Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Renault

Group: wannacry

Discovered by ransomware.live: 2017-05-12

Estimated attack date: 2017-05-12

Country: FR

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 37

Compromised Users: 4518

Third Party Employee Credentials: 11

External Attack Surface: 117

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • tldsupport cscglobal.com
  • domainet renault.fr
  • dnsadmin renault.fr
MX Records
  • smtp2.renault.fr.
  • smtp.renault.fr.
TXT Records
  • amazonses:QUKhSLJKMRk3s4yhtirjD4eNnkTIdnLHSWMUQIVRFS4=
  • google-site-verification=pO2khc6p7u6astfK330-gKvTucOtOvCIUVeySj-uw_4
  • v=spf1 a ip4:93.188.175.83/32 ip4:46.19.179.83/32 ip4:193.194.133.7 ip4:31.15.26.165 include:smtp.renault.com include:mailsrv.fafpro.fr include:mailgun.org ~all
  • _z98j875zbwtrhjudb3k4gofgk440yun
Cloud / SaaS Services Detected
Amazon SES/WorkMail Mailgun