Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo arrow#####

Group: clop

Discovered by ransomware.live: 2024-12-24

Estimated attack date: 2024-12-24

Country: US

Description:

Presumed victim name: ArrowStream - Cl0p announcement. We have data of many companies who use cleo. Our teams are reaching and calling your company and provide your special secret chat.


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • us-smtp-inbound-2.mimecast.com.
  • us-smtp-inbound-1.mimecast.com.
TXT Records
  • knowbe4-site-verification=5c716b40d7f4d530cf1957e44ce45413
  • pardot707893=0fb7824777fd11bcac429dbeecd4ae9b5c2e3ad564938459f93924bd85d3b3f6
  • v=spf1 include:us._netblocks.mimecast.com ip4:51.5.72.0/24 ip4:51.4.80.0/27" " include:spfd.arrowstream.com include:spfc.arrowstream.com include:spfb.arrowstream.com include:spfa.arrowstream.com include:spf.mandrillapp.com include:aspmx.pardot.com ~all
  • hamq1b662dbdj14p6slm56kk2s
Cloud / SaaS Services Detected
Salesforce KnowBe4 Mandrill Mimecast

Leak Screenshot:

Leak Screenshot