novoingresso.com.br
novoingresso.com.br
Group: ransomed
Discovered by ransomware.live: 2023-10-13
Estimated attack date: 2023-10-13
Country:
Description:
Our group was able to access everything from the main company servers, and it happened that their data was on the server too(shared) Sample: https://qu.ax/LHRf.gz
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- No emails found.
MX Records
- mx.jk.locaweb.com.br.
- mx.b.locaweb.com.br.
- mx.core.locaweb.com.br.
- mx.a.locaweb.com.br.
TXT Records
- v=spf1 mx ip4:144.91.123.133 ip4:52.3.133.191 include:amazonses.com include:_spf.locaweb.com.br ~all
- amazonses:eCjJXJCeSdsxW30bltPFjUBsnVl9NdZXlQfs2d0hhlU=
Cloud / SaaS Services Detected
Amazon SES/WorkMail
Leak Screenshot:
