Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Leidos

Group: trigona

Discovered by ransomware.live: 2023-05-25

Estimated attack date: 2023-05-25

Description:

Leidos Holdings, Inc. is an American defense, aviation, information technology, biomedical research, and engineering company.


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domainabuse cscglobal.com
MX Records
  • mxa-00336402.gslb.gpphosted.com.
  • mxb-00336402.gslb.gpphosted.com.
TXT Records
  • duo_sso_verification=GLXKtc9vwBelNRwxSxafaFzWR7XyG6jKNMZQpI1A9VB4rbTQyMLnVlS1Ov5R6pZi
  • MS=ms86864383
  • amazonses:rViIgRFhomuueBUI/vL087ttEbwiKSXD1bs0tfMF/CY=
  • j9F3+f/HO69AxksBWNmqoO4iK/MpMEctiPl43V7nVYQKRBVDh+SqbvCwyxvxvW6XogBnMQqesTAMOoj6NaaaMA==
  • traction-guest=88809048-1b58-446d-aa7d-a7bf40ea5488
  • webexdomainverification.7TABZ=63095fb4-4966-41fe-a52b-e2ba75e6e469
  • webexdomainverification.89NKC=02e4cd1f-5621-4477-83f3-140ffbfcb0b7
  • Dynatrace-site-verification=ed2bdcd3-13ba-4588-8c7c-d492c9edbd3a__7cr3iprp6kqcln3r6t0r307bvo
  • openai-domain-verification=dv-i52SyvbUOa3n2nmfqtoY2muW
  • adobe-idp-site-verification=35f6139d624a8a4faf62e9ea0ac932c184a357134b3e3cd88ad83086219e155f
  • v=spf1 ip4:149.8.242.0/24 ip4:149.8.144.0/24 ip4:149.8.243.0/27 ip4:149.8.132.0/25 ip4:140.162.124.0/25 ip4:185.177.65.0/24 ip4:185.177.67.0/24 ip4:103.23.218.200/32 ip4:216.46.126.4/32 ip4:216.46.107.32/32 ip4:65.5.104.15/32 ip4:216.169.98.195/32 ip4:54." "152.91.75/32 include:spf-00336402.gpphosted.com include:mktomail.com include:46166704.spf04.hubspotemail.net -all
  • identrust_validation=eGqKvt9B5YF3moiqcmDZTkPX9sjik5rzDWO2oySqUeg7
  • amazonses:3sEEfkAcJa/4coehCYouBzSei+ud74uA4L9RSiJrkF0=
  • google-site-verification=OCM936SBYDQEbMkQRg1ejJj0YheOVH3yMWGUMh9IYhA
  • identrust_validation=iGY9GS+Uzd6kcprVfVhaCqEY5q4cucg/IRW3+UoWgSN+
  • adobe-idp-site-verification=b59ab640f04bce7bc291847369a30541094386fa0e492e1d3e0353a4b55fc8dd
  • MS=ms98732825
  • box-domain-verification=aaab159f5eba749afcfbe22e9bdb7162465f19947d098d7e9c59a6eb0e375a0d
  • apple-domain-verification=2wuO3oOHDkX97Xp7
  • facebook-domain-verification=9k66wf0zazg26n30h4xko19eh16nu5
  • a5a35780433e45e2a94799d99d9ac9ba
  • webexdomainverification.7SQ3S=ff82c8e4-684b-482d-87bb-d6137d59f2f3
  • MS=ms48477822
  • notion-domain-verification=L36qYNnzJQUGMXDyau7UXN8GSMI1hSwtTroRRwHpr5
  • cisco-ci-domain-verification=19ff04548182833ced8e92e55afc04dbfaf4cd7fc843b4206ba339ada55c46c3
  • google-site-verification=4NImZ9b81TPYM_ppnEKXHKeObn_buZq0kSCakg-OWOU
  • MS=ms61953769
  • box-domain-verification=b3dd4f44036c96e36bfb2ac6bba0d28ba1e4c0e18cf4b641c6f6dd0c6df4cc3f
  • _elastic_domain_challenge.au.leidos.com=e1fa30f87c1407a710abdd159eb76db8da534247e96b0abfb652b58e805ccd80
Cloud / SaaS Services Detected
Adobe Apple Amazon SES/WorkMail Box HubSpot Microsoft 365 Marketo Cisco Cisco Duo Proofpoint Cisco Webex