fdf.org
fdf.org
Group: lockbit3
Discovered by ransomware.live: 2023-10-18
Estimated attack date: 2023-10-18
Description:
fdf.orgPassports, banks, accounting, juridic, customers and etc private data was downloaded
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse nameshield.net
MX Records
- mxa-000f6a01.gslb.pphosted.com.
- mxb-000f6a01.gslb.pphosted.com.
TXT Records
- google-site-verification=YUS3vIIuyu3MLNluFsz5J7hZM9e73ec0mhecWWX-_80
- google-site-verification=3yS3DsbmgsBR_5BrP2E0ozJ9YLWNsj1ktM31QJtyjZ0
- google-site-verification=Vowi8gMge00-9pkmIUzbAK0ueYQErXKGF1fvediyZeM
- docusign=46912124-a9fc-420d-ada7-378ad2eaee74
- canva-site-verification=ZPz3rH4wDDZJkO8Syp148w
- ca3-bb1cbbe79a544110bc8282a60c6bb60d
- google-site-verification=V4ugMcOVGCj26JbVQzHOHS8Yz6UrewDHXfLifC8DMwE
- pexip-ms-tenant-domain-verification=fc89364b-555f-4856-ba21-5cb3ac136b42
- apple-domain-verification=eqLHsj2oHguVZTif
- uVT3xXlacyt3M+MPP8Vs63YOoYYDbebKq4piiFTNe3dLQlR2Uu8bkxVMZ/DRnS1cqO1Jl8g3+upf+eVOWR+LWg==
- /T4yqzIaan+UrLs87hEVk5DPRFnKq2bnEhP4KrCKGHjlU6ys2wY/gTvd0eOXKsBHks/T47qU7e6+5kZGt6bCSw==
- v=spf1 include:_spf.salesforce.com include:spf.mandrillapp.com include:spf.mailjet.com ip4:185.132.180.102 ip4:185.183.28.64 ip4:194.51.172.0/24 ip4:77.74.208.92 ip4:151.80.177.179 ip4:92.243.27.102 ip4:158.255.65.24 ip4:176.31.122.107 ip4:167.89.60.75 in" "clude:sendgrid.net include:spf.protection.outlook.com include:spf.postal.sensiwave.com include:spf.eu.signature365.net include:_spf.profils.org ?all
- pexip-portal-domain-verification=fc89364b-555f-4856-ba21-5cb3ac136b42
Cloud / SaaS Services Detected
Apple
Salesforce
Mandrill
Mailjet
SendGrid
DocuSign
Leak Screenshot:
