Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo grantierra.com

Group: Lockbit3

Discovered by ransomware.live: 2023-05-28

Estimated attack date: 2023-05-24

Country: EC

Description:

Gran Tierra Energy, founded in 2005 and headquartered in Calgary, Canada, is an oil and gas company focused on exploration and production in Colombia and Ecuador.More than 150 gigabytes of data, including passports of directors, employees, compan...


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • grantierra-com.mail.protection.outlook.com.
TXT Records
  • grantierra.com.co
  • brevo-code:08e6aec8456cba698248f1ea18787c75
  • docusign=fa6436b3-01ac-47f6-a26a-078e9fe58e18
  • _esnm4zxrhazyd0v8gd1ostf014yob5r
  • MS=E6D0B3D5D1FF63A4827F0EC8C9A4B17D2CFCE5B0
  • Q89BXKT1HNTHGU5QNE4BKE7UN8JFOUMKLT4TWKT5
  • v=spf1 ip4:20.151.73.148 ip4:69.46.107.219 ip4:149.72.231.47 ip4:149.72.196.66 ip4:20.151.73.148 ip4:20.151.73.148 ip4:52.233.37.155 ip4:208.68.91.166 include:spf.protection.outlook.com include:spf.zohomail360.com -all
Cloud / SaaS Services Detected
DocuSign

Leak Screenshot:

Leak Screenshot