NOVELIS
NOVELIS
Group: stormous
Discovered by ransomware.live: 2023-03-25
Estimated attack date: 2023-03-25
Description:
Novelis is an aluminum company created by Alcan's spin-off Alcan in 2005. It was acquired by Hindalco in 2007. In 2007, Hindalco announced through Novelis its intention to acquire Aleris, an American aluminum company for $2.6 billion
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- domainabuse cscglobal.com
MX Records
- mx0b-001f4a02.pphosted.com.
- mx0a-001f4a02.pphosted.com.
TXT Records
- JNXpkCwet3xZRXwRhbZevZnpfmaS7Cn7
- v=spf1 include:spf.protection.outlook.com include:spf-001f4a02.pphosted.com ip4:162.97.197.48 ip4:193.240.121.15 ip4:162.97.197.50 ip4:192.254.120.190 ip4:107.20.210.250 ip4:52.1.14.157 ip4:162.97.197.67 ip4:193.240.121.23 ip4:193.240.121.30 ~all
- miro-verification=bab61b59f83bef7433481535125789a3f0fed68e
- atlassian-domain-verification=jiGzCaZguvTkXaPn/bDaQvRxOyk7nc52UAcl8e5c7/nhuy0dWOklM2UAWb6ayf6C
- amazonses:0/Tq4Co5DvgtICy2ctjm1srKLsh0ZGzlyQGWcS71vfo=
- v=DMARC1; p=none; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com,mailto: dmarc_report@novelis.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com
- webexdomainverification.4C675B8A83FFB136E053AB06FC0A3F65=65267074-2672-47a7-8fb0-eec4f8438572
- _3nmyhgccz7t3vjudqkr3xiizuvapffv
- 59426ac5690d0db8e1d9860bcf30c4f362a5e838c9273f2f651c3fd1cadbdcf5
- google-site-verification=n6rKtBDZABhd0qJ9CPbPYNz3ALNDoC-IOdLRjX9IY9o
- docusign=de1b34e7-47df-4d0c-bfa8-517b0f49fb37
- onetrust-domain-verification=2ddf45b2a03b411690cbf4168fd4fecc
- apple-domain-verification=utEnzyxgyOAeV6Ze
- barco-verification=e07aedd5-1e1f-54f8-9395-6750269344aa
- smartsheet-site-validation=I5uxHGNoaQlBtPz8JNMKBtWJ5-J_uCbu
- webexdomainverification.=3fa0dc44-488a-4b43-ab9e-bdf95ca7d208
- astro-domain-verification=clu8toppw0boa01prwz3fow9s
Cloud / SaaS Services Detected
Apple
Atlassian
Amazon SES/WorkMail
Miro
OneTrust
DocuSign
Proofpoint
Cisco Webex
Leak Screenshot:
