RTA
RTA
Group: play
Discovered by ransomware.live: 2023-09-18
Estimated attack date: 2023-09-18
Country:
Description:
Arizona, United States
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- trustandsafety support.aws.com
- c425fbc9-534e-483e-83e7-e5b0b2d0d2e5 identity-protect.org
MX Records
- rtafleet-com.mail.protection.outlook.com.
TXT Records
- google-site-verification=KKIGPxoB9El8NTAy6oarROjx7j8MenEOITCsJZNfBQc
- google-site-verification=Lnzzf5rL48i8NqkJJOguu7BXUow2BzRvdeJRGWBBJs0
- google-site-verification=_z2ltKr940s1QWGnqrLovjdK_G-WgeWi3xYz_vKxxvQ
- stripe-verification=33f04b2d3ab2ce1bcdf05d73ac6e54ce2b4d4061029040ff37970dac0ff82cae
- v=spf1 include:spf.protection.outlook.com include:5225535.spf10.hubspotemail.net include:_spf.firebasemail.com include:spf.mandrillapp.com ~all
- ZOOM_verify_IdDMccr63TSKQPOc64MpGK
- firebase=xerifleet
Cloud / SaaS Services Detected
HubSpot
Stripe
Mandrill
Zoom
Leak Screenshot:
