Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo SBMOFFSHORE.COM

Group: clop

Discovered by ransomware.live: 2023-07-26

Estimated attack date: 2023-07-26

Description:

Homepage - SBM Offshore


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse namebay.com
MX Records
  • mx1.hc398-99.eu.iphmx.com.
  • mx2.hc398-99.eu.iphmx.com.
TXT Records
  • _globalsign-domain-verification=h6r-E9R8im9nhnbGkAqP-1vRiBr9MyqKB9ISsJqcTT
  • _globalsign-domain-verification=x5KA871r1LVXiLY8B8MtbZ6Ca3jVwAq9Cw2Ol4zV5T
  • veracitysbmoffshorecom=UtFFSDH4DiOybv8a3KjUSa0/DDrS0OIMUgZT6w8/4pzvoxlZTib04jB891Paxn3m3Q0WGbOJWi3yxAdFOfJsTQ==
  • cisco-ci-domain-verification=74551e7e6f4b7c921ae13b2f00eb6f787a05216a571f1e1c4aea0ed466a6e0e5
  • _globalsign-domain-verification=S_E3baGXQ0fxNuvjXgE-9TO-agR-Hzpg7_NESKeWth
  • _globalsign-domain-verification=8sqGtjj0BiZAbTcZNj-Xb45d_B8QLhRvQSxz8dVnOO
  • docusign=9f950b51-68ab-4ba2-835e-be449104becb
  • 2oWMHoIXDP-imHQ9xBpE
  • TXT _globalsign-domain-verification=R7dQXeRpe07juM5WmcSS7VU-HhVjDFlUKoIIe4buBV
  • 5B77058CDCCB8437548A128E12A23AC1E7DAE5A265F8BA8BC80E5539F0386930
  • _globalsign-domain-verification=Vj60mtm0v0ExYJei8-Fw3XEs0dhoAdKeMHiO2ixum6
  • v=spf1 mx exists:%{i}.spf.hc398-99.eu.iphmx.com include:_spf.salesforce.com include:spf.afas.online ~all
  • adobe-idp-site-verification=e8d43a0985d8f36ce3aee6c8d56d907fc0699fdd6b728a9ef328303fffb3a9cf
  • _globalsign-domain-verification=ho11ld11sodAVSSwTN1etkR8w9uBAguMQNptnKA7R9
  • mindmanager-verification=d1a9cb37ec120fdda07b494e4fd2c081cf31f676df2b5525e08cef0798e83e92
  • miro-verification=1decf59de95a05d6e755aaae88d4f8bce51aa5f5
  • _globalsign-domain-verification=TaWjihHYbtuiKcGAo5JRZ1bTUJqPGdV-gnr3VWktc-
  • _globalsign-domain-verification=RWZAfpywVc9xDOIX3uMv_b1VY9ErM5x37TfpPeGN8X
  • _globalsign-domain-verification=lADsJ3NQI6K6l6i83T6IP54Nfo0DcBILzCGTE6oi66
  • _globalsign-domain-verification=R7dQXeRpe07juM5WmcSS7VU-HhVjDFlUKoIIe4buBV
  • _globalsign-domain-verification=kz4NxWGBBxAEUpRL5Y-As3lnbD8794EE3yikUNdNu5
  • MS=ms29679309
  • intersight=0c96e70d018b2ff71f097a18f369fdb67b0ae37365b2ffd0d0a3d61e2348d989
Cloud / SaaS Services Detected
Adobe Microsoft 365 Salesforce Miro Cisco DocuSign

Leak Screenshot:

Leak Screenshot