Trace3
Trace3
Group: play
Discovered by ransomware.live: 2024-11-29
Estimated attack date: 2024-11-29
Country:
Description:
United States
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 11
Third Party Employee Credentials: 7
External Attack Surface: 2
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse godaddy.com
MX Records
- trace3-com.mail.protection.outlook.com.
TXT Records
- atlassian-domain-verification=dN23XcizaqjbhFS6MzarWqnay/bvvxa5aDkG1eFHoF50H39YmdtN7Q3IPjOzYrxO
- ZOOM_verify_4BT2JrFeRhCauOzF6TSqlw
- aaa80b1a-8f2d-4b0a-865b-10adfdc03b20
- docusign=38205bef-90db-403f-89c1-12e6993da165
- _saml-domain-challenge.Trace3.com
- vjzn8sn3vlxm0hgv4gn7dpqw6bbymnkh
- 8wv42zrz7r6hy8fhb0bfrv7h2gkblbb2
- v=DKIM1;k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCLjt34q16mHNYz1r2ZY6K7Q3EHxltJm7lJyGW/aKek11hi5LmUbCewYxstbqQK4iUkV86xJyK6plP8Gx2mjlNlLG1sF/xM0E9+fYa0o9QY2tJ2qcG/igpEuuR0tkd9uxs0ryiemSs8AsJ5/ljaUxq96RxWyxVzjZ/7p9DZ2kBWVwIDAQAB
- atlassian-domain-verification=6d-FN58B0Id1JwDkuUE57pfm2jOJEEUwCE+FH15pmRt3cfpcSDf8BsAmwYzpuKiJ
- _t1l8k0ykwp9bygefgdexs8mnr2jbsk6
- 1password-site-verification=ICFGR6HR3ZAN3ISUBMAKAYUTVE
- _ralcgy2i9ibraa9szfh030utd2vx8nj
- contractworksverify=3pFuAm230KdfLe
- cursor-domain-verification-xfpanv=gmbPRDpiBt8jNJ4U3YmGLFw4U
- v=spf1 include:%{i}._ip.%{h}._ehlo.%{d}._spf.vali.email ~all
- 2893444
- google-site-verification=BwlDDCrl6bU4MQ3qd-EMvdo_gAf7kXDbaqg5XZ0QjPs
- wiz-domain-verification=b92f46c1c03f5d15262e3fb4692e0df31df3da8f93083c8ae80d38ac1e286622
- hubspot-domain-verification=OGQ4YWYxOTEtNjYzYi00OTI1LThjYmEtMmVmYjZlODVmMTJj
- 6BDE5D5F66
- monday-com-verification=ljlFuUv4BiVXvuzEgO0kjm_Rw6rR94uZt4l2ye8NfEg
Cloud / SaaS Services Detected
Atlassian
DocuSign
Zoom
Leak Screenshot:
