cree#####
cree#####
Group: clop
Discovered by ransomware.live: 2024-12-24
Estimated attack date: 2024-12-24
Country:
Description:
Presumed victim name: Cree Inc. - Cl0p announcement. We have data of many companies who use cleo. Our teams are reaching and calling your company and provide your special secret chat.
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse safenames.net
- giajefbd6w0j idp.email
- hostmaster safenames.net
MX Records
- cree-com.mail.protection.outlook.com.
TXT Records
- pWXzhkupO6KzclWehnWzkH1Rsk3dWcl9rZ1zK1vYpBJ/l1LMXyKxjzjrr3woay2WuNXC2h8lC7Rtn0ME30rBjQ==
- MS=ms55699132
- apple-domain-verification=AS1o3WBl8pWfwd17
- lEHXEa+O/wdluusIp9Nq+9/ikTIwE6fVDb+OYNpilhd4ROUTkkYrTJ0nueNou1myxKKvmyJE1pU9KGSlg4r3TQ==
- hjrhl8wmgcsschy87hh5qc1r735v0l30
- AVx2NiE5l7ZbOBUbHI2paY5Ty/pq2UaQedbnIBDfgHAaljawH/mObb2TI0Tu9tNYF5K/AL6iSAyNU8sqT4OZ6g==
- v=spf1 include:spf.protection.outlook.com include:sendgrid.net include:servers.mcsv.net include:_spf.salesforce.com include:aspmx.pardot.com include:cust-spf.exacttarget.com" " ip4:8.42.18.20/32 ip4:8.42.18.31/32 ip4:52.168.65.59/32 ip4:8.42.18.56/32 ip4:54.236.128.150/32 ip4:54.236.109.30/32 ip4:64.124.80.128/26 ip4:209.249.223.128/26 include:_spf.concurcompleat.com ~all
- _np23c8uwr2msd56h5ni5u5vs573zqrb
- atlassian-domain-verification=xZD8zG7NFsdYtwPBh2iofwWLFtCspPIPAptsJrTUrlsww5mJ1PpUfpwiIrNXBQUG
- amazonses:b9a3vyWMRJFWZp3KTsp/L1sRJnXsHsV6mBqrWPLZ9Qs=
- apple-domain-verification=jG897gEJ3heUcpfR
- google-site-verification=fHiTdKnHFOhewAPG740N4fi-sfrawNQhdSq-Z3jGr4M
- pv24dl2pl9j57j1vx6n6ww83zlj2fmx0
Cloud / SaaS Services Detected
Apple
Atlassian
Amazon SES/WorkMail
Microsoft 365
Salesforce
SendGrid
Leak Screenshot:
