SOVOS.COM
SOVOS.COM
Group: clop
Discovered by ransomware.live: 2023-06-30
Estimated attack date: 2023-06-30
Description:
Tax Compliance & Regulatory Reporting Software - Sovos
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse godaddy.com
MX Records
- sovos-com.mail.protection.outlook.com.
TXT Records
- LCozFI5YIeY8zj3+K5bXrLucM4pyaU27cHPt1dhmXajrshwr3X86OJ5qEGD6PMq7ijlDDi14tLd249cgpAKhRg==
- amazonses:fYp0GheerhzLvIbj4FTjKamsPMLhgrrHpKk9cPd0wgA=
- sophos-domain-verification=83c617b5a6e868d0764fd0512bc5695c01dee371edefd7a386b8100146d5c4af
- v=verifydomain MS=3245628
- brevo-code:395065fa28ece6685b98385df14f7f9b
- v=spf1 a ip4:209.236.101.142 ip4:18.195.31.110 ip4:209.236.101.141 ip4:208.118.228.204 ip4:208.118.228.207 ip4:149.72.177.77 ip4:146.247.184.31 ip4:80.239.148.158 include:sendgrid.net include:mktomail.com include:mail.thoughtindustries.com include:amazons" "es.com include:spf.protection.outlook.com include:_spf.salesforce.com a:smtpout.cm-hosting.com -all
- 3862ab9e58efc8abf6e1bced2392c09d0f3f2fe40bc1ddb103
- postman-domain-verification=a0ebae07e70fbe13a7e5c2d71484a23e716771a7dafa034cc728d01c0b47ffd55b95eadb1540933b4f98666ad5119805429053d4d34d04e4ab00aa9400a15602
- cursor-domain-verification-4npdb8=tEbTMvw0g9UobF9QHavHAcufh
- x121MJwxMaCoeXGjrFgNfaHGWjb3jOKk
- ciscocidomainverification=f25319b9b40b0d2bd7b21fdf40b606ccc069a972da027548b63e08b9be934af
- google-site-verification=lRMZ8zQZ7X0opxsmyQkMIuX_uE6CKcPoVduL0p9bifg
- atlassian-domain-verification=LoyLucaw/2T7g5hbeDvNSveY6z7s6Ls4/frEpFjclDiS1/4XpQI9f7TV2YEAOb7C
- _kvj0929tbkkt6xd7bekrb0vizclaw2a
- google-site-verification=oeZjnmAzpQG-RUMdzPC-AnPACZdqho8TXPK3VpIieBA
- anthropic-domain-verification-qc03zf=3WHwrnWhgIcDUKoBzFoTKlSbz
- amazonses:Drf4q0Ay+LYzeoEc2KC9g/pqZy0ovLis4MqW3BFPqYI=
- docker-verification=460c757d-ac1d-4c68-a9cd-fcac80dd7423
Cloud / SaaS Services Detected
Atlassian
Amazon SES/WorkMail
Microsoft 365
Salesforce
Marketo
SendGrid
Sophos
Leak Screenshot:
