Ruhrpumpen
Ruhrpumpen
Group: royal
Discovered by ransomware.live: 2023-01-12
Estimated attack date: 2023-01-12
Description:
PROOF PACK - Passports \ Finance \ Internal documents
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- domainabuse tucows.com
- hostmaster loca.net
MX Records
- d200346a.ess.barracudanetworks.com.
- d200346b.ess.barracudanetworks.com.
TXT Records
- Kl5FCaVMOYzoxMHM0n6SKfmulbydFb36BOF5CaafvAPysKzIqxU6sTuO6dM4cCFzNKN09Wtk19mwPY0dzzwcIQ==
- v=spf1 include:spf.ess.barracudanetworks.com include:spf.protection.outlook.com ip4:64.207.247.132/32 ip4:212.23.129.211/32 -all
- MS=854569D7EBD321E8B34273EC6368DD332F8B794C
- google-site-verification=Qkr71527upnNZ3TgrxS162Cq5clnIzVTy39L7DCPOJY
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.