Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Uriach

Group: alphv

Discovered by ransomware.live: 2021-12-30

Estimated attack date: 2021-12-30


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse nominalia.com
MX Records
  • uriach-com.mail.protection.outlook.com.
TXT Records
  • v=spf1 mx ip4:213.0.86.72/32 ip4:213.0.86.74/32 ip4:2.33.31.50/32 include:spf.protection.outlook.com include:spf.tmes.trendmicro.com include:_spf.salesforce.com include:spf-de.emailsignatures365.com include:_spf.retarus.com include:amazonses.com ~all
  • 2022091701320508zemwltgzgvllohi2cs43mvda9hfzh1ladd0ijwcchbkzwakv
  • vBFUITcirRUi4/TZA/ObHarzEGh4n9fCMXSvLwvuzysEKne1HnmybacKAHOMVQxa6nHjqrCtaSY/8g3gl5awsw==
  • tmes=45d4970953c7c91fa181b4b479e98974
  • 202110010515153rkvq0qyak6y85inqj8pq8a5k451fo7g5o1gxvolrhs4a9jzbh
  • 202310020858271n7vwnu04bj7s2jqe2e4162mbr81104djs57gbln1hqdou8j4a
  • bPpC2LPESsmiqsXn
  • MS=ms57379060
  • apple-domain-verification=sGMzqG4GwAtgQRcW
Cloud / SaaS Services Detected
Apple Amazon SES/WorkMail Microsoft 365 Salesforce