Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo allot.com

Group: toufan

Discovered by ransomware.live: 2023-12-23

Estimated attack date: 2023-12-23


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • mx1.hc1525-14.eu.iphmx.com.
  • mx2.hc1525-14.eu.iphmx.com.
TXT Records
  • zoho-verification=V2UC2NFIGS.zmverify.zoho.com
  • MS=ms70282663
  • ZAC2986
  • _hcnmoq5f4qv7ukm0yy1jg6oi386hmqo
  • atlassian-domain-verification=9STeHTNVZFwPeGtFoo4GgNV70FqlyWoyHkxt0JGkjOtES6iYVbmBCKi7eWHRAmsZ
  • ca3-bd34991b2f924f628d62eedac1b8ecd2
  • hfqgxqj6t3crckjjyj4n3w3ywl0drsz4
  • rovag_verification_token=3CEA652C54E748B99B1F92724D369167
  • v=spf1 mx ip4:199.203.223.0/24 ip4:5.9.0.0/16 " "ip4:195.235.197.170 ip4:18.203.227.33 include:spf.protection.outlook.com include:spf2.allot.com include:143339242.spf04.hubspotemail.net include:_spf.salesforce.com include:spf.emailsignatures365.com exists:%{i}.spf.hc1525-14.eu.iphmx.com -all
  • vmware-cloud-verification-83b6d0fb-8ca3-4189-be94-54cf99821f1b
Cloud / SaaS Services Detected
Atlassian HubSpot Microsoft 365 Salesforce Zoho Campaigns