Poly
Poly
Group: play
Discovered by ransomware.live: 2023-05-22
Estimated attack date: 2023-05-22
Country:
Description:
California, United States
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abusecomplaints markmonitor.com
- hp.domains hp.com
- whoisrequest markmonitor.com
MX Records
- us-smtp-inbound-1.mimecast.com.
- us-smtp-inbound-2.mimecast.com.
TXT Records
- msfpkey=6ubjsp3k4thpwz1ufadmv8e7c
- v=spf1 include:_spf-a2.poly.com include:_spf-b2.poly.com include:_spf-c2.poly.com include:_spf-d2.poly.com include:_spf.salesforce.com include:spf.protection.out" "look.com include:_spf-a3.poly.com include:_spf-a4.poly.com ip4:78.153.243.224/27 ip4:85.31.207.224/27 ip4:85.31.217.224/27 ip4:94.236.119.0/26 ip4:95.143.73.128/27 ip4:142.0.160.0/20 ip4:62.41.149.10 ip4:" "69.169.224.0/20 ip4:69.42.126.188 ip4:72.3.185.0/24 ip4:72.32.154.0/24 ip4:72.32.217.0/24 ip4:72.32.243.0/24 ip4:76.223.176.0/20 -all
- onetrust-domain-verification=95f6e9fee2b94f6e869aead71a589fa2
- _zszzd79ryxtl1jkw3zhvx1ojyzlgavt
- fbd57bf698c3493b8b99b5d05877cc04
- google-site-verification=RJ3nYqmOz_dsIXcvDvV9EylKnr7HFm0z8i1jwgvEGAs
- atlassian-domain-verification=Avn6W7iIQPqvhM/Lgop4d30V3xdrxgqIRbsRr5UVIvqd68hBjWei60Ei5yxzrqCp
- 3839mbx8d2fhpz95q1jtqmx58wws26jk
- miro-verification=4f7a99785d67d6e60fd00439b2c3a0212f58b189
- 0ed1fe018a9ef52b4590ae4cc9841a4fd8d600684a
- 5d8219d6daa245eda82ab9c701cf5597
- docusign=f9f18503-4203-4bae-9c95-aec94c87d57e
- google-site-verification=bgxXe5FQ-M-OBhvvMv8t3ugZWS6dioIdHL8iQc9IOsE
- MS=ms99739197
Cloud / SaaS Services Detected
Atlassian
Microsoft 365
Salesforce
Miro
OneTrust
DocuSign
Leak Screenshot:
