QEO Group
QEO Group
Group: play
Discovered by ransomware.live: 2024-03-12
Estimated attack date: 2024-02-21
Country:
Description:
United States
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse godaddy.com
MX Records
- us-smtp-inbound-2.mimecast.com.
- us-smtp-inbound-1.mimecast.com.
TXT Records
- 0ed1fe018ac40d7cc3e60c4bfaa06bf9214cbea8b0
- duo_sso_verification=d8CTYIwDUTM1WVXcCXaOiTz2uRDklqqoTZlMgUCwK8jfMx3DxQUCbJecr4KTj3Z9
- v=spf1 include:us._netblocks.mimecast.com include:_spf.salesforce.com ~all
- MS=73837468EC8F5C4595DC11E1CEFE99E17F32F675
Cloud / SaaS Services Detected
Salesforce
Cisco Duo
Mimecast
Leak Screenshot:
