Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo SOWITEC

Group: play

Discovered by ransomware.live: 2023-05-16

Estimated attack date: 2023-05-16

Country: DE

Description:

Germany


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain-abuse internetx.com
MX Records
  • sowitec-com.mail.protection.outlook.com.
TXT Records
  • bw=jrG2KDvbGfGABfa4+uUF7yJog5oDQ7FfxgfX+1N8LVBl
  • atlassian-domain-verification=u3r8uAZM0FzjpMn7iv8A4iXPwOHIxDBIRgx1QQQVnrLlWB25vqq2/iawYOVWTBxo
  • apple-domain-verification=M2BA3LYHK3BzgdqC
  • asap-site-verification-012efe7e-d164-4e90-88f6-875a1f06e504
  • docusign=f21f0beb-8f1a-4d7f-85b1-d08e6ef53c87
  • v=spf1 ip4:212.3.85.96/28 ip4:83.243.43.160 ip4:83.243.43.161 include:spf.urmx.de include:spf.protection.outlook.com ~all
  • MS=538EADE4389D05AF1308585271F0DB5C3D94C673
Cloud / SaaS Services Detected
Apple Atlassian DocuSign

Leak Screenshot:

Leak Screenshot