Mainline Information Systems
Mainline Information Systems
Group: Play
Discovered by ransomware.live: 2025-02-11
Estimated attack date: 2025-02-11
Country:
Description:
United States
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- registrar-abuse cloudflare.com
MX Records
- us-smtp-inbound-1.mimecast.com.
- us-smtp-inbound-2.mimecast.com.
TXT Records
- v=spf1 include:spf.us.odmad.quest-on-demand.com include:us._netblocks.mimecast.com include:spf.protection.outlook.com include:aspmx.pardot.com include:wappmail.com ip4:199.44.241.0/24 ip4:192.254.115.169/32 ip4:199.44.167.0/24 ip4:199.44.166.0/24 ip4:72.3" "5.67.85 ip4:68.171.172.82 ip4:208.86.168.7 ip4:12.228.220.196 ip4:12.228.220.202 ip4:12.228.220.203 ip4:72.35.67.98 ip4:66.129.74.220 ip4:206.152.14.54 ip4:174.128.1.0/24 ip4:152.70.114.119 ~all
- 0ed1fe018ac99b1e0235cc4166affe4ec7ffd0be86
- MS=ms35323008
- MS=ms82981380
- _j8hiefh9clqlxp4tk8ikbcdpgkkxlu9
- google-site-verification=eguaI8V4D4YFv6xqbMBctN4hPPEOa-zSnzRqa3ZXhxo
Cloud / SaaS Services Detected
Microsoft 365
Mimecast
Leak Screenshot:
