lacliniqueducoureur
lacliniqueducoureur
Group: helldown
Discovered by ransomware.live: 2024-11-06
Estimated attack date: 2024-10-25
Country:
Description:
lacliniqueducoureur.com
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 53
Third Party Employee Credentials: 0
External Attack Surface: 12
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- domainabuse tucows.com
MX Records
- ASPMX.L.GOOGLE.com.
- ALT3.ASPMX.L.GOOGLE.com.
- ALT4.ASPMX.L.GOOGLE.com.
- ALT2.ASPMX.L.GOOGLE.com.
- ALT1.ASPMX.L.GOOGLE.com.
TXT Records
- v=spf1 ip4:96.127.255.86 include:_spf.google.com include:sendgrid.net include:servers.mcsv.net include:turbo-smtp.com ip4:103.151.192.0/23 ip4:185.12.80.0/22 ip4:188.172.128.0/20 ip4:192.161.144.0/20 ip4:216.198.0.0/18 ~all
- ms18394201.msv1.invalid
- google-site-verification=uJJ3TufOrOWt8LfF3VjxqwYIvgJM_qa4Pp2w-1pcgQE
- MS=ms18394201
- google-site-verification=lf-Vb5obDYTVDEyn-jqBYAtjR1m4WGpIaR0Rah_BfSg
- apple-domain-verification=Np4XK5qWmdxr5fVi
Cloud / SaaS Services Detected
Apple
Microsoft 365
SendGrid
Leak Screenshot:
