Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo JTI.COM

Group: Clop

Discovered by ransomware.live: 2023-07-14

Estimated attack date: 2023-07-14

Country: JP

Description:

JTI - Japan Tobacco International​


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • jti-com.mail.protection.outlook.com.
TXT Records
  • miro-verification=d040b11c182d049681c03ef4f8896b1de3b98f65
  • v=spf1 include:spf.protection.outlook.com ip4:194.24.4.18 ip4:194.24.4.19 ip4:194.24.4.25 ip4:93.187.188.229 ip4:93.187.188.230 -all
  • docusign=58c434ab-aa65-4619-809c-5b428bd1c6f3
  • atlassian-domain-verification=vE0BsSRka1EnvxD99A80NOQdxJasXc9a8r57zsP2fjuKkM8ZZXNQe7RxQtdvhLl1
  • cisco-ci-domain-verification=68ebd52dcc2a3ca4a5eed9ae8d569707a9ab7b706a8e50bf201efc82a523ed
  • figma-domain-verification=4f25d3f32644c6893337d6e22c927551faf268eda0461dc65585b5b4ac1f07ce-1753956182
  • canva-site-verification=cRvX4wbKTpTNPkDz-VmU2g
  • _z2eak02i8apo7148gh84zq3k5b9zlu9
  • hes=cae0273e53001dac72cb1af5b9154b36
  • docusign=73399db6-87aa-4a6c-9017-9f52ca8a5d15
  • MS=ms49465531
  • _c5jpi4xa69bdazzujwpzs6zn2139gkt
  • atlassian-domain-verification=TmykJeKJxywM//UuWlpAwL/LfQfiHARZjZnPNcGRReI8cKcHQGplXF2b6f18/8z4
  • a8HBv22HhAjVum/eYZle8XtLn2ZZGAkmYxmOxxuZmHSnCEQcgJgi2/Y4OdAe4btifB9Pxw8tSvy1DTrLwloNAw==
  • _jf5u8363ni4t6eldt0np6t204qej8l6
  • google-site-verification=-Ip2X4k8V9vSPEQlSS4d9qYN5V1uUz_kQfxGDI4J830
  • _3eqnj2xdcb25ag3cboe19d643240htt
  • apple-domain-verification=AmIevHsXDEQMxXJU
  • kPLez2gOSryR1Ee9XqEpZbAlweh/afBRKUCbUHw39zNDiCBy0vXf34X8QSIEeWjhK39qwcRyj9iBiYsbpu6gCw==
  • canva-site-verification=MBSK9jOCbmAiXtPJsupMxA
  • atlassian-domain-verification=7v1H7G1LlcpEf22kszdUI0fISrLLAkBKaJI0nj3g14vfz8eaDKK7q/F/lV9gNcWL
Cloud / SaaS Services Detected
Apple Atlassian Microsoft 365 Miro Cisco DocuSign

Leak Screenshot:

Leak Screenshot