WVI.ORG
WVI.ORG
Group: clop
Discovered by ransomware.live: 2023-03-23
Estimated attack date: 2023-03-23
Description:
About World Vision - HomePage - World Vision International
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- domain.operations web.com
MX Records
- mx1.hc4809-82.iphmx.com.
- mx2.hc4809-82.iphmx.com.
TXT Records
- d365mktkey=M0ICeTXqZ5MEv1pHhzPz97NK1GOYs8wAIBhMOZxIupMx
- d365mktkey=nUex0642ZtPI08rdlxRWQdAeb55m0UfbdSbuB65if34x
- d365mktkey=pTpWSANxaHfA5fo2zTx9xnWhieyWKgBzsnCrAMvaNXUx
- d365mktkey=XU8UQ07RHzQHFyT6mcHpvgmuxc1xy9Jxese0hu1EAXUx
- MS=ms50873333
- google-site-verification=14bDwybSDLaRf2zBifccITIoDSaWNfrzsnRw5IFBrFY
- MS=ms93632748
- google-site-verification=3cS3SvCMC2XDn6O3DxHc-gjCHBQOXq-cSgtWMOx5060
- box-domain-verification=4e530c9441ad1a6560db0d6c90845bc1cd2931aa3eba5501cf9c74ba66f12eac
- google-site-verification=G7WAs1ZjUO5fbi4XTiBuvwc87RVcRQqvX30PClcJNwQ
- smartsheet-site-validation=pUWq06VaxKRU6U4yMGOII8NZkKLqYZML
- smartsheet-site-validation=7xPJ5ln5gaOhS-np8zZF0RbS3SSeszph
- ZOOM_verify_TNvxJOyCkV3fuerJOeQpHE
- @ - spf2.0/pra mx include:mail-orange.com ?all
- d365mktkey=4xxjCavSmHfs82Gxo0PWYvzjxX7bO3aAkX5MiseXrWQx
- ms-domain-verification=3141eee0-1353-4c2d-8362-d2c82e64c703
- _bi8v3zs7zu9hjp4j7dhs85amonoxkcx
- docusign=6bf5460f-99ed-4979-9372-eef845630896
- d365mktkey=sTVaOcyWs7q4xBoX0ziUUT6RqLMD7I0LYhSnRM50vLcx
- d365mktkey=5XQsafcWiWADlh1ahU8Jmdh144FbIIm8ucz3ThVxYLsx
- v=spf1 ip4:63.110.18.0/23 ip4:35.182.145.159 ip4:207.54.87.24 ip4:216.71.137.178 ip4:104.20.81.103 ip4:208.93.66.166 ip4:40.76.202.173 ip4:12.129.29.143 ip4:148.163.158.107 Include:wvchi.org Include:spf.protection.outlook.com Include:spf.masterbase.com I" "nclude:spf.workfront.com include:mail-orange.com ip4:52.205.240.42 include:e79301.eu.workshop-spf.net ~all
- atlassian-domain-verification=Ytm1QESwgdV2taXyUlbLEQZUM0ccHRP4NR3Fmb0ml8VhyGjjK9fWKpJcsoE05bR7
Cloud / SaaS Services Detected
Atlassian
Box
Microsoft 365
DocuSign
Zoom
Leak Screenshot:
