjtz52dntbmtjw17pv0tqbbv0m
  • smartsheet-site-validation=o1IiE_3MJXBZ0xFwfwhtOhRmrOKxm1A8
  • ca3-54ded686d84a42a6a8e74e31814ecad8
  • google-site-verification=ilMpBs6aLedW4vFTLGnCyGYoQuSB5azucOxwxSMIsbg
  • v=spf1 ip4:128.220.39.0/24 ip4:162.129.199.0/24 ip4:162.129.251.11 ip4:162.129.251.14 ip4:128.220.160.6 ip4:128.220.160.1 ip4:128.220.40.0/24 include:spf.protection.outlook.com include:service-now.com -all
  • ZOOM_verify_HBPKAym7Tz-eFLcbrv5qMQ
Cloud / SaaS Services Detected
Apple Atlassian Cisco DocuSign Zoom

Leak Screenshot:

Leak Screenshot