Walker SCM
Walker SCM
Group: royal
Discovered by ransomware.live: 2023-03-09
Estimated attack date: 2023-01-30
Description:
Walker SCM, LLC provides Global Supply Chain Services ranging from Transportation (Air and Ocean Freight Forwarding) to Warehousing Solutions that also include specialized value added services. We have stolen from their network 20GB in total, including: HR;Work files;Finance;Clients and others.Feel free to check!Archive password: 4+"JdvDyH[a4:o@9D,b$wy!'~W]~jrk/z_"yiz<r
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- domain.operations web.com
MX Records
- mx1.hc6212-39.iphmx.com.
- mx2.hc6212-39.iphmx.com.
TXT Records
- MS=ms78977417
- GCWRx0hSD82o3tkJtCnN5Gn6w438xnkmK+ND+RmFfvq+/u/DCbKQcFo9PfGWdx4K0vbtfg5rs1rUgfRctfSUYw==
- sycXWJS5eNqFMCXE2FBbIcjNtMjwHaXipcKnKEcFJdu0iOj/xPKBIUVruDMmshcSY2EnPiREeVQ5ahkqCIOUgw==
- v=spf1 a:exchangeit.witlogistics.com a:dispatch-us.ppe-hosted.com ip4:68.66.141.99 ip4:24.246.117.197 ip4:98.116.45.234 ip4:208.82.206.243 include:_spf2.walkerscm.com include:spf.smtp2go.com include:spf.protection.outlook.com exists:%{i}.spf.hc6212-39.iph" "mx.com -all
- MS=ms65063519
Cloud / SaaS Services Detected
Microsoft 365
Proofpoint Essentials
Leak Screenshot:
