fhw.org
fhw.org
Group: Devman
Discovered by ransomware.live: 2025-10-28
Estimated attack date: 2025-10-28
Description:
Ransom: 700k 120gb
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- domain.operations web.com
MX Records
- fhw-org.mx2.arsmtp.com.
- fhw-org.mx1.arsmtp.com.
TXT Records
- google-site-verification=ClJLgndORwrtXaYzcPbOv094Av41cg72zbrlhTz6sug
- apple-domain-verification=eE4wB4HbI87YpakX
- duo_sso_verification=861qUUW0G4bLAEK9amMu6abvCjvG6BHOP21K6gTU8TlMVF1e00yTMtv2Njz36SMr
- google-site-verification=M8dHau794Pq1jkA158rW5xwdMEhaMgbEHgFJaeTG3b8
- google-site-verification=zSLsA8QCOCmWG5EeQscwxqtPjw1ogN56FxYurGrhjxA
- google-site-verification=MBh10PmWzE9uzAWOKc22SQAavoJIoB7Ew5A9qQQGVH4
- v=spf1 +a +mx +ip4:69.195.110.169 +ip4:50.87.216.201 +ip4:40.84.22.152 +include:spf.edgepilot.com +include:_spf.ultipro.com +include:_spf.google.com ~all
- MS=2833F3FF6FB9E4B74AF2602406EA65A9CD49DD34
Cloud / SaaS Services Detected
Apple
Cisco Duo
Leak Screenshot:
