baycrestpartners.com
baycrestpartners.com
Group: lockbit3
Discovered by ransomware.live: 2023-05-02
Estimated attack date: 2023-05-02
Description:
#NationalHazardAgencyWe stole 18 gigabytes of data and documents, including SQL databases and mail backups. You have two choices: pay us or leak 18 gigabytes of documentation.Contact us
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- trustandsafety support.aws.com
- ef19bb41-43d1-4ddf-9fa9-00862613405f identity-protect.org
MX Records
- mx2-us1.ppe-hosted.com.
- mx1-us1.ppe-hosted.com.
TXT Records
- v=spf1 include:spf.ess.barracudanetworks.com a:dispatch-us.ppe-hosted.com include:spf.protection.outlook.com include:_spf.streetcontxt.com" " ip4:38.125.86.216 ip4:208.81.212.0/22 ip4:64.235.150.181 ip4:64.235.150.252 ip4:64.235.154.105 ip4:64.235.154.109 ip4:38.125.86.213 ~ALL
- D009D774F8
- MS=ms63137743
- google-site-verification:gK5hx_RL7giXHrsmYwy7YBoMI7zIEXxto3Cj2Nab0P8
- ppe-93c513638a55f71f06e12500e037bbaa955bcc4d
Cloud / SaaS Services Detected
Microsoft 365
Proofpoint Essentials
Leak Screenshot:
