Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo northgatesd.net

Group: darkpower

Discovered by ransomware.live: 2023-03-11

Estimated attack date: 2023-03-11


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • alt4.aspmx.l.google.com.
  • aspmx.l.google.com.
  • alt1.aspmx.l.google.com.
  • alt2.aspmx.l.google.com.
  • alt3.aspmx.l.google.com.
TXT Records
  • v=spf1 include:_spf.google.com include:spf.mandrillapp.com include:mailgun.org ip4:70.36.20.116 ip4:67.23.62.36 ip4:67.23.61.36 ip4:208.64.181.100 ip4:205.237.106.3 ~all
  • adobe-idp-site-verification=d79ef7de1b9860606d906153216643f1b2d868a0ff0ad426d0a5ba8f05da3a0a
  • amazon-business-verification=f3ad62831b90ec06155fcabd1c0681f2570ec3a47049059519bfdabc4158f3a4
  • apple-domain-verification=tck3jLVsDfmWlIlR
  • google-site-verification=qF01ghFv53y8jhMwLFbOgEb2xKw4LhQjBIY3viU3sC0
  • MS=3F3677EF025DB7E54995872AD9F00ECED74AED82
Cloud / SaaS Services Detected
Adobe Apple Mailgun Mandrill

Leak Screenshot:

Leak Screenshot