Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo NIDEC GPM GmbH

Group: raworld

Discovered by ransomware.live: 2023-12-20

Estimated attack date: 2023-12-20

Country: DE


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse corehub.net
MX Records
  • mx02.hornetsecurity.com.
  • mx01.hornetsecurity.com.
  • mx03.hornetsecurity.com.
  • mx04.hornetsecurity.com.
TXT Records
  • MS=ms60618436
  • v=spf1 ip4:93.122.86.173 ip4:93.122.86.174 ip4:87.190.62.182 ip4:183.131.96.229 include:spf.hornetsecurity.com include:spf.emailsignatures365.com ~all
  • 7TfjseIB12JruRY3CszrnW6dTI/U8TbijK6jImohj2WOlnEXPuGj3FatGNCdqaPePG8bMHp+YXDDey98yYs1Tw==
  • apple-domain-verification=SJP6vaBC27FsY8io
  • sT2zcSuW4FT2NefyqqqhMh/jUVTowIny66AaeeFFw3PJmmqxBf2fbtUaq80Ppb9PvkFfQKVri7PU/eb9EYA+tg==
  • MS=ms66512340
Cloud / SaaS Services Detected
Apple Microsoft 365

Leak Screenshot:

Leak Screenshot