equilend.com
equilend.com
Group: lockbit3
Discovered by ransomware.live: 2024-02-25
Estimated attack date: 2024-02-24
Country:
Description:
DataLend provides global securities finance data, performance reporting and consulting services for agent lenders, broker-dealers and beneficial owners. Learn More Securities Finance PlatformYou can contact the main system administrator on the...
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 2
Third Party Employee Credentials: 2
External Attack Surface: 0
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- domain.operations web.com
MX Records
- equilend-com.mail.protection.outlook.com.
TXT Records
- google-site-verification=NqibZz92-qEQCaPOzIR6MTikSQmCvIkd4bA6oBYEraw
- qkndgj2dga2a0rtjtfk143984e
- v=spf1 a mx a:mail1.equilend.com a:mail2.equilend.com ip4:63.87.252.91 ip4:63.87.252.92 ip4:63.87.229.208/28 ip4:63.123.240.0/23 ip4:63.123.77.0/23 ip4:54.240.50.159 ip4:23.21.109.197 ip4:23.21.109.212 ip4:147.160.167.0/26 ip4:194.46.228.90 ip4:72.255.238" ".227 ip4:185.70.168.20 ip4:185.70.168.22 ip4:74.201.152.59 ip4:212.20.233.15 include:spf.protection.outlook.com include:_spf.createsend.com include:et._spf.pardot.com include:amazonses.com include:mg-spf.greenhouse.io exists:%{i}._spf.mta.salesforce.com ~" "all
- rceq2lq9h8b49jvif2i6rm4uuk
- duo_sso_verification=ZREmcH7WcKSEnZegNp5bOoY2absAcp5NLzlBLvpEockhLlexjcwuLJNiQI9L4IvP
- atlassian-domain-verification=95r0ptG1p2e9Rfh0aaJh7Tp7Ga2J1ynaN8VcC0sE7q6ehpwfw9gkTb25FttdseM5
- MS=ms89807890
- 5sku5ruj0nq6o64pi994tc4l9s
- pncpqtd0ka0vlesidhvgcpt39o
- google-site-verification=IUqBVBuobT095DHTGCvJDb3m1pK3jwqPTwZeXSXTqtk
- pardot928823=57fb01068f629503ba61d4beedf71dee1bfabf80de8f3b2935faf6ff5eeecf5d
- CLXV/bqrZyRdacv6n1ff2KdW9+P0Iomt5bK49K/CNXkXovT4C4J+Ho4RCWgTaQXyBQDIIAOfvSksYv6gOn8bOQ==
- _9zzlsjpcvfwqbad8f451ydc7jo7e0c5
Cloud / SaaS Services Detected
Atlassian
Amazon SES/WorkMail
Microsoft 365
Salesforce
Cisco Duo
Leak Screenshot:
