Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo T A Supply

Group: royal

Discovered by ransomware.live: 2023-01-12

Estimated attack date: 2023-01-12

Description:

PROOFPACK - W-9 / internal documents


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • tasupply-com.mail.protection.outlook.com.
TXT Records
  • google-site-verification=nesDk_Y5cWmhdTobuelrLWutPqSmBl1YGnI9q6ICS1I
  • miro-verification=cbe42f8e8ca5bb1277e292c823fdc6e7c89d2bba
  • 9ojsdhqvfc4vkl4ph9ftal27iv
  • 1oedakivhuk7ohnlljaepsgsbk
  • v=spf1 a mx ip4:199.244.76.0/24 ip4:207.126.101.0/24 ip4:216.168.44.18 ip4:216.168.44.19 ip4:216.168.44.24 ip4:216.168.44.25 ip4:208.78.41.250 ip4:199.229.250.211 include:spf.protection.outlook.com include:tanda.tasupply.com include:servers.mcsv.net a:usm" "tp.mycloudmailbox.com include:auth.msgapp.com ~all
  • fi17dc65vdn85lhv4bd4k3ggpa
  • apple-domain-verification=6dfFYq0VYCBP5bDH
  • MS=ms68040852
  • lhh4m3c6ilbu112jdbgqkn4jkn
  • 4qjdf7lre5qdo1bo83l5capb84
  • MS=ms28397694
Cloud / SaaS Services Detected
Apple Microsoft 365 Miro