Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo VERRAMOBILITY.COM

Group: clop

Discovered by ransomware.live: 2023-03-23

Estimated attack date: 2023-03-23

Description:

Verra Mobility


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • exchvip.atsol.com.
  • verramobility-com.mail.protection.outlook.com.
TXT Records
  • mongodb-site-verification=YxBUawi1c1jbRasaXkNn7KeE3Wj0I27m
  • docusign=f92d2c91-76d8-4a99-a24d-35aeb9eb5bb9
  • google-site-verification=7Kk7zZpxjy8ynk6oPSDr0NYtC7XzsFKLBg-nNgf1lOA
  • v=spf1 mx ip4:72.44.238.12 ip4:72.44.255.70 ip4:72.44.255.71 ip4:52.5.236.214 ip4:38.127.225.55 ip4:85.115.32.0/19 ip4:86.111.216.0/21 ip4:116.50.56.0/21 ip4:208.87.232.0/21 ip4:129.148.11.197/29 ip4:196.216.238.0/23 ip4:192.151.176.0/20 ip4:208.75.120.0/" "22 ip4:205.207.104.0/22 ip4:35.184.231.156 ip4:141.193.213.20 ip4:141.193.213.21 ip4:12.133.120.158 ip4:207.166.95.11 ip4:207.166.92.11 ip4:52.6.44.126 ip4:52.207.153.36 include:spf.protection.outlook.com include:spf.mtasv.net include:docebosaas.com inclu" "de:fdspfus.freshemail.io include:sendgrid.net include:_spf.smtp.com ~all
  • miro-verification=065eea7d953053a28990248d1f5194337d827269
  • onetrust-domain-verification=b03bc8377d6f44bdbf450000c84d8bbd
  • google-site-verification=1vMqKazJdLRi47ROXF5pb_Ohi9RSEUaQuLJm9h8J_A8
  • WIO1SUskckR24XiI/086RIBuJsBZGe3qbvdehxkAYjU7Byq2mtV/xMjREV2/LLXc43xNV0qOAQJFUrVEjfOAgw==
  • atlassian-domain-verification=HLrJtjjXHkdfbrGZwMlvpyPCaT61nCSyv7+AFBrT5hw5BAjSntaEHta59XaRddS4
  • monday-com-verification=U74WQ4_GMPhZ_8nOarWW25a437yzZEgZvLNGSUsHsAA
  • adobe-idp-site-verification=616f8f3a1bc2bef82bd63cae824d47798cd4978167859bdbf8db1d1225ee2f69
  • ZOOM_verify_60xVouWAXsMdzh9fAjylub
Cloud / SaaS Services Detected
Adobe Atlassian Miro SendGrid OneTrust DocuSign Zoom

Leak Screenshot:

Leak Screenshot