Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo SAGE

Group: stormous

Discovered by ransomware.live: 2023-04-03

Estimated attack date: 2023-04-03

Description:

The Sage Partner Network is a vibrant, close-knit partner community focused on winning together. Partner with a strong brand that can attract and retain customers. Sage provides attractive sales models and margins to help you maximize your investment in your business.


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abusecomplaints markmonitor.com
  • whoisrequest markmonitor.com
MX Records
  • sage-com.mail.protection.outlook.com.
TXT Records
  • gospaceai-site-verification=059b018279ff4522def6ef6df5cb84ac132d2a7029332b52e5be50441b493968
  • webexdomainverification.4C675B8A85D1B136E053AB06FC0A3F65=13bde154-9cdb-41c6-afe8-a9197332bcb7
  • //a+r7G3Mc4+fR9bI6olwnMBrcTdnDJAKQ7GKEWrEEuDyGeWiNWTR8EmQnsHL2eGo2osc3TZP9DFyRkjKmEfig==
  • flexera-domain-verification-wkgejfyhaykwhcri
  • google-site-verification=fIngA2jIxjiC_NsLaA-bDbWYblJKjL9lFjv8tm_bnYo
  • apple-domain-verification=kEIayAdGR2lqMYSL
  • signrequest-domain-verification=c9ed8daa55b45d6bc328d2ef475b460d75532c9592b030bc7f41db9bbe1c5a6a
  • logmein-verification-code=lyzP0qJbjj8T8VFIuLzYtK1Pr
  • smartsheet-site-validation=uHU4TUZ9u16ub3jL5DF1NcEtfmoK10yJ
  • docker-verification=f72c5ec1-587f-4614-96bd-89768b87e3dc
  • google-site-verification=WJJNGPZNzTzVUq42SIDnGjMKweYGCwMjmmRg9zGZQyU
  • mentimeter-ca0fef96-92ee-47e6-9b4b-b196a23926cc
  • atlassian-domain-verification=6/72ZPugujeOtoOuxc6NwlXkVDS8hIioTsoyQ27Jv9GGaUC23laKc1jl0d44csme
  • s2gvm1k18m3m0pagqhbcorha6m
  • mongodb-site-verification=tb70CuqCrI8zGDtyCLEoqXntJhOzcOxL
  • d3a2qeofkf51evv32gsic6kilb
  • atlassian-domain-verification=t5hSlicdeJXu9aeHLVdFGWT-AUm//zVUttmbfeziu/rx/bviqoVhAAQe8yLD4L+I
  • google-site-verification=Ct3Dr_XHMcRvGZziCWX7SoipXRNjxQ2PTz6Nnl4Xf_U
  • 1prqf7lz2nx51dqjrg31437f65gb0q1m
  • google-site-verification=HpkciCl1SLDriWqxVffpVjU6RBAP1uVOa6gBNhFnKXo
  • xqWacNg4avfM2os93fD5u9cXTteyURV9M/KaNM9aKu0iMoKVbjj9MTDw0njfpIyiMYgemh/oTIdFfXg3srs4eg==
  • google-site-verification=Kz0gl5thbxermH-pnqIffQ3lsQ-7JUgzgyanaFg4zTM
  • gospaceai-site-verification=72a8516591387cf8ae68954492eb045027dafee8388d946022d0023ceaed3371
  • v=spf1 ip4:68.232.128.0/19 include:spf1.sage.com include:spf2.sage.com include:spf.protection.outlook.com include:servers.mcsv.net include:_spf.salesforce.com -all
  • pendo-domain-verification=22ecabf5-1752-429c-9749-b544540e87c3
  • google-site-verification=uTFngPlpRPc0Pi5qpjdLp_eI_CUAWjnssvcgeVIKVqA
  • google-site-verification=lYKiQSzaUmMohzkAN5SS2npmsJEdYCiCdc3ef3T-Pj4
  • google-site-verification=345PYeaVYx5Ygr_Q0ZgsOTwZKiShhKUdtVJ-x-iMSkY
  • 8kp7wf7sbgwjt6xyxh6pqst246cs74s1
  • wrike-verification=MTM3MjE4NjpiY2Y1MjNkOTAzMGQ3NjM4NTBhNDY1YTlmOGVlYjc4NjFlMDQxZWVkZDEwNjZmNmE5YTZmNDk1NDI2ZDA1M2Nh
  • google-site-verification=VpydpFbbDO3ljAVHSLkaC1YYTHBIrrFmFmh7eFrQ_9c
  • iv2s5gic6nthgapu22q2f3149i
  • google-site-verification=D2oO0xJ_q2s0H5FL-esNRHdmbnQv31jfq3nxuWSOoQE
  • j8jwlyk83cfzrj9v0kvxh3lfgm679zj4
  • h1-domain-verification=PokvYQVUgaW1zj97BwrxnWZVb7KmjnBAtNcAV65JuihtoWVN
  • logmein-verification-code=9f89d307-4b38-4a48-a50b-efd63bc9b53f
  • 7q8nxxjqjymn3cgqzg2p1h6240gx0tjy
  • 3b30knc6pcglijboouv3ctgr2m
  • s9sjpvrjj28sf2ulphd7ja8u24
  • 00d24000000ivoeea0
  • vmware-cloud-verification-c397e4f0-47e6-4445-9f71-0a7219b838d6
  • google-site-verification=LWpVzgddlzmHcrjL6jzLSBtpkfPM-ZmLlnFeb9p-9tA
  • docusign=d302e43a-2efd-4d80-bfb2-2d9e529c3ace
  • miro-verification=6d54cbebd52439824d0dc1f953b5cc17a19e500e
  • google-site-verification=F7kusfbaKiJhMmnyewPMfciTjsB6XjMFG7QI1UF_ilw
  • google-site-verification=-mrSfnfziHDS-XWPlich8gOoqb1s7ulqd4K-MLxZt2c
Cloud / SaaS Services Detected
Apple Atlassian Salesforce Miro LogMeIn Flexera DocuSign Cisco Webex

Leak Screenshot:

Leak Screenshot