Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo iceri#####

Group: clop

Discovered by ransomware.live: 2024-12-24

Estimated attack date: 2024-12-24

Country: US

Description:

Presumed victim name: Icertis - Cl0p announcement. We have data of many companies who use cleo. Our teams are reaching and calling your company and provide your special secret chat.


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • icertis-com.mail.protection.outlook.com.
TXT Records
  • _8hvsim5y7qtgqkx4lcyxf39y17rk2xs
  • gq1695jm6rnkfp69mjl1n23qgqdbrb54
  • hp0dbsm0cvx0pr77g10v3qngw0hbfhz3
  • _aehd65ks78dlvrjrtexvkryofhk4vvp
  • docusign=4118309a-6cc9-44b6-a6b4-8537610dcf08
  • MS=ms71521183
  • MS=ms12779774
  • MS=ms49724903
  • v=spf1 include:_u.icertis.com._spf.smart.ondmarc.com ~all
  • MS=ms36090923
  • imbpcp0icmmaintenance.azurewebsites.net
  • google-site-verification=HFoQqe-gasrBuS53Y0-O9HXYUIIrXzr_J39FOeHaiD4
  • _globalsign-domain-verification=gxDZTHFxmg56fm5vMzUelQcu7UZSnIYHxvoZHAUJYR
  • atlassian-domain-verification=kw7ji93fiSYsrU/a3lRWO4kpdNgqrj7ta77mztgynuxM4qm/A6Es1oJzDTEryXCW
  • MS=ms19571529
  • asv=e625e855266f48179c1cf4320d9037d9
  • E31D4BAD429308D1E2394212B33D787C8C20B1548D5A71CA12042B8B2EF376FD
  • atlassian-domain-verification=kUBpoczB1Fpc3RPHDPpVOahYy3RNDMqtndkbwAK5sZ5VoYIsgzY7FAxJqJiQ2W6S
Cloud / SaaS Services Detected
Atlassian Microsoft 365 DocuSign

Leak Screenshot:

Leak Screenshot