elsan.care
elsan.care
Group: Lockbit3
Discovered by ransomware.live: 2023-01-24
Estimated attack date: 2023-01-24
Description:
stolen: 821 GB.data: marketing, finance, information of all departments of one of the company's clinics, numbers, personal data of employees, contracts, reports, internal and external contracts with policyholders, subsidiaries, etc.Elsan is a m...
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- No emails found.
MX Records
- mxb-00672801.gslb.pphosted.com.
- mxa-00672801.gslb.pphosted.com.
TXT Records
- 3ftsljgfkd7jwpcckghbhsvvwgrkcy74
- v=spf1 ip4:213.32.189.163 ip4:207.46.163.138 ip4:62.210.141.83 ip4:52.18.68.213 include:spf.elsan.care include:mail.zendesk.com include:spf.protection.outlook.com include:spf.joinmyit.com include:spf.mailjet.com include:spf.mailinblack.com " "include:spf-00672801.pphosted.com -all
- hfvo1h83d1644nf864ttans7qf
- rlm6acfvkpd32mrsschh7amdkj
- fwnPIS4/c3ut75+qHK8GoB9fa3BOf6rCns0zHabSP6scP5bg8LoEsQ4wVuiBunonJGlIw726hskCric6c8WJ+Q==
- QeJXs2shmMGrTimMkriG7UKgy94vY+TDEsGsTYsc/VQowdhrICROXAs6qgCHXvUsr3AjcUGRPOq4Jr4LMyJMGQ==
- pexip-ms-tenant-domain-verification=6bf94f8e-42cb-47aa-b706-70bc3695e73a
- MS=ms87133651
- MS=ms79664194
- q6/lXzduZIquntcDIUggDVUZ+i6twQ4ejBTE7PxW8UA8Xo/lkatslEY+Rt6jJNMlJcs37URnr6Vrlf7B94Bnbw==
- s527ivkds7tvavi9jpilsjd410
- JKLMN
- 535464
- ccuh8g88rdnpm78p3qs50ucmqu
- swpUPcT5VWOU4RXsThhE83knjWzaFnS1WxTqgMvypQroXju0i7SqclS54Z0omyeHg6Dej1NqmGd+XJzeadKKIg==
Cloud / SaaS Services Detected
Microsoft 365
Zendesk
Mailinblack
Mailjet
Proofpoint