Ransomware.live Victim: nerolac.com

Buy Me a Coffee

Sponsored by Hudson Rock – Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

nerolac.com

Group: lockbit3

Discovered by ransomware.live: 2023-09-02

Estimated attack date: 2023-09-02

Description:

Revenue about of 1kkk USDWe have download a lot of private data: confidential agreements, bank information, driver licenses, finance private data, insurances, a lot of passports, payroll information etc.Founded in 1920, Kansai Nerolac Paints...

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails

domain.operations web.com

MX Records

nerolac-com.mail.protection.outlook.com.

TXT Records

iKNEurJOFuTcUdXOObI6DQwNsQBiC+w7f7VAdH+BqGMB2edC9WeNCDROmnG18gr9hwTw3sbHEbxBjGzEaZK0RQ==
teamviewer-sso-verification=7a881295b38949f4b4bdd75bf9707838
v=spf1 ip4:125.18.29.18 ip4:125.18.29.19 include:spf.protection.outlook.com -all
MS=9884E1B5DEE57A342BB0782E6DB0C73F9A64B988
MS=ms12975465
MS=ms57832788
google-site-verification=0xb8HZNdxchiiV8_83rQZdGg50hyVopaOejeSOftn4U
google-site-verification=s98BxXaHvD9g9sLDCGetKF4IcQ0lvMsO_KAOZOdqIhQ

Cloud / SaaS Services Detected

Microsoft 365 Teamviewer

Leak Screenshot: