Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo MERATIVE.COM

Group: clop

Discovered by ransomware.live: 2023-07-05

Estimated attack date: 2023-07-05

Description:

Healthcare Data, Technology and Analytics - Merative


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • trustandsafety support.aws.com
  • b42ac00c-afcd-42e4-8b06-44073d91aeac identity-protect.org
MX Records
  • merative-com.mail.protection.outlook.com.
TXT Records
  • atlassian-sending-domain-verification=f8502d9e-017c-4fce-a756-3ce7108cf3fb
  • adobe-idp-site-verification=563421ef34abf20d58f2f32b52e505cf57095cedf3d789994c921356d2d50a27
  • dp1przg9ms0fw4j2b82lc07kpkt17ng9
  • apple-domain-verification=nde2tCbjgCXODvED
  • drift-domain-verification=4a5dc8d537a6e50333606cf325cfb7abe9ce9b8d9ceddcab21e100bed12982c0
  • 4a23583c-c0b3-4166-8148-d06ecec34c1e
  • ms-domain-verification=c00fad19-22a2-4b3e-a707-bfe079b4350c
  • shopify-verification-code=7oU99heiWQz8vSKQtsdmH7ClTqfXYO
  • duo_sso_verification=6es0PzkDJxdJQGkFiBbmCYyl535MFbtWM51yAHleSIN1MDKCg60ehXIUUlrmAQEw
  • {{OSSRH-81757}}
  • ibmid= 94771915-7314-4d42-bfd5-f3a3b4a41663
  • slack-domain-verification=esDkbZKeyAUhgIYw6YgzcKkGAMgxvvDjYeKgcHSO
  • docker-verification=c472a246-1acd-41e4-8d72-caf18a31ad86
  • v=spf1 include:spf.protection.outlook.com include:spf_c.oraclecloud.com include:_spf.salesforce.com include:mail.zendesk.com ip4:157.199.112.25 ip4:20.172.249.179 ip4:199.127.41.37 ip4:199.127.41.46 ip4:172.190.69.24 -all
  • MS=ms99003224
  • onetrust-domain-verification=d48706469ad2451d9c2bc41c2ffdc0a8
  • atlassian-domain-verification=6ZZWZ8k06FvfacmViNbPwManIbp43GYxvfX4hXwZsyeoVBDJTLP7u6ffBLxQ42rJ
  • docusign=b85d1ee2-d627-4eba-adb7-5ca55790524f
  • _jbcrr3h8aqms4yr6gaf1y0xyaqjstiq
  • MS=ms50692915
  • logmein-verification-code=15275f73-57af-462b-9d74-f11d59897b61
  • _l13ejexfq0ao732g6y2c4k5uw4hsaov
  • atlassian-domain-verification=EZVixABgAy9Y7alels4GWGagMVXEVgBu5H4ZeVgc4G1P6MPaqNRccxTvuaUzIFmp
Cloud / SaaS Services Detected
Adobe Apple Atlassian Microsoft 365 Salesforce Slack Zendesk LogMeIn Oracle Cloud OneTrust Cisco Duo DocuSign

Leak Screenshot:

Leak Screenshot