MW Components
MW Components
Group: royal
Discovered by ransomware.live: 2023-04-24
Estimated attack date: 2023-04-18
Description:
MW Components is focused on accelerating the entire process of delivering custom, stock, and standard parts to virtually any volume and against demanding deadlines. This time MW Components hasn't coped with deadlines and soon you will be able to download their data and see how they accelerate their their processes in their documents. Files of 274GB size that we obtained contain SSNs, passport data, detailed accounting and finance documents. Stay online!
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- domain.operations web.com
MX Records
- us-smtp-inbound-1.mimecast.com.
- us-smtp-inbound-2.mimecast.com.
TXT Records
- atlassian-domain-verification=MW4oiQoYNXqqydHrBMTwlGdW01SrkUOC9qzExESA4WnmXnMk4GMlm70ogm53tU7u
- openai-domain-verification=dv-b3jtFeiTfutr3Ne1GfJ31GSp
- MS=ms11462730
- v=spf1 include:us._netblocks.mimecast.com include:_spf.sendergen.com include:sendgrid.net ip4:8.34.161.0/24 ip4:3.14.207.17 ip4:208.86.168.7 ip4:208.86.171.32 ip4:174.128.1.0/24 ip4:98.101.213.178 ip4:208.86.170.134 ip4:208.86.170.218 ip4:199.250.204.69 i" "p4:70.39.232.80 ip4:143.170.71.76 ip4:192.184.120.0/24 ip4:172.81.116.127 include:spf.protection.outlook.com include:spf.constantcontact.com include:_spf.act-on.net include:8642978.spf08.hubspotemail.net -all
- google-site-verification=YPYO9vdHsBCMXjyjogO8cmSDmFabQtqn3_m-aBFt-fA
- qv35ko0k3g95khhgbq9aat4uiv
- Target: 0ed1fe018ac7121f98b13c4b9da060b766cc6dd090
Cloud / SaaS Services Detected
Atlassian
HubSpot
Microsoft 365
SendGrid
Mimecast
Leak Screenshot:
