Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Parathon by JDA eHealth Systems

Group: akira

Discovered by ransomware.live: 2023-08-01

Estimated attack date: 2023-08-01

Description:

Parathon is a full-scale healthcare Revenue Cycle Management dataintegrator. We're almost ready to share the 560GB of data we'vetaken from their network . Contracts, employee personal information, and confidential documents will be posted shortly.


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • mxb-001c4601.gslb.pphosted.com.
  • mxa-001c4601.gslb.pphosted.com.
TXT Records
  • yon4x3KjKcx8uy5RVb7eJTx5vyXUychx5Q8wy8gDGk7pOd51mzAHbeqpiWJtsvd0MMfCAs43p1fQaOBO4ALa+g==
  • google-site-verification=POoekgajcOsGzO2DKply84fijCX4P06QFAIX5iiMmWc
  • beWeKetr3
  • apple-domain-verification=RUbDnOBtI0FujG9r
  • v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com -all
  • google-site-verification=hBOHDFUQ9rma0TH51DpdkNPRQYtHT_ZdSbO-_4Ekxjk
  • f73rv57cyfmfgzwx5cwfrql7lzn3zbt8
  • t073ljqhfn8jckvhfr1mh487b11qwb11
  • ntr2b602mn89614t49qhx2vr0knxzpqf
  • x+6ae8BHEh3x/fR7SbJFFB7MqQ41Vyy/TzSLeNY2H18=
  • atlassian-domain-verification=mFx8i8okG0NgtKhdXGbi8ew2/CCkep8V2MmKRXudwugokYY7Q8NYyS95UabMrmzg
  • qbz76x07dr88dlr3x9fkptj607b82nrv
  • 8k4T7dPgNzRIrhx3eiLEab5XtBRGNIgbQK5yZlqjB0+a05JZqmztdQN4NdCMsn5rvkgVZaq/aYTiUbQscFdDFQ==
  • google-site-verification=tl3KpcVtT7so8hihLhxqdOuil4JUOeBgKpztXNJQTh8
  • _dv21xdejip5o78zh5quo43fpw3n9mvn
  • drift-domain-verification=57a27043f29fab2ff72773635620249bb93022a6ddd690ddd3663adc8b3b26a3
  • 5k0vsws9jjh1jqrw3nwzbfsmm7msjx33
  • google-site-verification=lrUd_umK6LFDPtwKJhYfwd0X_RXp_CLgUEG5If37la8
  • pzl7vzdfm13m7wmrtnw555dpn2r8y211
  • ciscocidomainverification=26c0706c1ec568368c98006b357acc6ee131169c7b49973db72c4357e79efb11
  • docusign=875de14b-6cc0-4a51-a990-b01b625bbad6
  • smartsheet-site-validation=Ioy1rPb0WkDKGOYHrFhXkYgWj7574OPi
  • google-site-verification=JYzBFi4xS5gU3f78cwCYZGgsrm_73d4YqxAD6vyUbQU
  • rovag_verification_token=24812EA332BA4F2E87069972005358C6
  • 1vjxzqv9rsylc0z7xdwtwmh7yt7s2x2g
  • ycl8bzqsdbw4qjwt81h0ktt6s9v9phw7
  • docker-verification=732d8b89-efd6-40a7-b6e0-8fab8c2ae16c
Cloud / SaaS Services Detected
Apple Atlassian DocuSign Proofpoint