Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo mdclone.com

Group: darkpower

Discovered by ransomware.live: 2023-03-11

Estimated attack date: 2023-03-11


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • aspmx.l.google.com.
  • alt2.aspmx.l.google.com.
  • alt3.aspmx.l.google.com.
  • alt4.aspmx.l.google.com.
  • alt1.aspmx.l.google.com.
TXT Records
  • pardot876641=ce77af364259607dbae04236dadad365325f2b797c6129e8c64dee6e4d56f601
  • reachdesk-verification=f8gMtm63ZqK6YRJh8GsHMGkrQv9Qb4vcNbxeGpyLzBrLYe4gKyouqAIFyg2DvQyA
  • uivdkrtkbd5pvtm8ftjc0oaq00
  • bw=zi3q6mnGN2NXleOw9cwnSqfOMwVfBc8HJZQgIKNzGZnO
  • pardot876641=68ecc1ef85c7da55b84a9528c45ac5d34ae9454dda685639eb3e7c45fe690532
  • apple-domain-verification=4yaUpvYvGysawYzX
  • google-site-verification=vdQ_YcwSnR9pawj2dzCtEYcMr-KeEubrYnQq-K1aLNk
  • v=spf1 include:_spf.google.com include:aspmx.pardot.com include:docebosaas.com include:spf.stackmail.com ~all
  • google-site-verification=CPKChNwlMA6PBa_vzVa75N9uRnl4V1EiHPm48EVm8cc
  • google-site-verification=G_5xdcUdSGU-_BRUw18Q48LXA4fXW-SsTJS2DBUqcjE
  • atlassian-domain-verification=rBkrK56Kj0YXqFaRH93nRXLcvHvA2Am3X8d8ORZJVneB/yWaYqtMGW4bZ2UajUN7
  • wpe-verification=mdclonemain
  • google-site-verification=4j3IKDiDad-1x5lyg8iX7d9qUQ3cJWuFtr1FzE85R-s
  • MS=44E1DB13F4377BFD63D5911D6444425CDDC0B6DA
  • 8en8tqeg9gbqr7not4jaruqq2
  • pardot876641=8c5c11c81ecbcd9a9f39f80f9dad8d3da1600d247033cfb8339546e8749c72dc
  • MS=ms40742940.msv1.invalid
  • fmdan60o55ruji25fk0jfaqlrk
  • pardot876641=f5b5ecc363e207eef8ac763a7f2e04858c5f9d21826c23d17a4d8fd754005a36
Cloud / SaaS Services Detected
Apple Atlassian Microsoft 365 Salesforce

Leak Screenshot:

Leak Screenshot