Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo TF AMD Microelectronics

Group: snatch

Discovered by ransomware.live: 2023-06-13

Estimated attack date: 2023-06-14

Description:

Die Prep Services Final Test Wafer Sort Flip Chip TF AMD Penang is Flip Chip power house that offers various packages of Assembly and Test including FCBGA, FCPGA & FCLGA. We are advanced technology factory with world class team, advanced infrastructure and automation capabilities.


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abusecomplaints markmonitor.com
  • dom-admin amd.com
  • whoisrequest markmonitor.com
MX Records
  • amd-com.mail.protection.outlook.com.
TXT Records
  • successfactors-site-verification=NGNmNmJlYzIwMWNlMzc2NjVkNWNiMDk0ZTAzN2U3NzY3YTZjOWIxNzRmNWVjMjlmYWM1M2I1ZGVhZjQyN2Y3OA==
  • ibmid=8938274b-09d1-49b5-9ec8-7cf53b342b43
  • atlassian-domain-verification=CUBl/RsDOQfWaVFffiiVaCaiWbaw/SBOU3ThUJ/TZYQub06KGiaTPT9se5Yeu3uH
  • DirectFedPassiveSignInUri=https://amdsso.okta.com/app/amdsso_verint_1/exkk43sc6v8qlyw1t697/sso/saml
  • have-i-been-pwned-verification=01758eb06a0c8ed2767a283156460be2
  • google-site-verification=33RTKC-xzw9zJXrSocPJ9vqDMpV2VrOj_a61auo_rLs
  • atlassian-domain-verification=WjKD5Ja673zLsP9sBBpoTdc/3nclZfVtQfMwCJV35meajKc5lVmIM2NA8lLWUpof
  • adobe-idp-site-verification=b34a6f01148852568a8347f73150b2d26525c687e96a9048ef9d4e90352a7b6a
  • cisco-ci-domain-verification=26811cee9bad53fb76bffb9e90d49b437f3721936d39ca90bfbc24879beff7a2
  • successfactors-site-verification=NWIxMDIzM2M5YTk0NWVmZDMyMDEyNzQwMTgxMzA4NDdhMjZhNmE3OGRhYTNiOTA4NGVjMzlkMDc4NGM1NzEyYQ==
  • atlassian-domain-verification=HFlyqfcckJdaD3hZCHNeaGmdLDR505F4dtpvaqkADmWTe8Lw2cXOv7FaaT8zXJ6Z
  • onetrust-domain-verification=cf521e1a7c4d4bfa9b63f7b6a40709df
  • dropbox-domain-verification=090n3r98zvxg
  • openai-domain-verification=dv-h4HIsCqg2sOv6meerazPTtFr
  • onetrust-domain-verification=dc52f73e029346d6a4c0a6ce7a96284a
  • amdext2.amd.com.
  • apple-domain-verification=mxIiTJhlWLR86F9E
  • pardot659533=fc50942f2298a3406ad584262d7e87dc047fbf1022a1e0065a8459da6698c86f
  • smartsheet-site-validation=gmxusWuIniKkFGtUA85AO9s4-jKaQF7A
  • W1zW8ZSsqBU6HQ4on2nMufcegM4JFERMqNW+j5gLiZiEB+BFog++C4WSA36auBIFsWSczYLMR9G04JqyYPxx7g==
  • slack-domain-verification=mAGCNGS2tg00u6VyTwYd2wrgYr3TFzMos95vzMiI
  • ZOOM_verify_4AfmnzaWHfN5G8OQSWG5wO
  • amdext.amd.com.
  • mandrill_verify.9x9IPIoRZFyIsnvOnYEzUQ
  • elevenlabs=Q_e7hYo4mvfT8FmfGugE0C_q_KP-m5_oezYfZZPQhRI
  • amazonses:2PDIwax6U3zTwkxpBOsUFM1VL9kXoF46QpiZ49033rw=
  • v=spf1 include:amd.com._nspf.vali.email include:%{i}._ip.%{h}._ehlo.%{d}._spf.vali.email include:oktamail.amd.com include:_spf.salesforce.com include:mktomail.com ~all
  • onetrust-domain-verification=1081a5d255ec4d9e97c2d5acd70992f6
  • openai-domain-verification=dv-X6GLOQaARwuMCef15lKBUPvr
  • cloudhealth=a6382c03-606b-43cc-b579-7dfb8f9b9aff
  • amdext6.amd.com.
  • amdext5.amd.com.
  • t5nh9xrqk2y1gl1q7hlgqffrybtxb0ph
  • smartsheet-site-validation=77sHAmS-mprxceWYYv_RtynJKuFCgltZ
Cloud / SaaS Services Detected
Adobe Apple Atlassian Amazon SES/WorkMail Box Dropbox Mailchimp Salesforce Slack Marketo Cisco OneTrust Have I Been Pwned Zoom

Leak Screenshot:

Leak Screenshot