gh2.com
gh2.com
Group: lockbit3
Discovered by ransomware.live: 2023-09-02
Estimated attack date: 2023-09-02
Country:
Description:
GH2 Architects - Business InformationArchitecture, Engineering & Design · Oklahoma, United States ·
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse enom.com
MX Records
- mx-02-us-west-2.prod.hydra.sophos.com.
- mx-01-us-west-2.prod.hydra.sophos.com.
TXT Records
- sophos-domain-verification=73be225c6f8b7dc44fbce4c91a60ec5ca16aaa93
- v=spf1 ip4:70.182.222.230 ip4:70.182.222.248 ip4:207.162.144.138 include:_spf.prod.hydra.sophos.com include:spf.protection.outlook.com include:servers.mcsv.net ~all
- MS=ms62785136
- sophos-domain-verification=4be03bfb00c45f4111a504ec1fb8e11a6a09523756209a03f52023dbe5f904c1
Cloud / SaaS Services Detected
Microsoft 365
Sophos
Leak Screenshot:
