Manutan
Manutan
Group: doppelpaymer
Discovered by ransomware.live: 2021-02-21
Estimated attack date: 2021-02-21
Country:
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 2
Compromised Users: 575
Third Party Employee Credentials: 4
External Attack Surface: 42
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- tldsupport cscglobal.com
- domainname manutan.com
- dns-admin cscglobal.com
MX Records
- mx1.hc1536-85.eu.iphmx.com.
- mx2.hc1536-85.eu.iphmx.com.
TXT Records
- o8jnkstmbeJ30RmhaQO6+2AIsKQkrWh59MZ3pP7iBNO4KD6URTWj3+w8KvkpcTdrTuMoQ2/xSY4Y01CG/XCJpw==
- v=spf1 mx include:spf.protection.outlook.com include:_spf.sidetrade.net ip4:185.33.212.20 ip4:185.33.212.19 ip4:185.33.212.150 ip4:185.33.212.151 ip4:194.165.193.45 ip4:194.165.192.13 ip4:194.165.192.93 ip4:194.165.193.81 -all
- autodesk-domain-verification=lhwdb2_68WUWKl_4aZmy
- google-site-verification=_TYe28whOZxnV-DX4mCdItdrwuB4g8s4biV8pzjI5t0
- onetrust-domain-verification=941a6e4afd1a4e5ea83d150f72fc54c9
- meltwater_sso_20221011_TRITON-10804
- bv-domain-verification=532ca9342d6773f8d2f9fafd3b2b62f81f7b8250a1be79a042c77b1a6a334e12
- notion-domain-verification=bhvFlDNp5jeZxZ7qcKapIZPQzoCzY2cAhzjGhWUNotb
- lg6b6vff06pcygjw5bczypz8cnpmpyl2
- apple-domain-verification=cDmuwFPSHaq6tpJ3
- MS=ms98241685
Cloud / SaaS Services Detected
Apple
Microsoft 365
Autodesk
Bing Webmaster
OneTrust