Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo gruppomercurio.com

Group: lockbit3

Discovered by ransomware.live: 2023-06-09

Estimated attack date: 2023-06-09

Country: IT

Description:

Leading vehicle transport company by over 50 years. HO based in Italy and present with direct subsidiaries or JV in all European Countries (EU)


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • legalservices eurodns.com
  • branding cevalogistics.com
MX Records
  • gruppomercurio-com.mail.protection.outlook.com.
TXT Records
  • sophos-domain-verification=6d17a8875040363b0e57b8380ba238226d40c813
  • v=spf1 ip4:77.238.14.114 a:smtpout.gruppomercurio.com include:spf.protection.outlook.com include:spf-0010d501.pphosted.com include:_spf.zucchetti.it -all
  • 632s8ffp153c71ssp47mj9kskm4yg5p2
  • 63fff70f-7490-4ecb-a12d-3428f2cb6b33
  • MS=ms63436285
Cloud / SaaS Services Detected
Microsoft 365 Proofpoint Sophos

Leak Screenshot:

Leak Screenshot